How do I use the Nému Hardened AMIs?

Our AMIs are designed to be used in any of the standard ways you use Amazon AWS. Use it in a CloudFormation template to build rapid deployment solutions for your Federal customers. Use it with the AWS CLI to create machines easily. Or manually create instances using the AWS Console.

With a quarterly release cycle, our AMIs are the most up-to-date with the latest STIG guidelines, as well as with baseline operating system patches - but some action will still be required on your part to ensure your system stays protected.  On starting your EC2 instance up for the first time, please ensure you use the operating system's update facility to apply all of the security patches that have been released for your system since we built our quarterly AMI.

This can be added to a build script that is supplied to the EC2 instance on startup as a part of the instance's user-data, if you prefer to use automated build processes. Please refer to Amazon's documentation on how to do this directly in EC2, or how to combine it into a CloudFormation template.

In RedHat Enterprise Linux:

sudo xfs_growfs /var
sudo yum --nogpgcheck update -y

In SuSE Linux:

sudo xfs_growfs /var
sudo zypper update -y

In Windows:

  • Click on the Start button and select the Settings button in the left side of your Start menu
  • Select Update & Security
  • Click on Check for Updates
  • When updates are detected, select Restart and Update

Did this solve your problem?