hands-on lab

Creating a Security Hardened Amazon Machine Image

Up to 1h 30m
Get guided in a real environmentPractice with a step-by-step scenario in a real, provisioned environment.
Learn and validateUse validations to check your solutions every step of the way.
See resultsTrack your knowledge and monitor your progress.


Amazon Machine Images (AMI) is a way of encapsulating operating system configuration and application software into an image that can be used to easily launch new Amazon Elastic Compute Cloud (EC2) instances.

Learning how to use Amazon Machine Images will help you become more effective at deploying solutions that must adhere to security requirements. You can also use AMIs to replicate on-premise server configurations and simplify the migration of legacy applications into the public AWS cloud.

In this hands-on lab, you will manually create a new AMI, and you will use the EC2 Image Builder to automate the process.

Learning objectives

Upon completion of this beginner-level lab, you will be able to:

  • Launch an Amazon EC2 instance
  • Manually create an AMI from a running EC2 instance
  • Use the EC2 Image Builder to create an image pipeline

Intended audience

  • Candidates for the Security Specialty and Solutions Architect Associate AWS certifications
  • Cloud Architects
  • Data Engineers
  • DevOps Engineers
  • Software Engineers


Familiarity with the following will be beneficial but is not required:

  • Amazon Elastic Compute Cloud (EC2)
  • Amazon Machine Images (AMIs)
  • The Linux command line

The following content can be used to fulfill the prerequisites:

Environment before

Environment after

About the author

Learning paths

Andrew is a Labs Developer with previous experience in the Internet Service Provider, Audio Streaming, and CryptoCurrency industries. He has also been a DevOps Engineer and enjoys working with CI/CD and Kubernetes.

He holds multiple AWS certifications including Solutions Architect Associate and Professional.

Covered topics

Lab steps

Logging In to the Amazon Web Services Console
Launching an Amazon EC2 Instance
Configuring the Instance
Creating an AMI
Creating an EC2 Image Builder Component
Creating and Running an Image Builder Pipeline