Rule Description
Rule Code: AWS-AMI-01
Identify and consider to delete AMI snapshot if unused.
Verify whether the images are completely deregistered from EC2 instance.
Audit / Verification
Step 01: Sign in to the AWS Management Console.
Step 02: Access to EC2 dashboard. In the navigation panel, choose AMIs
Step 03: Select the AMI that you need to check. Select the Details tab from the dashboard bottom panel and copy the AMI ID value
Step 04: In the left navigation panel, select Instances. Click inside the EC2 attributes filter box located under the dashboard top menu and select Image ID from the dropdown list:
Step 05: Paste the AMI ID copied at step no. 3 into the EC2 attributes filter box as the Image ID input value and press Enter to verify if AMI ID is matched with the selected AMI is currently in use.
Step 06: Switch to the other AWS regions and follow the same above audit process.