How can I disable the metadata API on my droplet ?

February 22, 2015 2.2k views

Hi guys,

I just found that the metadata API is public which is annoying in my case. I’m not putting private information in my user data field, but I still want them to not be seen.

Can you help me?

1 Answer

Metadata is a service that allows a droplet to access data about itself. The information stored in it about a droplet is only accessible on that droplet. You can find more information about the metadata service in this tutorial:

If you’re concerned about other users that you’ve given access to the droplet seeing what’s in user-data, you can “null-route” the IP address of the metadata service. Adding the following cloud-config script to your user-data on droplet creation will do this automatically:

disable_ec2_metadata: true
by Mitchell Anicas
Update CloudInit link and conclusion Metadata is a service provided to DigitalOcean droplets that allows a droplet to access data about itself, i.e. its metadata. Examples of available droplet metadata include user-provided user data, droplet ID, data center region,...
Have another answer? Share your knowledge.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!