approved-amis-by-tag
Checks if EC2 instances are using specified Amazon Machine Images (AMIs). Specify the tags that identify the AMIs. Running instances with AMIs that don't have at least one of the specified tags are NON_COMPLIANT.
Identifier: APPROVED_AMIS_BY_TAG
Resource Types: AWS::EC2::Instance
Trigger type: Configuration changes
Amazon Web Services Region: All supported Amazon regions
Parameters:
- amisByTagKeyAndValue
- Type: StringMap
- Default: tag-key:tag-value,other-tag-key
-
Comma-separated list of up to 10 AMIs tags (tag-key:tag-value). For example, tag-key1 matches AMIs with tag-key1; tag-key2:value2 matches tag-key2 with the value 2.
Amazon CloudFormation template
To create Amazon Config managed rules with Amazon CloudFormation templates, see Creating Amazon Config Managed Rules With Amazon CloudFormation Templates.