Amazon_EC2_31

Ensure there should not be any Unused AWS EC2 Key Pairs

Description

unused Amazon EC2 key pairs should be removed in order to adhere to AWS security best practices and protect against unapproved SSH access. An SSH key pair is evaluated as unused when it is not associated with any of the EC2 instances available in the same AWS region.

Remediation

1. Sign in to the AWS Management Console.

2. Navigate to EC2 dashboard

3. In the left navigation panel, under NETWORK & SECURITY section, choose Key Pairs.

4. Select the EC2 key pair that you want to remove (see Audit section part I to identify the right resource).

5. Click the Delete button from the dashboard top menu to initiate the key removal.

6. Within Delete Key Pair dialog box, review the key details to make sure you delete the right key, then click Yes to confirm the action.

Service

EC2

Severity

Medium

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!