ec2-stopped-instance

Checks if there are Amazon Elastic Compute Cloud (Amazon EC2) instances stopped for more than the allowed number of days. The rule is NON_COMPLIANT if the state of an Amazon EC2 instance has been stopped for longer than the allowed number of days, or if the amount of time cannot be determined.

Identifier: EC2_STOPPED_INSTANCE

Trigger type: Periodic

AWS Region: All supported AWS regions except Africa (Cape Town), Middle East (UAE), Asia Pacific (Osaka), Asia Pacific (Melbourne), Europe (Milan), Israel (Tel Aviv) Region

Parameters:

AllowedDays (Optional)
Type: int
Default: 30: The number of days an Amazon EC2 instance can be stopped before the rule is NON_COMPLIANT. The default number of days is 30.

Note
The number of days selected needs to be less than the configured retention period since this rule relies on the historical data collected. For more information about historical data retention, see Deleting AWS Config Data.

AWS CloudFormation template

To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

ec2-security-group-attached-to-eni-periodic

ec2-token-hop-limit-check

ec2-stopped-instance

Note

AWS CloudFormation template