Evaluates whether SSH key pairs are used to log on to Linux instances. Compliant if key pair authentication is enabled.
Scenarios
SSH key pairs apply only to Linux instances. A key pair consists of a public key and a private key, providing secure passwordless authentication.
Risk level
Default risk level: medium.
You can change the risk level when you apply this rule.
Compliance evaluation logic
- Compliant: An SSH key pair is used to log on to the Linux instance.
- Non-compliant: No SSH key pair is used. To fix this, follow the Incompliance remediation steps.
Rule details
| Item | Description |
| Rule name | ecs-instance-login-use-keypair |
| Rule identifier | ecs-instance-login-use-keypair |
| Tag | ECS |
| Automatic remediation | Not supported |
| Trigger type | Configuration change |
| Supported resource type | ECS instance |
| Input parameter | None. |
Incompliance remediation
Bind an SSH key pair to an ECS instance after you create it. For more information, see Bind an SSH key pair.
该文章对您有帮助吗?