Amazon Web Services EC2 Linux Out Of Box Catalog items

  • Release version: Zurich
  • Updated July 31, 2025
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Amazon Web Services EC2 Linux Out Of Box Catalog items

    This ServiceNow catalog item enables customers to request fully functional Linux virtual machines (VMs) on Amazon Web Services (AWS) EC2 with flexible configurations. It supports installation of the Agent Client Collector (ACC) for monitoring and compliance, attaching additional storage disks, and applying network security groups to secure the instance.

    Show full answer Show less

    Key Features

    • Linux VM Provisioning: Request Linux EC2 instances of any type, with ACC installation mandatory for production environments.
    • Instance Type Approval: Instances larger than t2.nano or t2.micro require administrator approval according to policy.
    • Agent Client Collector (ACC): Automatically installed on production-marked deployments to enable monitoring. Selecting ACC credentials requires appropriate admin role permissions.
    • Compliance Scanning: A Cloud Configuration Governance (CCG) scan runs post-deployment to validate VM configuration against policies. Non-compliant stacks are flagged with a ‘Follow up required’ status.
    • Additional Disks: Attach up to 10 additional disks of varying sizes and types. Approval is required if more than two disks are requested.
    • Network Security Groups: Assign one network security group per VM to enforce network access restrictions. Security groups are filtered by the selected VPC and subnet.
    • Tagging: All deployed resources (VM, network, storage) receive a key-value tag recorded in the CMDB (cmdbkeyvalue table). Tagging in the cloud environment itself will be supported in future releases.

    Practical Considerations for ServiceNow Customers

    • Ensure ACC admin role permissions are granted to users who need to select ACC credential aliases during deployment.
    • Plan for necessary approvals when ordering larger instance types or more than two additional disks.
    • Use the compliance scan results to maintain governance and remediate any non-compliant configurations promptly.
    • Leverage network security group assignment to enhance VM security aligned with organizational policies.
    • Understand that tagging currently updates only the CMDB and not the cloud resources directly; monitoring updates on this feature is advised.

    Cloud Services Catalog Linux VM with agent client collector (ACC), up to 10 additional disks on EC2 or with security groups.

    This is a fully functional sample catalog item that can be used to request a Linux instance of any instance type from Amazon EC2.

    The video demonstrates how to order an Amazon Web Services EC2 Linux virtual machine.

    Linux VM orders and features:

    Order Features

    Order a Linux virtual machine on EC2, that allows installation of agent client collector. ACC is compulsory for production instances. VM sizes other than t2.nano, t2.micro require approval. Cloud configuration scan is run for compliance checking.

    For instance types other than t2.nano and t2.micro, approval is needed from administrator, by policy. The catalog item has built in client rules to drive an ACC (Agent Client Collector) installation when the deployment environment is marked for production.

    To select the credential alias key for ACC deployment from mid, the appropriate ACC admin role permissions are required to be bestowed to the user. For prerequisites check “Deploy ACC-* in post provisioning” below. The work-flow automation runs a CCG scan on the deployed Linux instance and checks the policy rule with the configuration of the VM. If there is any violation, the stack will be set with 'Follow up required' state to notify that the stack deployment is not as per norms.

    Order a Linux virtual machine on EC2 and specify up to 10 additional disk. For up to two disks, no approval is necessary. Seek approval for anything beyond that.

    This catalog item form allows ordering up to 10 additional disks (volumes) attached to the VM of varying sizes and types. If more than two additional disks are added to the request, seek approval from administrator, by policy.

    Order a secure Linux virtual machine with enhanced security by assigning a Network Security Group for highest level of security.

    This catalog item form allows capability to assign one Network Security Group to the compute instance so that the network access to the VM is restricted. Security groups are listed for the selected VPC and subnets.
    Note:

    Tag (key-value) is assigned to all deployed resources. Example: VM, network, storage as present in the stack.

    The key-value is updated only in the cmdb_key_value table, not in public cloud at this time. This will be fixed in future releases to update the tags in cloud.