Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions,
see Getting Started with Amazon Web Services in China
(PDF).
Enable AMD SEV-SNP for an EC2 instance
You can launch an instance with AMD SEV-SNP enabled. You can't enable AMD SEV-SNP after launch.
Launch an instance with AMD SEV-SNP enabled
You can't enable AMD SEV-SNP using the Amazon EC2 console.
- Amazon CLI
-
To launch an instance with AMD SEV-SNP enabled
Use the run-instances
command with the --cpu-options option. For additional requirements, see
AMD SEV-SNP requirements.
--cpu-options AmdSevSnp=enabled
- PowerShell
-
To launch an instance with AMD SEV-SNP enabled
Use the New-EC2Instance
cmdlet with the -CpuOption parameter.
-CpuOption @{AmdSevSnp="enabled"}
Check if an EC2 instance is enabled for AMD SEV-SNP
You can find instances that are enabled for AMD SEV-SNP. The Amazon EC2 console does not display
this information.
- Amazon CLI
-
To check whether AMD SEV-SNP is enabled for an instance
Use the describe-instances command.
aws ec2 describe-instances \
--instance-ids i-1234567890abcdef0 \
--query Reservations[].Instances[].CpuOptions
The following is example output. If AmdSevSnp is not present
in CpuOptions, then AMD SEV-SNP is disabled.
[
{
"AmdSevSnp": "enabled",
"CoreCount": 1,
"ThreadsPerCore": 2
}
]
- PowerShell
-
To check whether AMD SEV-SNP is enabled for an instance
Use the Get-EC2Instance
cmdlet.
(Get-EC2Instance `
-InstanceId i-1234567890abcdef0).Instances.CpuOptions
The following is example output. If the value of AmdSevSnp
is not present, then AMD SEV-SNP is disabled.
AmdSevSnp CoreCount ThreadsPerCore
--------- --------- --------------
enabled 1 2
- Amazon CloudTrail
-
In the Amazon CloudTrail event for the instance launch request, the following property
indicates that AMD SEV-SNP is enabled for the instance.
"cpuOptions": {"AmdSevSnp": "enabled"}