Never give an EC2 instance AdministratorAccess . Only grant the specific permissions the app needs (e.g., s3:PutObject for a specific bucket). 3. Use Network Protections
The Amazon Elastic Compute Cloud (Amazon EC2) Instance Metadata Service (IMDS) helps customers build secure and scalable applicati... Amazon Web Services Securing the EC2 Instance Metadata Service Never give an EC2 instance AdministratorAccess
The security credentials retrieved from this URL are short-lived and rotate automatically. This approach provides a secure way for instances to access AWS resources without requiring long-term access keys or credentials to be stored on the instance. Never give an EC2 instance AdministratorAccess