Top / Amazon Web Service / AWS Amazon EC2 Auto Scaling / Configuration

AWS Amazon EC2 Auto Scaling Configuration

This page shows how to write Terraform and CloudFormation for Amazon EC2 Auto Scaling Configuration and write them securely.

terraform-logo

Review your .tf file for AWS best practices

Shisho Cloud, our free checker to make sure your Terraform configuration follows best practices, is available (beta).

aws_launch_configuration (Terraform)

The Configuration in Amazon EC2 Auto Scaling can be configured in Terraform with the resource name aws_launch_configuration. The following sections describe 1 example of how to use the resource and its parameters.

Example Usage from GitHub

launch.tf#L2
resource "aws_launch_configuration" "ngx_plus" {
  name          = "ngx-plus"
  image_id      = data.aws_ami.ngx_plus.id
  instance_type = var.machine_type
  key_name      = var.key_name
  security_groups = [

Review your Terraform file for AWS best practices

Shisho Cloud, our free checker to make sure your Terraform configuration follows best practices, is available (beta).

Security Best Practices for aws_launch_configuration

There are 2 settings in aws_launch_configuration that should be taken care of for security reasons. The following section explain an overview and example code.

risk-label

Check public IPs should be given to Auto Scaling instances

It is better to block public access on the Internet to them. It is better to avoid associating public IP addresses if this is unintentional.

risk-label

Ensure to enable at rest encryption of Auto Scaling

It is better to enable at rest encryption of Auto Scaling. Device encryption reduces the risk of data leakage.

Review your AWS Amazon EC2 Auto Scaling settings

You can check if the aws_launch_configuration setting in your .tf file is correct in 3 min with Shisho Cloud.

Parameters

>> from Terraform Registry

Explanation in Terraform Registry

Provides a resource to create a new launch configuration, used for autoscaling groups.

>> from Terraform Registry

AWS::AutoScaling::LaunchConfiguration (CloudFormation)

The LaunchConfiguration in AutoScaling can be configured in CloudFormation with the resource name AWS::AutoScaling::LaunchConfiguration. The following sections describe how to use the resource and its parameters.

Example Usage from GitHub

An example could not be found in GitHub.

Parameters

>> from AWS CloudFormation Documentation

Explanation in CloudFormation Registry

The AWS::AutoScaling::LaunchConfiguration resource specifies the launch configuration that can be used by an Auto Scaling group to configure Amazon EC2 instances. When you update the launch configuration for an Auto Scaling group, CloudFormation deletes that resource and creates a new launch configuration with the updated properties and a new name. Existing instances are not affected. To update existing instances when you update the AWS::AutoScaling::LaunchConfiguration resource, you can specify an UpdatePolicy attribute for the group. You can find sample update policies for rolling updates in Auto scaling template snippets. For more information, see CreateLaunchConfiguration in the Amazon EC2 Auto Scaling API Reference and Launch configurations in the Amazon EC2 Auto Scaling User Guide.

Note To configure Amazon EC2 instances launched as part of the Auto Scaling group, you can specify a launch template or a launch configuration. We recommend that you use a launch template to make sure that you can use the latest features of Amazon EC2, such as Dedicated Hosts and T2 Unlimited instances. For more information, see Creating a launch template for an Auto Scaling group.

>> from AWS CloudFormation Documentation

The Other Related AWS Amazon EC2 Auto Scaling Resources

Frequently asked questions

What is AWS Amazon EC2 Auto Scaling Configuration?

AWS Amazon EC2 Auto Scaling Configuration is a resource for Amazon EC2 Auto Scaling of Amazon Web Service. Settings can be wrote in Terraform and CloudFormation.

Where can I find the example code for the AWS Amazon EC2 Auto Scaling Configuration?

For Terraform, the jpouyaud-perso/aws-nlb-ha-sni-routing-asg source code example is useful. See the Terraform Example section for further details.

security-icon

Automate config file reviews on your commits

Fix issues in your infrastructure as code with auto-generated patches.

Table of Contents