Overview
The ability to launch Container instances hardened according to the trusted secure configuration baselines prescribed by the Center for Internet Security's (CIS) expert consensus teams is now available in the AWS Docker Container Marketplace. Reduce cost, time, and risk by building your AWS solution with Container Images that are preconfigured to align with industry best practice for secure configuration.
Highlights
- Hardened according to a Level 1 CIS Benchmark that is developed in a consensus-based process and that is accepted by government, business, industry, and academia.
- Using an AMI hardened by CIS reduces time, cost, and risk associated with your organization's AWS solution.
- Pre-configured to align with industry best practices that are developed and supported by CIS, this image has hardened account and local policies, firewall configuration, and computer-based and user-based administrative templates.
Details
Features and programs
Financing for AWS Marketplace purchases
Pricing
- $38.00/month
Vendor refund policy
Refunds through AWS are not available at this time. You will only be billed for actual time of instance use. As with all CIS security products, our aim is always 100 percent customer/member satisfaction.
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
CIS Amazon Linux 2023 Benchmark L1 Container Image (ARM)
- Amazon ECS
- Amazon EKS
Container image
Containers are lightweight, portable execution environments that wrap server application software in a filesystem that includes everything it needs to run. Container applications run on supported container runtimes and orchestration services, such as Amazon Elastic Container Service (Amazon ECS) or Amazon Elastic Kubernetes Service (Amazon EKS). Both eliminate the need for you to install and operate your own container orchestration software by managing and scheduling containers on a scalable cluster of virtual machines.
Version release notes
Initial product release for CIS Amazon Linux 2023 Benchmark Level 1 ARM Container
Additional details
Usage instructions
Example CLI commands to utilize a CIS Hardened image from an instance host:
- Confirm Docker and AWS CLI are both installed and running on the host machine.
- You may need to run: $ aws configure or confirm IAM permissions in order to authenticate with ECR. See this page for more details on connecting: https://docs.aws.amazon.com/AmazonECR/latest/userguide/registry_auth.html
- Use the following commands provided by AWS in the block below to authenticate to Amazon Elastic Container Registry and download the container images.
- After downloading the image, confirm it is available by executing: $ docker images Note the version/tag for the next command.
- To start container execute: $ docker run -itd [REPOSITORY]:[TAG] bash
- Confirm the container is running by executing: $ docker ps
- Confirm you can connect to the container and open a shell by executing: $ docker attach [Container ID]
Support
Vendor support
Questions, feedback, and support accessing CIS-developed AMIs is provided by contacting
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
