Back to All Checks
High EC2 Regional

EC2 launch templates should not assign public IPs to network interfaces

NISTISO 27001

Description

Checks whether Amazon EC2 launch templates are configured to assign public IPs to network interfaces.

Remediation

To comply with this control, ensure that Amazon EC2 launch templates are not configured to automatically assign public IPs to network interfaces.

Steps

  1. Sign in to the AWS Management Console and open the EC2 console at https://console.aws.amazon.com/ec2/.
  2. In the EC2 console, click on 'Launch Templates' in the left navigation pane.
  3. Select the launch template you want to modify.
  4. Click on 'Actions' and select 'Modify Launch Template'.
  5. In the 'Network interfaces' section, ensure that the 'Auto-assign public IP' setting is set to 'Disable'.
  6. Click on 'Save' to apply the changes.
  7. Verify that the launch template no longer assigns public IPs to new network interfaces.

Compliance

NISTISO 27001
Start Your Free Security Check