AWS SCP Policies
Setting SCP policies
Service control policies (SCPs) are a type of organization policy that you can use to manage permissions in your organization.
For more fine-grained control, you can also set SCP policies. The following example disallows EC2 instance types except t2.large.
Update your AWS account by entering the following in the SCP policy field:
Example SCP policies:
Limiting the instance types that can be used in EC2
To limit the allowed instance types, both the ec2.RunInstances
as the ec2.ModifyInstanceAttributes
actions need to be specified. The example below limits instance types to t2.micro
only.
Last updated
Was this helpful?