Sold by: Center for Internet Security
Deployed on AWS
AWS Free Tier
This product has charges associated with the pre-built hardening to the CIS Benchmarks™ and recurring maintenance. The CIS Hardened Images® are hardened in accordance with the associated CIS Benchmarks, an industry best practice for secure configuration. Reduce cost, time, and risk by building your AWS solution with CIS AMIs.
Overview
The CIS Hardened Image Level 1 on Oracle Linux 8 is a pre-configured image built by the Center for Internet Security (CIS®) for use on Amazon Elastic Compute Cloud (Amazon EC2). It is a pre-configured, security-hardened image that aligns with the robust security recommendations, the CIS Benchmarks, making it easier for organizations to meet regulatory requirements.
Not only is this image pre-hardened to the CIS Benchmarks guidance, but it is also patched monthly in alignment with the updates from the software vendor.
Key Benefits
This image is hardened against the corresponding Level 1 profile which is intended to be practical and prudent, provide a clear security benefit, and not inhibit the utility of the technology beyond acceptable means. No packages are installed on or removed from this image outside of those already present on the base image or as recommended in alignment with the corresponding CIS Benchmark recommendations.
To demonstrate conformance to the CIS Oracle Linux 8 Level 1 Benchmark, industry-recognized hardening guidance, each image includes an HTML report from CIS Configuration Assessment Tool (CIS-CAT® Pro). Each CIS Hardened Image contains the following files:
These reports are located in /home/CIS_Hardened_Reports.
For customized pricing options or private offers, reach out to us at cloudsecurity@cisecurity.org .
To learn more or access the corresponding CIS Benchmark, please visit https://www.cisecurity.org/cis-benchmarks or sign up for a free account on our community platform, CIS WorkBench, https://workbench.cisecurity.org/ .
Highlights
- Hardened according to a Level 1 CIS Benchmark that is developed in a consensus-based process and that is accepted by government, business, industry, and academia.
- Helps with compliance to PCI DSS, FedRAMP, DoD Cloud Computing SRG, FISMA, select NIST publications, and more.
- Pre-configured to align with industry best practices that are developed and supported by CIS, this image has hardened account and local policies, firewall configuration, and computer-based and user-based administrative templates.
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
OtherLinux 8
Deployed on AWS
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time. Alternatively, you can pay upfront for a contract, which typically covers your anticipated usage for the contract duration. Any usage beyond contract will incur additional usage-based costs.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/hour |
|---|---|
t3.medium Recommended | $0.022 |
t2.micro AWS Free Tier | $0.02 |
t3.micro AWS Free Tier | $0.022 |
r6in.metal | $0.06 |
inf2.24xlarge | $0.06 |
u7in-16tb.224xlarge | $0.06 |
u-24tb1.metal | $0.06 |
c5ad.large | $0.022 |
g6.xlarge | $0.024 |
m5a.4xlarge | $0.035 |
Vendor refund policy
Refunds through AWS are not available at this time. You will only be billed for actual time of instance use. As with all CIS security products, our aim is always 100 percent customer/member satisfaction.
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
NA
Additional details
Usage instructions
Once the instance is running, connect using SSH. Use "ec2-user" as the username. Immediately apply latest security updates after launching the instance.
Resources
Support
Vendor support
Questions, feedback, and support accessing CIS-developed AMIs is provided by contacting
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Center for Internet Security
By Canonical Group Limited
By Hardened Images
Top
25
In Compliance and Auditing
AI generated from product descriptions
Security Hardening
Pre-configured image hardened according to CIS Benchmarks Level 1 profile with comprehensive security configurations
Configuration Assessment
Includes CIS Configuration Assessment Tool (CIS-CAT Pro) reports documenting pre and post-hardening system states
Compliance Reporting
Provides detailed HTML reports and text files documenting system packages and hardening exceptions
Security Policy Management
Implements hardened account policies, local policies, firewall configurations, and administrative templates
Patch Management
Monthly patched image aligned with software vendor updates to maintain current security standards
Cryptographic Compliance
FIPS 140-2 certified kernel and cryptographic modules with out-of-the-box compliance
Security Patch Coverage
Comprehensive security updates for over 23,000 open source packages across Ubuntu Universe repository
Compliance Hardening
Integrated hardening profiles from CIS and DISA-STIG security implementation guidelines
Kernel Security
FIPS-certified kernel with ongoing security updates for cryptographic components
Security Tooling
Ubuntu Security Guide (USG) for automated compliance and security configuration management
Security Configuration
Pre-configured security safeguards with minimized attack surfaces and default protective measures
Compliance Framework
Vendor-neutral security configuration aligned with multiple cybersecurity compliance standards
System Optimization
Preconfigured Linux system tailored for system administrators, security experts, and platform deployment professionals
Security Standard Adherence
Image developed through consensus-based approach following industry-recognized security benchmarks
Standard contract
No
No
Customer reviews
3.5
1 ratings
1 AWS reviews
|
16 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
Dnyaneshwar Rajput
Stable performance enhances operations, but improving interface and customization is necessary
Reviewed on Jun 24, 2025
Review from a verified AWS customer
What is our primary use case?
My main use cases for Oracle Linux are ERP. I am using Oracle Linux for ERP purposes.
What is most valuable?
I find everything useful in this tool, as we are currently using Finance, Material Management, and Supply Chain. All of these features are beneficial.
What needs improvement?
Oracle Linux can be improved by making it more user-friendly.
The interface and some features need improvement. The interface is very important. Sometimes, there is a very lengthy process to generate a single report. The customization also needs development.
There should be more customization allowed for the system. There are some limitations as we cannot customize the system according to our needs. We have to use the standard features which are not always suitable for our business. Despite these limitations, we continue to use it.
For how long have I used the solution?
I have been working with Oracle Linux for the last four to five years.
What do I think about the stability of the solution?
I consider Oracle Linux to be stable software. It is stable, proactive, and secure.
The biggest advantage and benefit of Oracle Linux is its stability, proactivity, and security.
What do I think about the scalability of the solution?
Regarding scalability, I would rate Oracle Linux between five to six.
How are customer service and support?
Regarding technical support and customer support, I have contacted them and would rate it 8 out of 10.
How would you rate customer service and support?
Positive
How was the initial setup?
It is not critical to set up Oracle Linux.
What was our ROI?
When considering the value for money with Oracle Linux, I believe there is definite value.
What other advice do I have?
I have no experience with Oracle APEX or with Oracle ODI, but we are planning to move from Oracle EBS to Fusion.
I am not using the DTrace comprehensive dynamic tracing framework.
I am interested in taking an exam or getting certification from Oracle.
On a scale of 1-10, I rate Oracle Linux a 7.
Erick Kathurima
Delivers strong support for AI projects with quick deployment
Reviewed on May 22, 2025
Review provided by PeerSpot
What is our primary use case?
Since Oracle Linux is a very light software, it does not take time to deploy unless you have virtuals, or if you have containers you need to set up, which will take additional time. Installing and setting up Oracle Linux takes very few minutes.
Oracle Linux is very supportive in supporting my AI-driven projects and workloads.
How has it helped my organization?
The applications that we have deployed under Oracle Linux run optimally compared to environment we had hosted previously
What is most valuable?
The most valuable feature of Oracle Linux is managing applications and managing application development on the cloud. It is more secure and easier to manage.
Oracle Linux is excellent software, and I rate its scalability an eight.
There are at least 42 people using Oracle Linux in my organization, and we have virtualized some servers where we have deployed eight VMs.
What needs improvement?
The area of Oracle Linux that needs improvement is related to updates. If they have updates, it should update itself without logging out your services.
For how long have I used the solution?
I have worked with Oracle Linux for two years.
What do I think about the stability of the solution?
I rate the stability of Oracle Linux as very stable, at eight.
How are customer service and support?
Oracle has implemented a chatting AI which answers most questions effectively, but getting real customer service takes some time.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
How was the initial setup?
Oracle Linux is a bit easy to set up.
What other advice do I have?
I have a solution on-premises, and also on cloud for containers and orchestration.
The price of Oracle Linux is affordable, and you can download it for free. It is very available on the Oracle site, and it is an open solution.
Based on my experience, I would recommend Oracle Linux to other people anytime.
Overall, I rate this solution as the best solution at nine out of ten.
Which deployment model are you using for this solution?
On-premises
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Azaz Qurershi
User interface needs refinement but serves well for server functionality
Reviewed on May 14, 2025
Review provided by PeerSpot
What is our primary use case?
I am using Oracle Linux in the IT industry.
We configure Oracle Linux and give it to our customers, which amounts to thousands of people using it.
What is most valuable?
The features of Oracle Linux that we find most effective are when we normally use it as a VPN gateway. We configure it and make it an application-level gateway, and we use it for user authentication.
The main benefits we see in this operating system, apart from the user authentication and VPN gateway, are that we were using CentOS before. Since CentOS is stopping support and going to downstream support now, we moved to Oracle Linux for that matter. Otherwise, we were satisfied with the CentOS part.
What needs improvement?
I feel that Oracle Linux should improve to have a graphical interface that would be much more user-friendly, similar to Ubuntu , so that people who want to interface with the Oracle servers can have Oracle Linux desktop on their personal laptops as well.
I would recommend that those who are planning to use Oracle Linux consider it as a 90% replacement for CentOS because most people would be moving out of CentOS due to those stream and support issues. It is a close match to CentOS, and it could reach out to end users better if the graphical user interface is improved. On the server side, it is acceptable as it is an apple-to-apple match for CentOS, but for end users, people would be comparing it with Ubuntu or Mint, so it should improve its user interface.
For how long have I used the solution?
We have been using Oracle Linux for about a year.
What was my experience with deployment of the solution?
I have not faced any challenges or difficulties with Oracle Linux during this time.
What do I think about the stability of the solution?
I have not had any stability issues with Oracle Linux.
What do I think about the scalability of the solution?
I have not experienced Oracle Linux handling large-scale deployments; we just do a single node or double node deployment as of now.
I haven't used the scalability feature of Oracle Linux to evaluate if it is scalable enough for my environment.
How are customer service and support?
We normally use the community support for Oracle Linux as of now, which is my impression on the support they provide.
I have no complaints or recommendations regarding community support.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We switched to Oracle Linux because support is not available for CentOS; the patches won't be available, which is why we have moved to Oracle Linux, and on my personal laptop, I mostly use Ubuntu.
How was the initial setup?
It is easy to set up Oracle Linux compared to CentOS.
If I were to rate the setup for Oracle Linux from 1 to 10, it would receive a perfect 10.
What other advice do I have?
We have customized Oracle Linux, and we use it as a VPN.
Regarding security enhancements in Oracle Linux, the patches are available, so as and when the security patches are available, we update them.
We plan to increase the usage of Oracle Linux for now.
I rate Oracle Linux as a 10 when used on a server, but if I use it as an end user in terms of desktop computing, then it could be a five because the graphics is not as impressive as Ubuntu.
Which deployment model are you using for this solution?
On-premises
Thomas Waltair
Provides outstanding performance and resource savings with effective customer service
Reviewed on Apr 30, 2025
Review provided by PeerSpot
What is our primary use case?
Our clients are using Oracle Linux for core banking deployment and enterprise application deployment.
What is most valuable?
The solution works closely with the operating system kernel, which gives better performance in terms of multi-threading and a distributed database. We work based on Oracle specifications, and whenever there are critical patches and vulnerability tests, we update with the latest security patches. The collaboration with Oracle WebLogic and other Oracle tools enhances performance as well.
What needs improvement?
At this stage, we are uncertain about specific areas for improvement. There is support in place by Oracle, which is appreciated. AI could potentially optimize computing resources in the infrastructure side, especially in a multi-tier enterprise architecture.
For how long have I used the solution?
We have been using Oracle Linux for more than five years.
What was my experience with deployment of the solution?
The deployment of Oracle Linux is easy.
What do I think about the stability of the solution?
Oracle Linux is definitely stable. We are using it in a production environment.
What do I think about the scalability of the solution?
We have not seen any scalability issues as we are running a considerable volume.
How are customer service and support?
Customer service is good, but sometimes there are delays due to the criticality of the ticket.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
Previously, we were using other operating systems like Red Hat and SUSE Linux. We switched because we are using tightly coupled Oracle products, and Oracle Linux gives better performance.
How was the initial setup?
It is easy to deploy.
What was our ROI?
The solution provides the best return on investment. It saves more than forty percent of resources.
What's my experience with pricing, setup cost, and licensing?
Oracle Linux is affordable because it is open-source. However, if critical support is needed, payment is required.
Which other solutions did I evaluate?
We previously evaluated Red Hat and SUSE Linux.
What other advice do I have?
Our overall experience with Oracle Linux is very positive. I would rate it a nine out of ten. While support can sometimes be delayed due to ticket complexities, Oracle Linux could benefit from new computing resource optimizations, possibly involving AI.
Which deployment model are you using for this solution?
On-premises
RajeshKumar4
Secure environment and seamless integration provide peace of mind
Reviewed on Apr 29, 2025
Review provided by PeerSpot
What is our primary use case?
We are using Oracle ERP and Oracle Database , and we have installed Oracle tools and applications on Oracle Linux in a virtual environment.
What is most valuable?
The advantages of Oracle Linux are that it is secure and provides end-to-end support from Oracle, from the operating system to the application ERP . This gives us peace of mind. Compared to Windows, we prefer Linux to safeguard ourselves from different kinds of attacks and viruses.
What needs improvement?
Our level of expertise is not high enough. I had to find someone experienced with Oracle Linux since Windows is easier to learn, and most people have hands-on experience with it. If there were educational programs or certifications locally available, it would add more benefits. Additionally, the compatibility with the newest processor models could be improved. It takes time for Oracle to test and then make it public that a processor is supported. We often have to use an older processor model to ensure compatibility with the operating system and our ERP.
For how long have I used the solution?
I have been using Oracle Linux for the last four to five years.
What do I think about the stability of the solution?
Our environment is locally deployed, and there are no performance issues or latency problems. I find Oracle Linux very stable.
What do I think about the scalability of the solution?
I rate the scalability at seven. Compatibility with the newest processor models takes time, which can impact scalability. Oracle should make the process faster, as we sometimes have to use a previous processor model to ensure compatibility.
How are customer service and support?
Technical support is very good. I rate it a nine, keeping one point in reserve for anything that might come up in the future.
How would you rate customer service and support?
Positive
How was the initial setup?
For the time being, the installation is straightforward. The main task is ensuring compatibility with new hardware, but once set up, we can use a master VM for our virtual environment.
What was our ROI?
For us, the return on investment is the peace of mind provided by Oracle Linux. Our team is comfortable using Oracle Linux as it integrates well with Oracle tools, making everything work seamlessly.
What's my experience with pricing, setup cost, and licensing?
Oracle Linux is affordable. While ERP might be expensive, Oracle Linux and KVMs are not on the higher side.
What other advice do I have?
I am satisfied with Oracle Linux and would rate it an eight out of ten. It is a good tool for our small company, and we've never encountered anything we couldn't do with it.
Which deployment model are you using for this solution?
Private Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other