How to tag EC2 instance when it does not match the whitelisted AMI ID and tag it as “not approved”
Question
How to tag a new instance when it is in runstate to stopstate, this lambda function is to match the whitelisted AMI ID (AMI ID's are in notepad in S3), if the Instance is not matching the approved AMI ID, then the ec2 will be forced to stop and tag it as "not approved" using Python 3.
import boto3
import botocore
def lambda_handler(event, context):
account = event['account']
s3 = boto3.client("s3")
bucketname = 'amivalidation-demo'
filename = 'ami-s3.csv'
fileObj = s3.get_object(Bucket=bucketname, Key=filename)
file_content = fileObj["Body"].read().decode('utf-8')
ec2_client = get_client('ec2',account)
response = event['detail']['responseElements']['instancesSet']
for res in response['items']:
instance = res['instanceId']
image = res['imageId']
if image in file_content:
#image in whitelist
pass
else:
#image not in whitelist, kill it!
ec2_client.stop_instances(InstanceIds=[instance],Force=True)
return
1 answers
solution1
0 ACCPTED 2020-05-25 04:12:05
Use create_tags() :
response = ec2_client.create_tags(
Resources=['instance-id'],
Tags=[
{
'Key': 'string',
'Value': 'string'
},
]
)
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Get AWS EC2 specific tag/value combo + instance id
Boto3 EC2 instance filter with tag
Regex for EC2 instance ID
EC2 Name tag and its position
How to install nltk on an Amazon EC2 instance?
Get list of EC2 instances with specific Tag and Value in Boto3
unable to tag the ec2 resources boto3 python
How to get EC2 instance tags from Python within the instance?
How to trigger ec2 instance and a python script inside when a new object is added to s3 bucket?
How can I run a more powerful AWS EC2 instance that starts and stops when I receive a request?
Related Tags