Stax-managed AWS Accounts can now opt-in to require IMDSv2

Configuration options have been added to the AWS Accounts Foundation Services page to allow you to fine-tune security protections for all Stax-managed AWS Accounts.

A new toggle to require Instance Metadata Service Version 2 (IMDSv2) has been added. IMDSv2 compliance is included in the CIS AWS Foundations Benchmark.

Before enabling this protection please ensure that your AWS environment is compatible with IMDSv2

This can be further enforced by appling the two Guardrails:

• Block changes to the EC2 Instance Metadata Service Defaults
• Block optional as a value for IDMS for EC2 Instance Run and Modify

For more information, refer to the documentation on Configure AWS Accounts.