Rule: EC2 Instance Should Have EBS Optimization Enabled
This rule specifies that EC2 instances should have EBS optimization enabled to enhance performance and efficiency.
| Rule | EC2 instance should have EBS optimization enabled |
| Framework | GxP EU Annex 11 |
| Severity | ✔ High |
Rule Description:
EBS optimization should be enabled for EC2 instances that are subject to GxP (Good Practices) compliance according to EU Annex 11 regulations. This optimization ensures high performance and reliability of Amazon Elastic Block Store (EBS) volumes attached to the EC2 instance.
Remediation Steps:
In order to enable EBS optimization for your EC2 instance, follow the steps outlined below:
- 1.
Identify the EC2 instance(s) that need to be EBS optimized based on GxP EU Annex 11 requirements.
- 2.
Connect to your EC2 instance either through the AWS Management Console or using SSH.
- 3.
Verify whether EBS optimization is already enabled on the EC2 instance. To do so, execute the following command:
aws ec2 describe-instance-attribute --instance-id <INSTANCE_ID> --attribute ebsOptimized
Replace
<INSTANCE_ID>- 1.
If the above command returns output with
, it means that EBS optimization is not enabled for the selected instance."Value": false - 2.
Enable EBS optimization using the following AWS Command Line Interface (CLI) command:
aws ec2 modify-instance-attribute --instance-id <INSTANCE_ID> --ebs-optimized
Replace
<INSTANCE_ID>- 1.
Once the command executes successfully, verify the EBS optimization status again using the describe-instance-attribute command mentioned in Step 3.
- 2.
The output should now show
, indicating that EBS optimization is enabled for the EC2 instance."Value": true - 3.
Repeat Steps 3 to 7 for any additional EC2 instances that require EBS optimization.
Troubleshooting:
Issue: The
command fails with an error message. Solution: Ensure that you have the necessary privileges and permissions to modify the instance attributes. Additionally, double-check the instance ID and syntax of the command.modify-instance-attributeIssue: EBS optimization is still not enabled after executing the
command. Solution: Verify that the EC2 instance is eligible for EBS optimization. It is possible that the instance type does not support EBS optimization. Check the AWS documentation to determine which instance types are compatible.modify-instance-attribute
Additional Notes:
Enabling EBS optimization may incur additional costs. Ensure that you are aware of the pricing implications and budget accordingly.
Regularly monitor your EC2 instances to ensure EBS optimization remains enabled and to check for any possible performance issues.
Keep track of any changes made to your EC2 instances for audit and compliance purposes. Maintain proper documentation as per GxP EU Annex 11 requirements.