Difference between revisions of "Transition to using Instance Metadata Service Version 2"
Jump to navigation
Jump to search
| (8 intermediate revisions by the same user not shown) | |||
| Line 4: | Line 4: | ||
* Use an AMI that configures [[IMDSv2]] by default | * Use an AMI that configures [[IMDSv2]] by default | ||
| + | ** <code>[[HttpTokens]]</code> set to required | ||
| + | ** <code>[[aws ec2 modify-instance-metadata-defaults --http-tokens]]</code> | ||
| + | *** [[Terraform resource: aws ec2 instance metadata defaults]] | ||
| + | ** <code>[[aws ec2 modify-instance-metadata-options]]</code> | ||
| + | |||
| + | Terraform: | ||
| + | * <code>[[metadata_options]]</code>: https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/instance#metadata-options | ||
| + | ** <code>[[http_tokens]] = required</code> | ||
| + | |||
| + | == Related == | ||
| + | * [[Datadog: EC2 instances should enforce IMDSv2]] | ||
| + | * <code>[[ec2-imdsv2-check]]</code> | ||
| + | * <code>[[aws_instance]]</code> | ||
== See also == | == See also == | ||
Latest revision as of 09:32, 28 June 2024
- Use an AMI that configures IMDSv2 by default
Terraform:
metadata_options: https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/instance#metadata-optionshttp_tokens = required
Related[edit]
See also[edit]
Advertising:
