View image details | 您所在的位置:网站首页 › configuration console在哪里 › View image details |
View image details On the image details page in the Image Builder console, you can view details for a specific image resource that you own. You can also use commands or actions with the Image Builder API, SDKs, or AWS CLI to get image details. For more information about resources that another AWS account shared with you through a AWS Resource Access Manager (AWS RAM) resource share, see Access AWS resources shared with you in the AWS RAM User Guide. Contents View image details in the Image Builder consoleGet image policy details (AWS CLI) View image details in the Image Builder consoleThe image detail page in the Image Builder console includes a summary section, with additional information grouped into tabs. The page heading is the name and build version of the recipe that created the image. Console detail sections and tabs Summary sectionOutput resources tabInfrastructure configuration tabDistribution settings tabWorkflow tabSecurity findings tabTags tab Summary sectionThe summary section spans the width of the page and includes the following details. These details are always displayed. RecipeThe recipe name and version that doesn't include the build version. For example, if the build version is sample-linux-recipe | 1.0.1/2, the recipe is sample-linux-recipe | 1.0.1, and the build version is 2. Date createdThe date and time when Image Builder created the image build version. Image statusThe current status of the image build version. Status can relate to the image build or disposition. For example, during the build process, you might see a status of Building or Distributing. For disposition of the image, you might see a status of Deprecated or Deleted. Reason for failureThe reason for the image status. The Image Builder console only displays the reason when the build fails (Image status equals Failed). Output resources tabThe Output resources tab lists output and distribution details for the image resource that is currently displayed. The information that Image Builder displays depends on the type of recipe that the pipeline used to create the image, as follows. Image recipeRegion – The distribution Region for the output Amazon Machine Image (AMI) that is specified in the Image column. Image – The ID of the AMI that Image Builder distributed to the destination. This ID is linked to the Amazon Machine Images (AMIs) page in the Amazon EC2 console. NoteImage Builder creates the AMI after it creates the output image resource, and before it distributes the AMI to the destination. Name – The name of the AMI that Image Builder distributed to the destination. Description – The optional description from the image recipe that the pipeline used to create the output image resource. Account – The AWS account that owns the currently displayed Image Builder image resource. Container recipeImage Builder displays the following details for output created from a container recipe. Region – The distribution Region for the container image that is specified in the Image URI column. Image URI – The URI of the output container image that Image Builder distributed to the ECR repository in the destination Region. NoteImage Builder displays one row per destination. The output image always has at least one entry for distribution to the account that created the image. Additional destinations can include distributions across Regions, AWS accounts, or AWS Organizations. For more information, see Manage EC2 Image Builder distribution settings. Infrastructure configuration tabThe Infrastructure configuration tab displays the Amazon EC2 infrastructure settings that Image Builder used to build and test the image that is currently displayed. Image Builder always displays the name of the infrastructure configuration resource (Configuration name) and its Amazon Resource Name (ARN). If your infrastructure configuration sets the values, additional infrastructure details can include the following Instance types An instance profile Network infrastructure Security group settings An Amazon S3 location where Image Builder stores application logs An Amazon EC2 key pair for troubleshooting An Amazon SNS topic for event notifications For more information, see Manage EC2 Image Builder infrastructure configuration. Distribution settings tabThe Distribution settings tab displays settings that Image Builder used to distribute your output images. Image Builder always displays the name of the distribution configuration resource (Configuration name) and its Amazon Resource Name (ARN). Additional distribution details depend on the type of recipe that the Image Builder pipeline used to create the image, as follows: Image recipeIf your distribution configuration resource sets the values, additional distribution details can include the following,: Region – The distribution Region for the output Amazon Machine Image (AMI). Output AMI name – The name of the AMI that Image Builder distributed to the destination. Encryption (KMS key) – If configured, the AWS KMS key that Image Builder uses to encrypt the image for distribution to the target Region. Target accounts for distribution – If you configured cross-account distribution, this column displays a comma-separated list of AWS accounts to share the output image with in the target Region. Principals with shared permission – A comma-separated list of the AWS principals that have permission to launch your image, for example, AWS accounts or groups, AWS Organizations or organizational units (OUs). NoteWhen you grant permission for other principals to launch your image, you still own the image. AWS bills your account for all of the instances that Amazon EC2 launches from your image. Target accounts for faster launch configuration – Associated license configurations – The License Manager license configuration ARNs to associate with the AMI in the specified Region. Launch template configuration – Set launch template default version – Container recipeContainer distributions always include the following details: Region – The distribution Region for the container image specified in the Image URI column. Image URI – The URI of the output container image that Image Builder distributed to the Amazon ECR repository in the destination Region. NoteImage Builder displays one row per destination. The output image always has at least one entry for distribution to the account that created the image. Additional destinations can include distributions across Regions, AWS accounts, or AWS Organizations. For more information, see Manage EC2 Image Builder distribution settings. Workflow tabWorkflows define the sequence of steps that Image Builder performs when it creates a new image. All images have build and test workflows. Containers have an additional workflow for distribution. The Workflow tab displays the applicable workflows that Image Builder ran for your image. Filter workflow typesImage Builder initially displays the build workflow summary and workflow steps by default. However, the Workflow filter shows all of the workflows that are in progress or completed for your image. To view a different workflow, select from the list, as follows: Image workflows (AMI output)build-image test-image Container workflows (container output)build-container test-container distribute-container NoteIf the workflow hasn't started yet, it doesn't appear in the list. For example, if your image build has just started, build-image is the only workflow type that appears in the list. When the next workflow begins, test-image in this case, Image Builder adds it to the list. Following the Workflow filter, the selected workflow shows a runtime summary that includes the following details for every workflow type: Workflow statusThe current runtime status for this workflow. Values can include the following: Pending Skipped Running Completed Failed Rollback-in-progress Rollback-completed Execution IDA unique identifier that Image Builder assigns to keep track of runtime resources each time it runs a workflow. StartThe timestamp when the runtime instance of this workflow started. EndThe timestamp when this runtime instance of the workflow finished. Total stepsThe total number of steps in the workflow. This should equal the sum of the step counts for steps that succeeded, were skipped, and failed. Steps succeededA runtime count for the number of steps in the workflow that ran successfully. Steps failedA runtime count for the number of steps in the workflow that failed. Steps skippedA runtime count for the number of steps in the workflow that were skipped. The details in the following list report the current status for all of the steps in this runtime instance of the workflow. Image Builder displays the same details for all image types. Step #A number that represents the order in which Image Builder runs the workflow steps. Step IDA unique identifier for the workflow step, assigned at runtime. Step statusThe current runtime status of the specified workflow step. Rollback statusThe current rollback status if this runtime instance of the workflow failed. Step nameThe name of the specified workflow step. StartThe timestamp when the specified step for this runtime instance of the workflow started. EndThe timestamp when the specified step for this runtime instance of the workflow finished. Security findings tabIf you've activated scanning, the Security findings tab displays Common Vulnerabilities and Exposures (CVE) findings. Amazon Inspector identified these findings on the build instance that Image Builder launched to create your new image. To ensure that Image Builder captures findings for your image, you must configure scanning as follows: Activate Amazon Inspector scans for your account. For more information, see Getting started with Amazon Inspector in the Amazon Inspector User Guide. Activate security findings for the pipeline that creates this image. When you activate security findings for your pipeline, Image Builder saves a snapshot of the findings before it terminates the build instance. For more information, see Configure security scans for Image Builder images in the AWS Management Console The Security findings tab includes the following details for each vulnerability that Amazon Inspector identified for your image. SeverityThe severity level of the CVE finding. Values are as follows: Untriaged Informational Low Medium High Critical Finding IDThe unique identifier for the CVE finding that Amazon Inspector detected for your image when it scanned the build instance. The ID is linked to the Security findings > By vulnerability page. For more information, see Manage security findings for Image Builder images in the AWS Management Console. SourceThe source of the vulnerability information for the CVE finding. AgeThe number of days since the finding was first observed for your image. Inspector scoreThe score that Amazon Inspector assigned for the CVE finding. Tags tabThe Tags tab displays any tags that you have defined for your image. Get image policy details (AWS CLI)The following example shows how to get the details of an image policy with its Amazon Resource Name (ARN). aws imagebuilder get-image-policy --image-arn arn:aws:imagebuilder:us-west-2:123456789012:image/my-example-image/2019.12.02 |
今日新闻 |
推荐新闻 |
专题文章 |
CopyRight 2018-2019 实验室设备网 版权所有 |