High
AutoScaling
Regional
Auto Scaling group launch configurations should configure EC2 instances to require Instance Metadata Service Version 2 (IMDSv2)
NIST
Description
Checks whether Auto Scaling group launch configurations are configured to require EC2 instances to use Instance Metadata Service Version 2 (IMDSv2).
Remediation
To remediate, update the launch configurations to require IMDSv2 for EC2 instances.
Steps
- Open the Amazon EC2 console.
- Navigate to 'Launch Configurations' under 'Auto Scaling'.
- Select the launch configuration.
- Modify the configuration to set 'HttpTokens' to 'required' for IMDSv2.
- Save the changes.
Compliance
NIST