This policy validates that an EC2 Instance was launched with a tenancy approved for its AMI. This allows you to restrict what tenancy an Instance is launched with based on its AMI, for example by specifying certain sensitive or critical AMI's are only launched on instances with adedicated
tenancy.