EC2 Image Builder のアイコン

EC2 Image Builder Specialized2019年〜

A service that automates the creation, testing, and distribution of custom AMIs

About 2 min read

What It Does

EC2 Image Builder is a service that automates the creation, testing, and distribution of custom Amazon Machine Images (AMIs) and container images. You define pipelines that include steps like OS patching, software installation, and security hardening, and they run automatically on a schedule.

Use Cases

Used for regularly creating standard AMIs with the latest security patches, distributing pre-configured development environment images to dev teams, and managing hardened images that meet compliance requirements.

Everyday Analogy

Think of it like a factory assembly line. Parts (OS + software) are assembled following a set procedure (recipe), undergo quality inspection (testing), and the approved products (AMIs) are shipped (distributed).

What Is Image Builder?

EC2 Image Builder is a service that automates the AMI creation process. It eliminates the manual work of launching an EC2 instance, installing software, and creating an AMI. You build pipelines by combining recipes, infrastructure configurations, distribution settings, and test components.

Recipes and Components

A recipe defines the composition of an image. You customize it by adding components to a base image (Amazon Linux, Ubuntu, etc.). Components are build steps written in YAML, and you can combine AWS-provided components (CIS benchmarks, STIG hardening, etc.) with custom components. For more details on recipes and components, check out reference books on Amazon.

Getting Started

Select 'Create image pipeline' in the Image Builder console, then specify a base image and components. Add test components to automate image validation, and configure distribution settings to specify target regions and accounts. Set up a schedule, and up-to-date patched AMIs will be generated automatically on a regular basis.

Things to Watch Out For

  • Image Builder itself is free. You pay for the EC2 instances and EBS volumes launched during pipeline execution
  • Using CIS benchmark and STIG hardening components lets you automatically create images that meet security standards
共有するXB!

Related Services

Amazon EC2 iconAmazon EC2A compute service that provides virtual servers in the cloudAWS Systems Manager iconAWS Systems ManagerAn operations management service for centrally managing AWS resources and on-premises serversAmazon Inspector iconAmazon InspectorA service that automatically scans EC2 instances, container images, and Lambda functions for vulnerabilitiesAWS Organizations iconAWS OrganizationsA service for centrally managing multiple AWS accounts

Related Articles

Automating AMI Pipelines with EC2 Image Builder - Building and Testing Golden ImagesAutomate your golden AMI build pipeline from component creation and security hardening tests to multi-account distribution with EC2 Image Builder.

More in This Category

AWS Auto Scaling iconAWS Auto Scaling EssentialA service that automatically scales EC2, ECS, DynamoDB, and other resources based on demandAWS Batch iconAWS Batch SpecializedA managed service for efficiently scheduling and running batch computing jobsAmazon EC2 iconAmazon EC2 EssentialA compute service that provides virtual servers in the cloudAmazon EC2 Instance Connect iconAmazon EC2 Instance Connect SpecializedA service for securely connecting to EC2 instances without pre-distributing SSH keysAWS Elastic Beanstalk iconAWS Elastic Beanstalk PopularA service that automates application deployment and operations just by uploading your codeAmazon EVS iconAmazon EVS NewA fully managed service for running VMware vSphere environments on AWSAWS Lambda iconAWS Lambda EssentialA serverless compute service that runs code without server managementAmazon Lightsail iconAmazon Lightsail PopularA service offering simple virtual servers, storage, and networking at a fixed monthly price

Similar Articles and Services

Automating AMI Pipelines with EC2 Image Builder - Building and Testing Golden ImagesAutomate your golden AMI build pipeline from component creation and security hardening tests to multi-account distribution with EC2 Image Builder.AWS IoT GreengrassA service for running local compute, messaging, and ML inference on edge devicesAmazon ECR Container Image Management - Lifecycle Policies and Image ScanningLearn how to automatically clean up old images with private repository lifecycle policies and detect vulnerabilities with image scanning.BottlerocketA Linux-based open-source OS purpose-built for running containersAmazon RekognitionAn ML-based image recognition service that makes image and video analysis easy via API