Removing Runtime Monitoring from an Amazon ECS cluster - Amazon Elastic Container Service
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Removing Runtime Monitoring from an Amazon ECS cluster

You can remove Runtime Monitoring from a cluster. This causes GuardDuty to stop monitoring all resources in the cluster.

To remove Runtime Monitoring from a cluster
  1. Use the Amazon ECS console or Amazon CLI to set the GuardDutyManaged tag key on the cluster to false. For more information, see Updating a cluster or Working with tags using the CLI or API.

    Note

    The Key and Value are case sensitive and must exactly match the strings.

    Key = GuardDutyManaged, Value = false

  2. Uninstall the GuardDuty security agent on you EC2 container instances in the cluster.

    For more information, see Uninstalling the security agent manually in the GuardDuty User Guide.

  3. Delete the GuardDuty VPC endpoint for each cluster VPC. For more information about how to delete VPC endpoints, see Delete an interface endpoint in the Amazon PrivateLink User Guide.