Checks whether the image source of each Elastic Compute Service (ECS) instance is the same as a specified value. If the image source of each ECS instance is the same as a specified value, the configuration is considered compliant.
Scenarios
You can check whether the image that is used by each ECS instance meets your requirements. Public images provided by Alibaba Cloud are fully licensed to provide a secure and stable operating environment for applications on ECS instances.
Risk level
Default risk level: medium.
When you apply this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
- If the image source of each ECS instance is the same as a specified value, the configuration is considered compliant.
- If the image source of an ECS instance is not the same as a specified value, the configuration is considered incompliant. For more information about how to remediate an incompliant configuration, see Incompliance remediation.
Rule details
| Item | Description |
|---|---|
| Rule name | ecs-instance-image-type-check |
| Rule identifier | ecs-instance-image-type-check |
| Tag | ECS, Instance, and Image |
| Automatic remediation | Not supported |
| Trigger type | Periodic execution |
| Evaluation frequency | Interval of 24 hours |
| Supported resource type | ECS instance |
| Input parameter | ImageOwnerAlias. Default value: system, which indicates public images provided by Alibaba Cloud.
|
Incompliance remediation
Change the image of an ECS instance. For more information, see Select an image.