Logo of Trend Micro

Elasticsearch Reserved Instance Payment Failed

Trend Micro Cloud One™ – Conformity is a continuous assurance tool that provides peace of mind for your cloud infrastructure, delivering over 750 automated best practice checks.

Risk level: High (not acceptable risk)
Rule ID: ES-018

Identify any failed Amazon Elasticsearch (ES) Reserved Instances available within your AWS account and follow Cloud Conformity guidelines for remediation in order to enable discounted hourly rates for Elasticsearch instances in exchange of reserving a certain amount of compute usage upfront. A failed AWS ES RI is an unsuccessful reservation that receives the "payment-failed" status during the purchasing process

This rule can help you work with the AWS Well-Architected Framework

This rule resolution is part of the Cloud Conformity Security & Compliance tool for AWS

Cost
optimisation

From a billing perspective, Elasticsearch Reserved Instances can provide significant cost savings (up to 52% discount). However, to receive the discount benefit you need to make sure that all your AWS ES reservation purchases have been successfully completed.

Audit

To identify any failed Elasticsearch RI purchases available within your AWS account, perform the following actions:

Using AWS Console

01 Sign in to AWS Management Console.

02 Navigate to Elasticsearch (ES) dashboard at https://console.aws.amazon.com/es/.

03 In the left navigation panel, choose Reserved Instances.

04 Choose the Reserved Instance (RI) that you want to examine and check the value listed within the Status column. If the reservation has the status set to payment-failed, the payment processing for the selected Amazon Elasticsearch Reserved Instance has failed, therefore you need to retry your failed reservation payment by contacting AWS Support Center (see Remediation/Resolution section for more information).

05 Repeat step no. 4 to determine the purchase status for other AWS Elasticsearch RIs provisioned in the current region.

06 Change the AWS region from the navigation bar and repeat the process for other regions.

Using AWS CLI

01 Run describe-reserved-elasticsearch-instances command (OSX/Linux/UNIX) using custom query filters to list the IDs of all Elasticsearch Reserved Instances available in the selected AWS region: 

aws es describe-reserved-elasticsearch-instances
	--region us-east-1
	--output table
	--query 'ReservedElasticsearchInstances[*].ReservedElasticsearchInstanceId'

02 The command output should return a table with the requested RI IDs: 

----------------------------------------
|   ReservedElasticsearchInstanceIds   |
+--------------------------------------+
| aabbccdd-aabb-ccdd-1234-aabbccdd1234 |
| aaaabbbb-1234-aaaa-bbbb-1234aaaabbbb |
| abcdabcd-abcd-abcd-abcd-abcdabcdabcd |
+--------------------------------------+

03 Run describe-reserved-elasticsearch-instances command (OSX/Linux/UNIX) using the ID of the Elasticsearch Reserved Instance (RI) that you want to examine as identifier and custom query filters to describe the purchase status for the selected RI: 

aws es describe-reserved-elasticsearch-instances
	--region us-east-1
	--reserved-elasticsearch-instance-id aabbccdd-aabb-ccdd-1234-aabbccdd1234
	--query 'ReservedElasticsearchInstances[*].State'

04 The command output should return the purchase payment status for the selected reservation: 

[
    "payment-failed"
]

If the describe-reserved-elasticsearch-instances command output returns "payment-failed", the payment processing for the selected Amazon Elasticsearch Reserved Instance has failed, therefore you must retry your failed ES RI payment by contacting AWS Support Center.

05 Repeat step no. 3 and 4 to determine the purchase status for other AWS Elasticsearch RIs created within the selected region.

06 Change the AWS region by updating the --region command parameter value and repeat steps no. 1 – 5 to perform the entire audit process for other regions.

Remediation / Resolution

To solve any unsuccessful Amazon Elasticsearch reservations you need to retry your failed Reserved Instance purchase payment by contacting Amazon Web Services. To create the required support case using the AWS Support Center console, perform the following:

Note: Requesting Amazon to retry failed Elasticsearch Reserved Instance payments using AWS Billing and Cost Management console or AWS API via Command Line Interface (CLI) is not currently supported.

Using AWS Console

01 Sign in to AWS Management Console.

02 Navigate to AWS Support Center page at https://console.aws.amazon.com/support/.

03 On Support Center page, in the My support cases panel, click Create case to open the support case form.

04 On the Create Case page, perform the following actions:

  1. Under Regarding, select Account and Billing Support option.
  2. Choose Billing from the Service dropdown list to send your request to AWS Billing and Cost Management service.
  3. Select Reserved Instances from the Category dropdown list.
  4. Inside the Subject box, enter a subject for your request such as "Retry failed Amazon Elasticsearch Reserved Instance payment(s)".
  5. Within Description textbox, enter a short description for your request so that AWS support can evaluate your request faster.
  6. Under Contact method, select a preferred contact method that AWS support team can use to respond to your request.
  7. Click Submit to send the payment retry request for your Elasticsearch Reserved Instance(s) to Amazon Web Services.

References

Publication date Oct 29, 2018

Related Elasticsearch rules

Unlock the Remediation Steps

Gain free unlimited access
to our full Knowledge Base

Over 750 rules & best practices
for AWS and Azure

You are auditing:

Elasticsearch Reserved Instance Payment Failed

Risk level: High