0% found this document useful (0 votes)

27 views

Amazon EC2 Auto Scaling user guide

please refer to updated documnents, Use only for educational purpose.

Uploaded by

kunta.srujan5

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

27 views

Amazon EC2 Auto Scaling user guide

please refer to updated documnents, Use only for educational purpose.

Uploaded by

kunta.srujan5

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 367

Amazon EC2 Auto Scaling

User Guide
Amazon EC2 Auto Scaling User Guide

Amazon EC2 Auto Scaling: User Guide

Amazon's trademarks and trade dress may not be used in connection with any product or service that is not
Amazon's, in any manner that is likely to cause confusion among customers, or in any manner that disparages or
discredits Amazon. All other trademarks not owned by Amazon are the property of their respective owners, who may
or may not be aﬃliated with, connected to, or sponsored by Amazon.
Amazon EC2 Auto Scaling User Guide

Table of Contents
What is Amazon EC2 Auto Scaling? ...................................................................................................... 1
Auto Scaling components ............................................................................................................ 1
Getting started .......................................................................................................................... 2
Pricing for Amazon EC2 Auto Scaling ........................................................................................... 2
Accessing Amazon EC2 Auto Scaling ............................................................................................. 2
Related services ......................................................................................................................... 3
Auto scaling benefits .................................................................................................................. 3
Example: Covering variable demand ..................................................................................... 3
Example: Web app architecture ............................................................................................ 5
Example: Distributing instances across Availability Zones ......................................................... 6
Instance lifecycle ........................................................................................................................ 8
Scale out ........................................................................................................................... 8
Instances in service ............................................................................................................ 9
Scale in ............................................................................................................................. 9
Attach an instance ............................................................................................................ 10
Detach an instance ........................................................................................................... 10
Lifecycle hooks ................................................................................................................ 10
Enter and exit standby ...................................................................................................... 10
Service quotas ......................................................................................................................... 10
Setting up ....................................................................................................................................... 12
Sign up for an AWS account ...................................................................................................... 12
Prepare to use Amazon EC2 ...................................................................................................... 12
Install the AWS CLI ................................................................................................................... 12
Getting started ................................................................................................................................ 13
Walkthrough summary .............................................................................................................. 13
Preparing for the walkthrough ................................................................................................... 14
Step 1: Create a launch template ............................................................................................... 14
Step 2: Create a single-instance Auto Scaling group ...................................................................... 16
Step 3: Verify your Auto Scaling group ....................................................................................... 16
Step 4: Terminate an instance in your Auto Scaling group ............................................................. 17
Step 5: Next steps .................................................................................................................... 17
Step 6: Clean up ...................................................................................................................... 18
Tutorial: Set up a scaled and load-balanced application ......................................................................... 19
Prerequisites ............................................................................................................................ 20
Step 1: Set up a launch template or launch configuration .............................................................. 20
Select or create a launch configuration ............................................................................... 21
Step 2: Create an Auto Scaling group ......................................................................................... 22
Step 3: Verify that your load balancer is attached ........................................................................ 23
Step 4: Next steps .................................................................................................................... 24
Step 5: Clean up ...................................................................................................................... 24
Launch templates ............................................................................................................................. 26
Permissions ............................................................................................................................. 27
Creating a launch template for an Auto Scaling group .................................................................. 27
Creating your launch template (console) ............................................................................. 28
Creating a launch template from an existing instance (console) .............................................. 33
Creating a launch template (AWS CLI) ................................................................................. 33
Limitations ...................................................................................................................... 34
Copy launch configurations to launch templates .......................................................................... 34
Replacing a launch configuration with a launch template .............................................................. 35
Requesting Spot Instances ......................................................................................................... 36
AWS CLI examples for working with launch templates .................................................................. 37
Example usage ................................................................................................................. 37
Creating a basic launch template ....................................................................................... 38
Specifying tags that tag instances at launch ........................................................................ 39

iii
Amazon EC2 Auto Scaling User Guide

Specifying an IAM role to pass to instances ......................................................................... 39

Assigning public IP addresses ............................................................................................. 39
Specifying a user data script that configures instances at launch ............................................ 39
Specifying a block device mapping ..................................................................................... 40
Specifying Dedicated Hosts to bring software licenses from external vendors ........................... 40
Specifying an existing network interface ............................................................................. 40
Creating multiple network interfaces .................................................................................. 40
Managing your launch templates ....................................................................................... 41
Updating an Auto Scaling group to use a launch template ..................................................... 43
Launch configurations ....................................................................................................................... 44
Creating a launch configuration ................................................................................................. 44
Creating your launch configuration (console) ....................................................................... 45
Creating a launch configuration (AWS CLI) ........................................................................... 46
Configuring IMDS ............................................................................................................. 46
Creating a launch configuration using an EC2 instance .................................................................. 47
Create a launch configuration using an EC2 instance ............................................................. 48
Create a launch configuration from an instance and override the block devices (AWS CLI) ........... 49
Create a launch configuration and override the instance type (AWS CLI) ................................... 50
Changing a launch configuration ................................................................................................ 51
Configuring instance tenancy ..................................................................................................... 52
Auto Scaling groups ......................................................................................................................... 54
Using multiple instance types and purchase options ..................................................................... 55
Allocation strategies ......................................................................................................... 56
Controlling the proportion of On-Demand instances ............................................................. 58
Best practices for Spot Instances ........................................................................................ 59
Prerequisites .................................................................................................................... 60
Creating an Auto Scaling group with Spot and On-Demand Instances (console) ......................... 60
Configuring Spot allocation strategies (AWS CLI) .................................................................. 62
Verifying whether your Auto Scaling group is configured correctly and that the group has
launched instances (AWS CLI) ............................................................................................ 67
Configuring overrides ........................................................................................................ 68
Using attribute-based instance type selection .............................................................................. 78
Considerations ................................................................................................................. 79
Prerequisites .................................................................................................................... 80
Use attribute-based instance type selection ......................................................................... 80
Limitations ...................................................................................................................... 83
Creating a group using a launch template ................................................................................... 83
Creating a group using a launch configuration ............................................................................. 85
Creating a group using an EC2 instance ...................................................................................... 87
Prerequisites .................................................................................................................... 88
Create an Auto Scaling group from an EC2 instance (AWS CLI) ............................................... 88
Limitations ...................................................................................................................... 90
Creating a group using the EC2 launch wizard ............................................................................. 91
Create a launch template .................................................................................................. 91
Create an Auto Scaling group ............................................................................................ 92
Next steps ....................................................................................................................... 92
Tagging Auto Scaling groups and instances ................................................................................. 93
Tag naming and usage restrictions ..................................................................................... 93
EC2 instance tagging lifecycle ............................................................................................ 94
Tag your Auto Scaling groups ............................................................................................ 94
Delete tags ...................................................................................................................... 96
Tagging for security .......................................................................................................... 97
Controlling access to tags .................................................................................................. 97
Use tags to filter Auto Scaling groups ................................................................................. 98
Elastic Load Balancing ............................................................................................................. 100
Elastic Load Balancing types ........................................................................................... 101
Prerequisites .................................................................................................................. 102

iv
Amazon EC2 Auto Scaling User Guide

Attaching a load balancer ................................................................................................ 103

Adding ELB health checks ................................................................................................ 105
Adding Availability Zones ................................................................................................ 106
AWS CLI examples for working with Elastic Load Balancing .................................................. 109
Launching instances in a VPC ................................................................................................... 112
Default VPC ................................................................................................................... 113
Nondefault VPC .............................................................................................................. 113
Considerations when choosing VPC subnets ....................................................................... 113
IP addressing in a VPC .................................................................................................... 114
Network interfaces in a VPC ............................................................................................ 114
Instance placement tenancy ............................................................................................. 114
More resources for learning about VPCs ............................................................................ 114
Compute Optimizer recommendations ...................................................................................... 115
Limitations ..................................................................................................................... 115
Findings ........................................................................................................................ 115
Viewing recommendations ............................................................................................... 116
Considerations for evaluating the recommendations ........................................................... 116
Replacing instances ................................................................................................................. 117
Replacing instances based on an instance refresh ............................................................... 118
AWS CLI examples that enable skip matching .................................................................... 125
Adding checkpoints to an instance refresh ......................................................................... 129
Creating EventBridge rules for instance refresh events ......................................................... 132
Replacing instances based on maximum instance lifetime .................................................... 133
Deleting your Auto Scaling infrastructure .................................................................................. 136
Delete your Auto Scaling group ........................................................................................ 136
(Optional) Delete the launch conﬁguration ........................................................................ 137
(Optional) Delete the launch template .............................................................................. 137
(Optional) Delete the load balancer and target groups ....................................................... 138
(Optional) Delete CloudWatch alarms ................................................................................ 138
Scaling your group ......................................................................................................................... 140
Scaling options ...................................................................................................................... 140
Setting capacity limits ............................................................................................................. 141
Maintaining a ﬁxed number of instances ................................................................................... 142
Manual scaling ....................................................................................................................... 142
Changing the size of your Auto Scaling group (console) ....................................................... 143
Changing the size of your Auto Scaling group (AWS CLI) ...................................................... 143
Attach EC2 instances to your Auto Scaling group ................................................................ 145
Detach EC2 instances from your Auto Scaling group ........................................................... 149
Dynamic scaling ..................................................................................................................... 152
How dynamic scaling policies work ................................................................................... 152
Dynamic scaling policy types ........................................................................................... 153
Multiple dynamic scaling policies ...................................................................................... 153
Target tracking scaling policies ......................................................................................... 154
Step and simple scaling policies ....................................................................................... 159
Scaling cooldowns .......................................................................................................... 168
Scaling based on Amazon SQS ......................................................................................... 172
Verifying a scaling activity ............................................................................................... 176
Disabling a scaling policy ................................................................................................ 177
Deleting a scaling policy .................................................................................................. 179
AWS CLI examples for scaling policies ............................................................................... 181
Predictive scaling .................................................................................................................... 182
How predictive scaling works ........................................................................................... 183
Best practices ................................................................................................................. 184
Create a predictive scaling policy (console) ........................................................................ 184
Create a predictive scaling policy (AWS CLI) ....................................................................... 185
Limitations ..................................................................................................................... 187
Exploring your data and forecast ...................................................................................... 188

v
Amazon EC2 Auto Scaling User Guide

Overriding the forecast ................................................................................................... 189

Using custom metrics ...................................................................................................... 192
Scheduled scaling ................................................................................................................... 199
Considerations ................................................................................................................ 200
Recurring schedules ........................................................................................................ 200
Create and manage scheduled actions (console) ................................................................. 200
Create and manage scheduled actions (AWS CLI) ................................................................ 202
Limitations ..................................................................................................................... 204
Lifecycle hooks ....................................................................................................................... 204
Considerations and limitations ......................................................................................... 205
Lifecycle hook availability ................................................................................................ 205
Examples ....................................................................................................................... 206
How lifecycle hooks work ................................................................................................ 206
Prepare to add a lifecycle hook ........................................................................................ 207
Adding lifecycle hooks .................................................................................................... 212
Completing a lifecycle action ........................................................................................... 213
Tutorial: Conﬁgure a lifecycle hook that invokes a Lambda function ...................................... 215
Warm pools ........................................................................................................................... 220
Core concepts ................................................................................................................ 221
Prerequisites .................................................................................................................. 222
Create a warm pool ........................................................................................................ 223
Update a warm pool ....................................................................................................... 223
Delete a warm pool ........................................................................................................ 224
Limitations ..................................................................................................................... 224
Hibernation not supported in all AWS Regions ................................................................... 224
Using lifecycle hooks ...................................................................................................... 224
Event types and event patterns ........................................................................................ 226
Creating EventBridge rules ............................................................................................... 230
Viewing health check status ............................................................................................. 232
AWS CLI examples for working with warm pools ................................................................ 234
Controlling instance termination .............................................................................................. 236
Termination policy scenarios ............................................................................................ 237
Working with termination policies .................................................................................... 239
Creating a custom termination policy with Lambda ............................................................. 242
Using instance scale-in protection .................................................................................... 246
Temporarily removing instances ............................................................................................... 248
How the standby state works ........................................................................................... 249
Health status of an instance in a standby state .................................................................. 250
Temporarily remove an instance (console) .......................................................................... 250
Temporarily remove an instance (AWS CLI) ........................................................................ 250
Suspending processes ............................................................................................................. 253
Amazon EC2 Auto Scaling processes ................................................................................. 253
Choosing to suspend ....................................................................................................... 254
Suspend and resume processes (console) ........................................................................... 256
Suspend and resume processes (AWS CLI) .......................................................................... 256
Monitoring ..................................................................................................................................... 258
Checking instance health ......................................................................................................... 259
Instance health status ..................................................................................................... 259
Determining instance health ............................................................................................ 260
Considerations ................................................................................................................ 260
Health check grace period ............................................................................................... 261
Replacing unhealthy instances .......................................................................................... 262
Using custom health checks ............................................................................................. 262
Additional information .................................................................................................... 263
Capacity Rebalancing .............................................................................................................. 263
How it works ................................................................................................................. 263
Enabling Capacity Rebalancing ......................................................................................... 264

vi
Amazon EC2 Auto Scaling User Guide

Adding a termination lifecycle hook .................................................................................. 268

Monitoring with AWS Health Dashboard .................................................................................... 269
Monitoring with CloudWatch .................................................................................................... 270
Enable Auto Scaling group metrics (console) ...................................................................... 271
Enable Auto Scaling group metrics (AWS CLI) ..................................................................... 271
Available metrics and dimensions ..................................................................................... 272
Working with Amazon CloudWatch ................................................................................... 274
Configuring monitoring for Auto Scaling instances .............................................................. 276
Viewing monitoring graphs in the Amazon EC2 Auto Scaling console ..................................... 277
Logging API calls with AWS CloudTrail ...................................................................................... 279
Amazon EC2 Auto Scaling information in CloudTrail ............................................................ 280
Understanding Amazon EC2 Auto Scaling log file entries ..................................................... 280
Monitoring with Amazon SNS notifications ................................................................................ 281
SNS notifications ............................................................................................................ 282
Configuring Amazon SNS notifications for Amazon EC2 Auto Scaling ..................................... 283
Using EventBridge .................................................................................................................. 285
Auto Scaling events ........................................................................................................ 285
Using AWS Lambda to handle events ................................................................................ 291
See also ........................................................................................................................ 293
Security ......................................................................................................................................... 294
Data protection ...................................................................................................................... 294
Using AWS KMS keys to encrypt Amazon EBS volumes ........................................................ 295
Identity and Access Management .............................................................................................. 295
Access control ................................................................................................................ 296
How Amazon EC2 Auto Scaling works with IAM .................................................................. 296
AWS managed policies .................................................................................................... 301
Service-linked roles ......................................................................................................... 302
Identity-based policy examples ........................................................................................ 307
Launch template support ................................................................................................ 316
IAM role for applications that run on Amazon EC2 instances ................................................ 320
AWS KMS key policy for use with encrypted volumes .......................................................... 321
Compliance validation ............................................................................................................. 325
PCI DSS compliance ........................................................................................................ 326
Resilience .............................................................................................................................. 326
Infrastructure security ............................................................................................................. 326
Using VPC endpoints for private connectivity ............................................................................. 327
Create an interface VPC endpoint ..................................................................................... 327
Create a VPC endpoint policy ........................................................................................... 328
Troubleshooting ............................................................................................................................. 329
Retrieving an error message .................................................................................................... 329
Additional troubleshooting resources ........................................................................................ 332
Instance launch failure ............................................................................................................ 332
The requested configuration is currently not supported. ...................................................... 333
The security group <name of the security group> does not exist. Launching EC2 instance failed. 334
The key pair <key pair associated with your EC2 instance> does not exist. Launching EC2
instance failed. ............................................................................................................... 334
The requested Availability Zone is no longer supported. Please retry your request... ................. 334
Your requested instance type (<instance type>) is not supported in your requested Availability
Zone (<instance Availability Zone>)... ................................................................................ 334
Your Spot request price of 0.015 is lower than the minimum required Spot request fulfillment
price of 0.0735... ............................................................................................................ 335
Invalid device name <device name> / Invalid device name upload. Launching EC2 instance
failed. ............................................................................................................................ 335
Value (<name associated with the instance storage device>) for parameter virtualName is
invalid... ......................................................................................................................... 335
EBS block device mappings not supported for instance-store AMIs. ....................................... 336

vii
Amazon EC2 Auto Scaling User Guide

Placement groups may not be used with instances of type 'm1.large'. Launching EC2 instance
failed. ............................................................................................................................ 336
Client.InternalError: Client error on launch. ........................................................................ 336
We currently do not have sufficient <instance type> capacity in the Availability Zone you
requested... Launching EC2 instance failed. ........................................................................ 337
There is no Spot capacity available that matches your request. Launching EC2 instance failed. ... 337
<number of instances> instance(s) are already running. Launching EC2 instance failed. ............. 338
AMI issues ............................................................................................................................. 338
The AMI ID <ID of your AMI> does not exist. Launching EC2 instance failed. ............................ 338
AMI <AMI ID> is pending, and cannot be run. Launching EC2 instance failed. .......................... 339
Value (<ami ID>) for parameter virtualName is invalid. ........................................................ 339
The requested instance type's architecture (i386) does not match the architecture in the
manifest for ami-6622f00f (x86_64). Launching EC2 instance failed. ..................................... 339
Load balancer issues ............................................................................................................... 339
Cannot find Load Balancer <your launch environment>. Validating load balancer configuration
failed. ............................................................................................................................ 340
There is no ACTIVE Load Balancer named <load balancer name>. Updating load balancer
configuration failed. ........................................................................................................ 340
EC2 instance <instance ID> is not in VPC. Updating load balancer configuration failed. ............. 340
EC2 instance <instance ID> is in VPC. Updating load balancer configuration failed. ................... 340
Launch template issues ........................................................................................................... 341
You are not authorized to perform this operation ............................................................... 341
Health checks ........................................................................................................................ 341
An instance was taken out of service in response to an EC2 instance status check failure ........... 342
An instance was taken out of service in response to an EC2 scheduled reboot ......................... 342
An instance was taken out of service in response to an EC2 health check that indicated it had
been terminated or stopped ............................................................................................ 343
An instance was taken out of service in response to an ELB system health check failure ............ 343
Resources ...................................................................................................................................... 345
Document history ........................................................................................................................... 346

viii
Amazon EC2 Auto Scaling User Guide
Auto Scaling components

What is Amazon EC2 Auto Scaling?

Amazon EC2 Auto Scaling helps you ensure that you have the correct number of Amazon EC2 instances
available to handle the load for your application. You create collections of EC2 instances, called Auto
Scaling groups. You can specify the minimum number of instances in each Auto Scaling group, and
Amazon EC2 Auto Scaling ensures that your group never goes below this size. You can specify the
maximum number of instances in each Auto Scaling group, and Amazon EC2 Auto Scaling ensures
that your group never goes above this size. If you specify the desired capacity, either when you create
the group or at any time thereafter, Amazon EC2 Auto Scaling ensures that your group has this many
instances. If you specify scaling policies, then Amazon EC2 Auto Scaling can launch or terminate
instances as demand on your application increases or decreases.

For example, the following Auto Scaling group has a minimum size of one instance, a desired capacity
of two instances, and a maximum size of four instances. The scaling policies that you deﬁne adjust the
number of instances, within your minimum and maximum number of instances, based on the criteria that
you specify.

For more information about the beneﬁts of Amazon EC2 Auto Scaling, see Amazon EC2 Auto Scaling
beneﬁts (p. 3).

Auto Scaling components

The following table describes the key components of Amazon EC2 Auto Scaling.

Groups

Your EC2 instances are organized into groups so that they can
be treated as a logical unit for the purposes of scaling and
management. When you create a group, you can specify its
minimum, maximum, and, desired number of EC2 instances. For
more information, see Auto Scaling groups (p. 54).

Conﬁguration templates

Your group uses a launch template, or a launch conﬁguration (not

recommended, offers fewer features), as a configuration template
for its EC2 instances. You can specify information such as the
AMI ID, instance type, key pair, security groups, and block device
mapping for your instances. For more information, see Launch
templates (p. 26) and Launch configurations (p. 44).

Scaling options

Amazon EC2 Auto Scaling provides several ways for you to scale
your Auto Scaling groups. For example, you can conﬁgure a group

1
Amazon EC2 Auto Scaling User Guide
Getting started

to scale based on the occurrence of speciﬁed conditions (dynamic

scaling) or on a schedule. For more information, see Scaling
options (p. 140).

Getting started
To begin, complete the Getting started with Amazon EC2 Auto Scaling (p. 13) tutorial to create an
Auto Scaling group and see how it responds when an instance in that group terminates.

Pricing for Amazon EC2 Auto Scaling

There are no additional fees with Amazon EC2 Auto Scaling, so it's easy to try it out and see how it can
beneﬁt your AWS architecture. You only pay for the AWS resources (for example, EC2 instances, EBS
volumes, and CloudWatch alarms) that you use.

Accessing Amazon EC2 Auto Scaling

If you've signed up for an Amazon Web Services account, you can access Amazon EC2 Auto Scaling
by signing into the AWS Management Console, choosing EC2 from the console home page, and then
choosing Auto Scaling Groups from the navigation pane.

You can also access Amazon EC2 Auto Scaling using the Amazon EC2 Auto Scaling API. Amazon EC2 Auto
Scaling provides a Query API. These requests are HTTP or HTTPS requests that use the HTTP verbs GET
or POST and a Query parameter named Action. For more information about the API actions for Amazon
EC2 Auto Scaling, see Actions in the Amazon EC2 Auto Scaling API Reference.

If you prefer to build applications using language-speciﬁc APIs instead of submitting a request over
HTTP or HTTPS, AWS provides libraries, sample code, tutorials, and other resources for software
developers. These libraries provide basic functions that automate tasks such as cryptographically signing
your requests, retrying requests, and handling error responses, making it is easier for you to get started.
For more information, see AWS SDKs and tools.

If you prefer to use a command line interface, you have the following options:

AWS Command Line Interface (CLI)

Provides commands for a broad set of AWS products, and is supported on Windows, macOS, and
Linux. To get started, see AWS Command Line Interface User Guide. For more information, see
autoscaling in the AWS CLI Command Reference.
AWS Tools for Windows PowerShell

Provides commands for a broad set of AWS products for those who script in the PowerShell
environment. To get started, see the AWS Tools for Windows PowerShell User Guide. For more
information, see the AWS Tools for PowerShell Cmdlet Reference.

For information about your credentials for accessing AWS, see AWS security credentials in the Amazon
Web Services General Reference. For information about regions and endpoints for calls to Amazon EC2
Auto Scaling, see the Regions and endpoints table in the AWS General Reference.

2
Amazon EC2 Auto Scaling User Guide
Related services

Related services
To automatically distribute incoming application traﬃc across multiple instances in your Auto Scaling
group, use Elastic Load Balancing. For more information, see the Elastic Load Balancing User Guide.

To monitor basic statistics for your instances and Amazon EBS volumes, use Amazon CloudWatch. For
more information, see the Amazon CloudWatch User Guide.

To conﬁgure auto scaling for scalable resources for other Amazon Web Services beyond Amazon EC2, see
the Application Auto Scaling User Guide.

Amazon EC2 Auto Scaling beneﬁts

Adding Amazon EC2 Auto Scaling to your application architecture is one way to maximize the beneﬁts of
the AWS Cloud. When you use Amazon EC2 Auto Scaling, your applications gain the following beneﬁts:

• Better fault tolerance. Amazon EC2 Auto Scaling can detect when an instance is unhealthy, terminate
it, and launch an instance to replace it. You can also conﬁgure Amazon EC2 Auto Scaling to use
multiple Availability Zones. If one Availability Zone becomes unavailable, Amazon EC2 Auto Scaling
can launch instances in another one to compensate.
• Better availability. Amazon EC2 Auto Scaling helps ensure that your application always has the right
amount of capacity to handle the current traﬃc demand.
• Better cost management. Amazon EC2 Auto Scaling can dynamically increase and decrease capacity as
needed. Because you pay for the EC2 instances you use, you save money by launching instances when
they are needed and terminating them when they aren't.

Contents
• Example: Covering variable demand (p. 3)
• Example: Web app architecture (p. 5)
• Example: Distributing instances across Availability Zones (p. 6)
• Instance distribution (p. 6)
• Rebalancing activities (p. 7)

Example: Covering variable demand

To demonstrate some of the beneﬁts of Amazon EC2 Auto Scaling, consider a basic web application
running on AWS. This application allows employees to search for conference rooms that they might want
to use for meetings. During the beginning and end of the week, usage of this application is minimal.
During the middle of the week, more employees are scheduling meetings, so the demand on the
application increases signiﬁcantly.

The following graph shows how much of the application's capacity is used over the course of a week.

3
Amazon EC2 Auto Scaling User Guide
Example: Covering variable demand

Traditionally, there are two ways to plan for these changes in capacity. The ﬁrst option is to add enough
servers so that the application always has enough capacity to meet demand. The downside of this
option, however, is that there are days in which the application doesn't need this much capacity. The
extra capacity remains unused and, in essence, raises the cost of keeping the application running.

The second option is to have enough capacity to handle the average demand on the application. This
option is less expensive, because you aren't purchasing equipment that you'll only use occasionally.
However, you risk creating a poor customer experience when the demand on the application exceeds its
capacity.

By adding Amazon EC2 Auto Scaling to this application, you have a third option available. You can add
new instances to the application only when necessary, and terminate them when they're no longer
needed. Because Amazon EC2 Auto Scaling uses EC2 instances, you only have to pay for the instances
you use, when you use them. You now have a cost-eﬀective architecture that provides the best customer
experience while minimizing expenses.

4
Amazon EC2 Auto Scaling User Guide
Example: Web app architecture

Example: Web app architecture

In a common web app scenario, you run multiple copies of your app simultaneously to cover the volume
of your customer traﬃc. These multiple copies of your application are hosted on identical EC2 instances
(cloud servers), each handling customer requests.

Amazon EC2 Auto Scaling manages the launch and termination of these EC2 instances on your behalf.
You deﬁne a set of criteria (such as an Amazon CloudWatch alarm) that determines when the Auto
Scaling group launches or terminates EC2 instances. Adding Auto Scaling groups to your network
architecture helps make your application more highly available and fault tolerant.

You can create as many Auto Scaling groups as you need. For example, you can create an Auto Scaling
group for each tier.

5
Amazon EC2 Auto Scaling User Guide
Example: Distributing instances across Availability Zones

To distribute traﬃc between the instances in your Auto Scaling groups, you can introduce a load balancer
into your architecture. For more information, see Elastic Load Balancing (p. 100).

Example: Distributing instances across Availability

Zones
AWS resources, such as EC2 instances, are housed in highly available data centers. To provide additional
scalability and reliability, these data centers are in diﬀerent physical locations. Regions are large
and widely dispersed geographic locations. Each Region contains multiple distinct locations, called
Availability Zones, which are engineered to be isolated from failures in other Availability Zones. They
provide inexpensive, low-latency network connectivity to other Availability Zones in the same Region.

Amazon EC2 Auto Scaling enables you to take advantage of the safety and reliability of geographic
redundancy by spanning Auto Scaling groups across multiple Availability Zones within a Region.
When one Availability Zone becomes unhealthy or unavailable, Auto Scaling launches new instances
in an unaﬀected Availability Zone. When the unhealthy Availability Zone returns to a healthy state,
Auto Scaling automatically redistributes the application instances evenly across all of the designated
Availability Zones.

An Auto Scaling group can contain EC2 instances in one or more Availability Zones within the same
Region. However, Auto Scaling groups cannot span multiple Regions.

For Auto Scaling groups in a VPC, the EC2 instances are launched in subnets. You select the subnets
for your EC2 instances when you create or update the Auto Scaling group. You can select one or more
subnets per Availability Zone. For more information, see VPCs and subnets in the Amazon VPC User
Guide.

Instance distribution
Amazon EC2 Auto Scaling attempts to distribute instances evenly between the Availability Zones that
are enabled for your Auto Scaling group. Amazon EC2 Auto Scaling does this by attempting to launch
new instances in the Availability Zone with the fewest instances. If the attempt fails, however, Amazon
EC2 Auto Scaling attempts to launch the instances in another Availability Zone until it succeeds. For Auto
Scaling groups in a VPC, if there are multiple subnets in an Availability Zone, Amazon EC2 Auto Scaling
selects a subnet from the Availability Zone at random.

6
Amazon EC2 Auto Scaling User Guide
Example: Distributing instances across Availability Zones

Rebalancing activities
Rebalancing activities fall into two categories: Availability Zone rebalancing and capacity rebalancing.

Availability Zone rebalancing

After certain actions occur, your Auto Scaling group can become unbalanced between Availability Zones.
Amazon EC2 Auto Scaling compensates by rebalancing the Availability Zones. The following actions can
lead to rebalancing activity:

• You change the Availability Zones for your group.

• You explicitly terminate or detach instances and the group becomes unbalanced.
• An Availability Zone that previously had insuﬃcient capacity recovers and has additional capacity
available.
• An Availability Zone that previously had a Spot price above your maximum price now has a Spot price
below your maximum price.

When rebalancing, Amazon EC2 Auto Scaling launches new instances before terminating the old ones, so
that rebalancing does not compromise the performance or availability of your application.

7
Amazon EC2 Auto Scaling User Guide
Instance lifecycle

Because Amazon EC2 Auto Scaling attempts to launch new instances before terminating the old ones,
being at or near the speciﬁed maximum capacity could impede or completely halt rebalancing activities.
To avoid this problem, the system can temporarily exceed the speciﬁed maximum capacity of a group
by a 10 percent margin (or by a 1-instance margin, whichever is greater) during a rebalancing activity.
The margin is extended only if the group is at or near maximum capacity and needs rebalancing, either
because of user-requested rezoning or to compensate for zone availability issues. The extension lasts
only as long as needed to rebalance the group (typically a few minutes).

Capacity Rebalancing

You can enable Capacity Rebalancing for your Auto Scaling groups when using Spot Instances. When you
turn on Capacity Rebalancing, Amazon EC2 Auto Scaling attempts to launch a Spot Instance whenever
Amazon EC2 notiﬁes that a Spot Instance is at an elevated risk of interruption. After launching a new
instance, it then terminates an old instance. For more information, see Amazon EC2 Auto Scaling
Capacity Rebalancing (p. 263).

Amazon EC2 Auto Scaling instance lifecycle

The EC2 instances in an Auto Scaling group have a path, or lifecycle, that diﬀers from that of other EC2
instances. The lifecycle starts when the Auto Scaling group launches an instance and puts it into service.
The lifecycle ends when you terminate the instance, or the Auto Scaling group takes the instance out of
service and terminates it.
Note
You are billed for instances as soon as they are launched, including the time that they are not
yet in service.

The following illustration shows the transitions between instance states in the Amazon EC2 Auto Scaling
lifecycle.

Scale out
The following scale-out events direct the Auto Scaling group to launch EC2 instances and attach them to
the group:

• You manually increase the size of the group. For more information, see Manual scaling for Amazon EC2
Auto Scaling (p. 142).

8
Amazon EC2 Auto Scaling User Guide
Instances in service

• You create a scaling policy to automatically increase the size of the group based on a speciﬁed increase
in demand. For more information, see Dynamic scaling for Amazon EC2 Auto Scaling (p. 152).
• You set up scaling by schedule to increase the size of the group at a speciﬁc time. For more
information, see Scheduled scaling for Amazon EC2 Auto Scaling (p. 199).

When a scale-out event occurs, the Auto Scaling group launches the required number of EC2 instances,
using its assigned launch template. These instances start in the Pending state. If you add a lifecycle
hook to your Auto Scaling group, you can perform a custom action here. For more information, see
Lifecycle hooks (p. 10).

When each instance is fully conﬁgured and passes the Amazon EC2 health checks, it is attached to the
Auto Scaling group and it enters the InService state. The instance is counted against the desired
capacity of the Auto Scaling group.

Instances in service
Instances remain in the InService state until one of the following occurs:

• A scale-in event occurs, and Amazon EC2 Auto Scaling chooses to terminate this instance in order to
reduce the size of the Auto Scaling group. For more information, see Controlling which Auto Scaling
instances terminate during scale in (p. 236).
• You put the instance into a Standby state. For more information, see Enter and exit standby (p. 10).
• You detach the instance from the Auto Scaling group. For more information, see Detach an
instance (p. 10).
• The instance fails a required number of health checks, so it is removed from the Auto Scaling
group, terminated, and replaced. For more information, see Health checks for Auto Scaling
instances (p. 259).

Scale in
The following scale-in events direct the Auto Scaling group to detach EC2 instances from the group and
terminate them:

• You manually decrease the size of the group. For more information, see Manual scaling for Amazon
EC2 Auto Scaling (p. 142).
• You create a scaling policy to automatically decrease the size of the group based on a speciﬁed
decrease in demand. For more information, see Dynamic scaling for Amazon EC2 Auto
Scaling (p. 152).
• You set up scaling by schedule to decrease the size of the group at a speciﬁc time. For more
information, see Scheduled scaling for Amazon EC2 Auto Scaling (p. 199).

It is important that you create a corresponding scale-in event for each scale-out event that you create.
This helps ensure that the resources assigned to your application match the demand for those resources
as closely as possible.

When a scale-in event occurs, the Auto Scaling group terminates one or more instances. The Auto
Scaling group uses its termination policy to determine which instances to terminate. Instances that are
in the process of terminating from the Auto Scaling group and shutting down enter the Terminating
state, and can't be put back into service. If you add a lifecycle hook to your Auto Scaling group, you
can perform a custom action here. Finally, the instances are completely terminated and enter the
Terminated state.

9
Amazon EC2 Auto Scaling User Guide
Attach an instance

Attach an instance
You can attach a running EC2 instance that meets certain criteria to your Auto Scaling group. After the
instance is attached, it is managed as part of the Auto Scaling group.

For more information, see Attach EC2 instances to your Auto Scaling group (p. 145).

Detach an instance
You can detach an instance from your Auto Scaling group. After the instance is detached, you can
manage it separately from the Auto Scaling group or attach it to a diﬀerent Auto Scaling group.

For more information, see Detach EC2 instances from your Auto Scaling group (p. 149).

Lifecycle hooks
You can add a lifecycle hook to your Auto Scaling group so that you can perform custom actions when
instances launch or terminate.

When Amazon EC2 Auto Scaling responds to a scale-out event, it launches one or more instances. These
instances start in the Pending state. If you added an autoscaling:EC2_INSTANCE_LAUNCHING
lifecycle hook to your Auto Scaling group, the instances move from the Pending state to
the Pending:Wait state. After you complete the lifecycle action, the instances enter the
Pending:Proceed state. When the instances are fully conﬁgured, they are attached to the Auto Scaling
group and they enter the InService state.

When Amazon EC2 Auto Scaling responds to a scale-in event, it terminates one or more instances. These
instances are detached from the Auto Scaling group and enter the Terminating state. If you added an
autoscaling:EC2_INSTANCE_TERMINATING lifecycle hook to your Auto Scaling group, the instances
move from the Terminating state to the Terminating:Wait state. After you complete the lifecycle
action, the instances enter the Terminating:Proceed state. When the instances are fully terminated,
they enter the Terminated state.

For more information, see Amazon EC2 Auto Scaling lifecycle hooks (p. 204).

Enter and exit standby

You can put any instance that is in an InService state into a Standby state. This enables you to
remove the instance from service, troubleshoot or make changes to it, and then put it back into service.

Instances in a Standby state continue to be managed by the Auto Scaling group. However, they are not
an active part of your application until you put them back into service.

For more information, see Temporarily removing instances from your Auto Scaling group (p. 248).

Amazon EC2 Auto Scaling service quotas

Your Amazon Web Services account has the following default quotas, formerly referred to as limits, for
Amazon EC2 Auto Scaling.

Default quotas

• Launch conﬁgurations per Region: 200

• Auto Scaling groups per Region: 200

10
Amazon EC2 Auto Scaling User Guide
Service quotas

To view the current quotas for your account, open the Amazon EC2 console at https://
console.aws.amazon.com/ec2/ and navigate to the Limits page. You can also use the describe-account-
limits command. To request an increase, use the Auto Scaling Limits form.

Auto Scaling group quotas

• Scaling policies per Auto Scaling group: 50

• Scheduled actions per Auto Scaling group: 125
• Lifecycle hooks per Auto Scaling group: 50
• SNS topics per Auto Scaling group: 10
• Classic Load Balancers per Auto Scaling group: 50
• Target groups per Auto Scaling group: 50

Scaling policy quotas

• Step adjustments per scaling policy: 20

API-speciﬁc limits

• You can use AttachInstances, DetachInstances, EnterStandby, and ExitStandby with at

most 20 instance IDs at a time.
• You can use AttachLoadBalancers and DetachLoadBalancers with at most 10 load balancers at
a time.
• You can use AttachLoadBalancerTargetGroups and DetachLoadBalancerTargetGroups with
at most 10 target groups at a time.
• You can use SetInstanceProtection with at most 50 instances at a time.

For information about the service quotas for other Amazon Web Services, see Service endpoints and
quotas in the Amazon Web Services General Reference.

11
Amazon EC2 Auto Scaling User Guide
Sign up for an AWS account

Setting up Amazon EC2 Auto Scaling

Before you start using Amazon EC2 Auto Scaling, complete the following tasks.

Tasks
• Sign up for an AWS account (p. 12)
• Prepare to use Amazon EC2 (p. 12)
• Install the AWS CLI (p. 12)

Sign up for an AWS account

When you sign up for an account with Amazon Web Services, your account is automatically signed up
for all Amazon Web Services. You pay only for the services that you use. You can use Amazon EC2 Auto
Scaling at no additional charge beyond what you are paying for your EC2 instances.

If you don't have an AWS account, sign up for an account as follows.

To sign up for an account

1. Open https://portal.aws.amazon.com/billing/signup.
2. Follow the online instructions.

Part of the sign-up procedure involves receiving a phone call and entering a veriﬁcation code on the
phone keypad.

AWS sends you a conﬁrmation email after the sign-up process is complete.

Prepare to use Amazon EC2

If you haven't used Amazon EC2 before, complete the tasks described in the Amazon EC2
documentation. For more information, see Setting up with Amazon EC2 in the Amazon EC2 User Guide
for Linux Instances or Setting up with Amazon EC2 in the Amazon EC2 User Guide for Windows Instances.

Install the AWS CLI

To use the AWS CLI with Amazon EC2 Auto Scaling, install the latest AWS CLI version. For information
about installing the AWS CLI or upgrading it to the latest version, see Installing the AWS Command Line
Interface in the AWS Command Line Interface User Guide.

12
Amazon EC2 Auto Scaling User Guide
Walkthrough summary

Getting started with Amazon EC2

Auto Scaling
When you use Amazon EC2 Auto Scaling, you must use certain building blocks to get started. This
tutorial walks you through the process for setting up building blocks to create a basic infrastructure for
Amazon EC2 Auto Scaling.

Before you create an Auto Scaling group for use with your application, review your application
thoroughly as it runs in the AWS Cloud. Consider the following:

• How many Availability Zones the Auto Scaling group should span.
• What existing resources can be used, such as security groups or Amazon Machine Images (AMIs).
• Whether you want to scale to increase or decrease capacity, or if you just want to ensure that a speciﬁc
number of servers are always running. Keep in mind that Amazon EC2 Auto Scaling can do both
simultaneously.
• What metrics have the most relevance to your application's performance.
• How long it takes to launch and conﬁgure a server.

The better you understand your application, the more eﬀective you can make your Auto Scaling
architecture.
Note
For an introduction video, see AWS re:Invent 2018: Capacity Management Made Easy with
Amazon EC2 Auto Scaling on YouTube.

Tasks
• Walkthrough summary (p. 13)
• Preparing for the walkthrough (p. 14)
• Step 1: Create a launch template (p. 14)
• Step 2: Create a single-instance Auto Scaling group (p. 16)
• Step 3: Verify your Auto Scaling group (p. 16)
• Step 4: Terminate an instance in your Auto Scaling group (p. 17)
• Step 5: Next steps (p. 17)
• Step 6: Clean up (p. 18)

Walkthrough summary
In this walkthrough, you:

• Create a configuration template that defines your EC2 instances. You can choose either the launch
template or the launch configuration instructions. Although you can use a launch configuration, we
recommend a launch template so that you can use the latest features of Amazon EC2 and Amazon EC2
Auto Scaling.
• Create an Auto Scaling group with a single instance in it.

13
Amazon EC2 Auto Scaling User Guide
Preparing for the walkthrough

• Terminate the instance and verify that the instance was removed from service and replaced. To
maintain a constant number of instances, Amazon EC2 Auto Scaling detects and responds to Amazon
EC2 health and reachability checks automatically.

If you created your AWS account less than 12 months ago, and have not already exceeded the free tier
benefits for Amazon EC2, it will not cost you anything to complete this tutorial, because we help you
select an instance type that is within the free tier benefits. Otherwise, when you follow this tutorial,
you incur the standard Amazon EC2 usage fees from the time that the instance launches until you
delete the Auto Scaling group (which is the final task of this tutorial) and the instance status changes to
terminated.

Preparing for the walkthrough

This walkthrough assumes that you are familiar with launching EC2 instances and that you have already
created a key pair and a security group. For more information, see Setting up with Amazon EC2 in the
Amazon EC2 User Guide for Linux Instances.

If you are new to Amazon EC2 Auto Scaling and want to get started using the service, you can use the
default VPC for your AWS account. The default VPC includes a default public subnet in each Availability
Zone and an internet gateway that is attached to your VPC. You can view your VPCs on the Your VPCs
page of the Amazon Virtual Private Cloud (Amazon VPC) console.

Note that all of the following procedures are for the new console.

Step 1: Create a launch template

In this step, you sign in to the Amazon EC2 console with your AWS account credentials and create a
launch template that specifies the type of EC2 instance that Amazon EC2 Auto Scaling creates for you.
Include information such as the ID of the Amazon Machine Image (AMI) to use, the instance type, the key
pair, and security groups.
Note
Alternatively, you can use a launch configuration to create an Auto Scaling group instead
of using a launch template. For the launch configuration instructions, see Create a launch
configuration.

To create a launch template

1. Open the Amazon EC2 console.

2. On the navigation bar at the top of the screen, select an AWS Region. The Amazon EC2 Auto Scaling
resources that you create are tied to the Region that you specify.
3. In the left navigation pane, choose Launch Templates, and then choose Create launch template.
4. For Launch template name, enter my-template-for-auto-scaling.
5. Under Auto Scaling guidance, select the check box.
6. For Amazon machine image (AMI), choose a version of Amazon Linux 2 (HVM) from the Quick Start
list. The AMI serves as a basic configuration template for your instances.
7. For Instance type, choose a hardware configuration that is compatible with the AMI that you
specified.
Note
If your account is less than 12 months old, you can use a t2.micro instance for free within
certain usage limits. For more information, see AWS free tier.

14
Amazon EC2 Auto Scaling User Guide
Step 1: Create a launch template

8. (Optional) For Key pair name, choose an existing key pair. You use key pairs to connect to an
Amazon EC2 instance with SSH. Connecting to an instance is not included as part of this tutorial.
Therefore, you don't need to specify a key pair unless you intend to connect to your instance.
9. Leave Networking platform set to VPC.
10. For Security groups, choose a security group in the same VPC that you plan to use as the VPC
for your Auto Scaling group. If you don't specify a security group, your instance is automatically
associated with the default security group for the VPC.
11. You can leave Network interfaces empty. Leaving the setting empty creates a primary network
interface with IP addresses that we select for your instance (based on the subnet to which the
network interface is established). If instead you choose to specify a network interface, the security
group must be a part of it.
12. Choose Create launch template.
13. On the conﬁrmation page, choose Create Auto Scaling group.

If you are not currently using launch templates and prefer not to create one now, you can create a launch
conﬁguration instead.

A launch configuration is similar to a launch template, in that it specifies the type of EC2 instance that
Amazon EC2 Auto Scaling creates for you. You create the launch configuration by including information
such as the ID of the Amazon Machine Image (AMI) to use, the instance type, the key pair, and security
groups.

To create a launch conﬁguration

1. Open the Launch conﬁgurations page of the Amazon EC2 console.

2. On the navigation bar, select an AWS Region. The Auto Scaling resources that you create are tied to
the Region that you specify.
3. Choose Create launch configuration, and then enter my-first-launch-configuration in the
Name field.
4. For Amazon machine image (AMI), choose an AMI. To find a specific AMI, you can find a suitable
AMI, make note of its ID, and enter the ID as search criteria.

To get the ID of the Amazon Linux 2 AMI:

a. Open the Amazon EC2 console.

b. In the navigation pane, under Instances, choose Instances, and then choose Launch instances.
c. On the Quick Start tab of the Choose an Amazon Machine Image page, note the ID of the AMI
next to Amazon Linux 2 AMI (HVM). Notice that this AMI is marked "Free tier eligible."
5. For Instance type, select a hardware configuration for your instance.
Note
If your account is less than 12 months old, you can use a t2.micro instance for free within
certain usage limits. For more information, see AWS free tier.
6. Under Additional configuration, for Advanced details, IP address type, make a selection. To
provide internet connectivity to instances in a VPC, choose an option that assigns a public IP
address. If an instance is launched into a default VPC, the default is to assign a public IP address.
If you want to provide internet connectivity to your instance but aren't sure whether you have a
default VPC, choose Assign a public IP address to every instance.
7. For Security groups, choose an existing security group. If you leave the Create a new security group
option selected, a default SSH rule is configured for Amazon EC2 instances running Linux. A default
RDP rule is configured for Amazon EC2 instances running Windows.
8. For Key pair (login), choose an option under Key pair options as instructed. Connecting to an
instance is not included as part of this tutorial. Therefore, you can select Proceed without a key pair
unless you intend to connect to your instance.

15
Amazon EC2 Auto Scaling User Guide
Step 2: Create a single-instance Auto Scaling group

9. Choose Create launch conﬁguration.

10. Select the check box next to the name of your new launch conﬁguration and choose Actions, Create
Auto Scaling group.

Step 2: Create a single-instance Auto Scaling

group
Now use Amazon EC2 Auto Scaling to create an Auto Scaling group and add the launch template or
launch conﬁguration to the group. Also include information such as the VPC subnets for the instances.

Use the following procedure to continue where you left oﬀ after creating either a launch template or a
launch conﬁguration.

To create an Auto Scaling group

1. On the Choose launch template or conﬁguration page, for Auto Scaling group name, enter my-
first-asg.
2. Choose Next.

The Choose instance launch options page appears, allowing you to choose the VPC network
settings you want the Auto Scaling group to use and giving you options for launching On-Demand
and Spot Instances (if you chose a launch template).
3. In the Network section, keep VPC set to the default VPC for your chosen AWS Region, or select
your own VPC. The default VPC is automatically conﬁgured to provide internet connectivity to your
instance. This VPC includes a public subnet in each Availability Zone in the Region.
4. For Availability Zones and subnets, choose a subnet from each Availability Zone that you want to
include. Use subnets in multiple Availability Zones for high availability. For more information, see
Considerations when choosing VPC subnets (p. 113).
5. [Launch template only] In the Instance type requirements section, use the default setting to
simplify this step. (Do not override the launch template.) For this tutorial, you will launch only one
On-Demand Instance using the instance type speciﬁed in your launch template.
6. Keep the rest of the defaults for this tutorial and choose Skip to review.
Note
The initial size of the group is determined by its desired capacity. The default value is 1
instance.
7. On the Review page, review the information for the group, and then choose Create Auto Scaling
group.

Step 3: Verify your Auto Scaling group

Now that you have created an Auto Scaling group, you are ready to verify that the group has launched an
EC2 instance.

To verify that your Auto Scaling group has launched an EC2 instance

1. Open the Auto Scaling groups page in the Amazon EC2 console.
2. Select the check box next to the Auto Scaling group that you just created.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group. The ﬁrst tab available is the Details tab, showing information about the Auto
Scaling group.

16
Amazon EC2 Auto Scaling User Guide
Step 4: Terminate an instance in your Auto Scaling group

3. Choose the second tab, Activity. Under Activity history, you can view the progress of activities that
are associated with the Auto Scaling group. The Status column shows the current status of your
instance. While your instance is launching, the status column shows PreInService. The status
changes to Successful after the instance is launched. You can also use the refresh button to see
the current status of your instance.
4. On the Instance management tab, under Instances, you can view the status of the instance.
5. Verify that your instance launched successfully. It takes a short time for an instance to launch.

The Lifecycle column shows the state of your instance. Initially, your instance is in the Pending
state. After an instance is ready to receive traﬃc, its state is InService.

The Health status column shows the result of the EC2 instance health check on your instance.

Step 4: Terminate an instance in your Auto Scaling

group
Use these steps to learn more about how Amazon EC2 Auto Scaling works, speciﬁcally, how it launches
new instances when necessary. The minimum size for the Auto Scaling group that you created in this
tutorial is one instance. Therefore, if you terminate that running instance, Amazon EC2 Auto Scaling
must launch a new instance to replace it.

1. Open the Auto Scaling groups page in the Amazon EC2 console.
2. Select the check box next to your Auto Scaling group.
3. On the Instance management tab, under Instances, select the ID of the instance.

This takes you to the Instances page in the Amazon EC2 console, where you can terminate the
instance.
4. Choose Actions, Instance State, Terminate. When prompted for conﬁrmation, choose Yes,
Terminate.
5. On the navigation pane, under AUTO SCALING, choose Auto Scaling Groups. Select your Auto
Scaling group and choose the Activity tab.

The default cooldown for the Auto Scaling group is 300 seconds (5 minutes), so it takes about 5
minutes until you see the scaling activity. In the activity history, when the scaling activity starts, you
see an entry for the termination of the ﬁrst instance and an entry for the launch of a new instance.
6. On the Instance management tab, the Instances section shows the new instance only.
7. On the navigation pane, under INSTANCES, choose Instances. This page shows both the terminated
instance and the new running instance.

Step 5: Next steps

Go to the next step if you would like to delete the basic infrastructure for automatic scaling that you just
created. Otherwise, you can use this infrastructure as your base and try one or more of the following:

• Learn how to connect to your Linux instance. For more information, see Connect to your Linux instance
in the Amazon EC2 User Guide for Linux Instances.
• Manually scale your Auto Scaling group. For more information, see Manual scaling (p. 142).
• Learn how to automatically scale where there are changes in resource utilization. If the load increases,
your Auto Scaling group can scale out (add instances) to handle the demand. For more information,
see Target tracking scaling policies (p. 154).

17
Amazon EC2 Auto Scaling User Guide
Step 6: Clean up

• Configure an SNS notification to notify you whenever your Auto Scaling group launches or terminates
instances. For more information, see Monitoring with Amazon SNS notifications (p. 281).

Step 6: Clean up
You can either delete your scaling infrastructure or delete just your Auto Scaling group and keep your
launch template or launch conﬁguration to use later.

If you launched an instance that is not within the AWS Free Tier, you should terminate your instance to
prevent additional charges. When you terminate the instance, the data associated with it will also be
deleted.

To delete your Auto Scaling group

1. Open the Auto Scaling groups page in the Amazon EC2 console.
2. Select your Auto Scaling group (my-first-asg).
3. Choose Delete. When prompted for conﬁrmation, choose Delete.

A loading icon in the Name column indicates that the Auto Scaling group is being deleted. When
the deletion has occurred, the Desired, Min, and Max columns show 0 instances for the Auto Scaling
group. It takes a few minutes to terminate the instance and delete the group. Refresh the list to see
the current state.

Skip the following procedure if you would like to keep your launch template.

To delete your launch template

1. Open the Amazon EC2 console.

2. On the navigation pane, under INSTANCES, choose Launch Templates.
3. Select your launch template (my-template-for-auto-scaling).
4. Choose Actions, Delete template. When prompted for conﬁrmation, choose Delete launch
template.

Skip the following procedure if you would like to keep your launch conﬁguration.

To delete your launch conﬁguration

1. Open the Launch conﬁgurations page of the Amazon EC2 console.

2. Select your launch configuration (my-first-launch-configuration).
3. Choose Actions, Delete launch configuration. When prompted for confirmation, choose Yes,
Delete.

18
Amazon EC2 Auto Scaling User Guide

Tutorial: Set up a scaled and load-

balanced application
Important
Before you explore this tutorial, we recommend that you ﬁrst review the following introductory
tutorial: Getting started with Amazon EC2 Auto Scaling (p. 13).

Registering your Auto Scaling group with an Elastic Load Balancing load balancer helps you set up a
load-balanced application. Elastic Load Balancing works with Amazon EC2 Auto Scaling to distribute
incoming traﬃc across your healthy Amazon EC2 instances. This increases the scalability and availability
of your application. You can enable Elastic Load Balancing within multiple Availability Zones to increase
the fault tolerance of your applications.

In this tutorial, we cover the basics steps for setting up a load-balanced application when the Auto
Scaling group is created. When complete, your architecture should look similar to the following diagram:

Elastic Load Balancing supports diﬀerent types of load balancers. We recommend that you use an
Application Load Balancer for this tutorial.

For more information about introducing a load balancer into your architecture, see Elastic Load
Balancing and Amazon EC2 Auto Scaling (p. 100).

19
Amazon EC2 Auto Scaling User Guide
Prerequisites

Tasks
• Prerequisites (p. 20)
• Step 1: Set up a launch template or launch conﬁguration (p. 20)
• Step 2: Create an Auto Scaling group (p. 22)
• Step 3: Verify that your load balancer is attached (p. 23)
• Step 4: Next steps (p. 24)
• Step 5: Clean up (p. 24)

Prerequisites
• A load balancer and target group. Make sure to choose the same Availability Zones for the load
balancer that you plan to use for your Auto Scaling group. For more information, see Getting started
with Elastic Load Balancing in the Elastic Load Balancing User Guide.
• A security group for your launch template or launch conﬁguration. The security group must allow
access from the load balancer on both the listener port (usually port 80 for HTTP traﬃc) and the
port that you want Elastic Load Balancing to use for health checks. For more information, see the
applicable documentation:
• Target security groups in the User Guide for Application Load Balancers
• Target security groups in the User Guide for Network Load Balancers

Optionally, if your instances will have public IP addresses, you can allow SSH traffic for connecting to
the instances.
• (Optional) An IAM role that grants your application access to AWS.
• (Optional) An Amazon Machine Image (AMI) defined as the source template for your Amazon EC2
instances. To create one now, launch an instance. Specify the IAM role (if you created one) and
any configuration scripts that you need as user data. Connect to the instance and customize it. For
example, you can install software and applications, copy data, and attach additional EBS volumes.
Test your applications on your instance to ensure that it is configured correctly. Save this updated
configuration as a custom AMI. If you don't need the instance later, you can terminate it. Instances
launched from this new custom AMI include the customizations that you made when you created the
AMI.
• A virtual private cloud (VPC). This tutorial refers to the default VPC, but you can use your own. If using
your own VPC, make sure that it has a subnet mapped to each Availability Zone of the Region you are
working in. At minimum, you must have two public subnets available to create the load balancer. You
must also have either two private subnets or two public subnets to create your Auto Scaling group and
register it with the load balancer.

Note that all of the following procedures are for the new console.

Step 1: Set up a launch template or launch

conﬁguration
Use either a launch template or a launch conﬁguration for this tutorial.

If you already have a launch template that you'd like to use, select it by using the following procedure.
Note
Alternatively, you can use a launch configuration instead of a launch template. For the launch
configuration instructions, see Select or create a launch configuration (p. 21).

20
Amazon EC2 Auto Scaling User Guide
Select or create a launch conﬁguration

To select an existing launch template

1. Open the Launch templates page of the Amazon EC2 console.

2. On the navigation bar at the top of the screen, choose the Region where the load balancer was
created.
3. Select a launch template.
4. Choose Actions, Create Auto Scaling group.

Alternatively, to create a new launch template, use the following procedure.

To create a launch template

1. Open the Launch templates page of the Amazon EC2 console.

2. On the navigation bar at the top of the screen, choose the Region where the load balancer was
created.
3. Choose Create launch template.
4. Enter a name and provide a description for the initial version of the launch template.
5. For Amazon machine image (AMI), enter the ID of the AMI for your instances as search criteria.
6. For Instance type, select a hardware conﬁguration for your instances that is compatible with the
AMI that you speciﬁed.
7. (Optional) For Key pair (login), choose the key pair to use when connecting to your instances.
8. For Network interfaces, do the following:

a. Choose Add network interface. For this tutorial, use the option to specify the network
interface.
b. (Optional) For Auto-assign public IP, keep the default value, Don't include in launch template.
When you create your Auto Scaling group, you can assign a public IP address to instances in
your Auto Scaling group by using subnets that have the public IP addressing attribute enabled,
such as the default subnets in the default VPC. Alternatively, if you don't need to connect to
your instances, you can choose Disable to prevent instances in your group from receiving traffic
directly from the internet. In this case, they will receive traffic only from the load balancer.
c. For Security group ID, specify a security group for your instances from the same VPC as the
load balancer.
d. For Delete on termination, choose Yes. This deletes the network interface when the Auto
Scaling group scales in, and terminates the instance to which the network interface is attached.
9. (Optional) To securely distribute credentials to your instances, for Advanced details, IAM instance
profile, enter the Amazon Resource Name (ARN) of your IAM role.
10. (Optional) To specify user data or a configuration script for your instances, paste it into Advanced
details, User data.
11. Choose Create launch template.
12. On the confirmation page, choose Create Auto Scaling group.

Select or create a launch conﬁguration

If you already have a launch conﬁguration that you'd like to use, select it by using the following
procedure.

To select an existing launch conﬁguration

1. Open the Launch conﬁgurations page of the Amazon EC2 console.

21
Amazon EC2 Auto Scaling User Guide
Step 2: Create an Auto Scaling group

2. On the navigation bar at the top of the screen, choose the Region where the load balancer was
created.
3. Select a launch conﬁguration.
4. Choose Actions, Create Auto Scaling group.

Alternatively, to create a new launch conﬁguration, use the following procedure.

To create a launch conﬁguration

1. Open the Launch conﬁgurations page of the Amazon EC2 console.

2. On the navigation bar at the top of the screen, choose the Region where the load balancer was
created.
3. Choose Create launch configuration, and enter a name for your launch configuration.
4. For Amazon machine image (AMI), enter the ID of the AMI for your instances as search criteria.
5. For Instance type, select a hardware configuration for your instance.
6. Under Additional configuration, pay attention to the following fields:

a. (Optional) To securely distribute credentials to your EC2 instance, for IAM instance profile,
select your IAM role. For more information, see IAM role for applications that run on Amazon
EC2 instances (p. 320).
b. (Optional) To specify user data or a configuration script for your instance, paste it into
Advanced details, User data.
c. (Optional) For Advanced details, IP address type, keep the default value. When you create
your Auto Scaling group, you can assign a public IP address to instances in your Auto Scaling
group by using subnets that have the public IP addressing attribute enabled, such as the default
subnets in the default VPC. Alternatively, if you don't need to connect to your instances, you can
choose Do not assign a public IP address to any instances to prevent instances in your group
from receiving traffic directly from the internet. In this case, they will receive traffic only from
the load balancer.
7. For Security groups, choose an existing security group from the same VPC as the load balancer.
If you keep the Create a new security group option selected, a default SSH rule is configured for
Amazon EC2 instances running Linux. A default RDP rule is configured for Amazon EC2 instances
running Windows.
8. For Key pair (login), choose an option under Key pair options.

If you've already conﬁgured an Amazon EC2 instance key pair, you can choose it here.

If you don't already have an Amazon EC2 instance key pair, choose Create a new key pair and give it
a recognizable name. Choose Download key pair to download the key pair to your computer.
Important
If you need to connect to your instances, do not choose Proceed without a key pair.
9. Select the acknowledgment check box, and then choose Create launch conﬁguration.
10. Select the check box next to the name of your new launch conﬁguration and choose Actions, Create
Auto Scaling group.

Step 2: Create an Auto Scaling group

Use the following procedure to continue where you left oﬀ after creating or selecting your launch
template or launch conﬁguration.

22
Amazon EC2 Auto Scaling User Guide
Step 3: Verify that your load balancer is attached

To create an Auto Scaling group

1. On the Choose launch template or conﬁguration page, for Auto Scaling group name, enter a
name for your Auto Scaling group.
2. [Launch template only] For Launch template, choose whether the Auto Scaling group uses the
default, the latest, or a speciﬁc version of the launch template when scaling out.
3. Choose Next.

The Choose instance launch options page appears, allowing you to choose the VPC network
settings you want the Auto Scaling group to use and giving you options for launching On-Demand
and Spot Instances (if you chose a launch template).
4. In the Network section, for VPC, choose the VPC that you used for your load balancer. If you chose
the default VPC, it is automatically configured to provide internet connectivity to your instances.
This VPC includes a public subnet in each Availability Zone in the Region.
5. For Availability Zones and subnets, choose one or more subnets from each Availability Zone that
you want to include, based on which Availability Zones the load balancer is in. For more information,
see Considerations when choosing VPC subnets (p. 113).
6. [Launch template only] In the Instance type requirements section, use the default setting to
simplify this step. (Do not override the launch template.) For this tutorial, you will launch only On-
Demand Instances using the instance type specified in your launch template.
7. Choose Next to go to the Configure advanced options page.
8. To attach the group to an existing load balancer, in the Load balancing section, choose Attach to an
existing load balancer. You can choose Choose from your load balancer target groups or Choose
from Classic Load Balancers. You can then choose the name of a target group for the Application
Load Balancer or Network Load Balancer you created, or choose the name of a Classic Load Balancer.
9. (Optional) To use Elastic Load Balancing health checks, for Health checks, choose ELB under Health
check type.
10. When you have finished configuring the Auto Scaling group, choose Skip to review.
11. On the Review page, review the details of your Auto Scaling group. You can choose Edit to make
changes. When you are finished, choose Create Auto Scaling group.

After you have created the Auto Scaling group with the load balancer attached, the load balancer
automatically registers new instances as they come online. You have only one instance at this point, so
there isn't much to register. However, you can add additional instances by updating the desired capacity
of the group. For step-by-step instructions, see Manual scaling (p. 142).

Step 3: Verify that your load balancer is attached

To verify that your load balancer is attached

1. From the Auto Scaling groups page of the Amazon EC2 console, select the check box next to your
Auto Scaling group.
2. On the Details tab, Load balancing shows any attached load balancer target groups or Classic Load
Balancers.
3. On the Activity tab, in Activity history, you can verify that your instances launched successfully. The
Status column shows whether your Auto Scaling group has successfully launched instances. If your
instances fail to launch, you can find troubleshooting ideas for common instance launch issues in
Troubleshooting Amazon EC2 Auto Scaling (p. 329).
4. On the Instance management tab, under Instances, you can verify that your instances are ready to
receive traffic. Initially, your instances are in the Pending state. After an instance is ready to receive
traffic, its state is InService. The Health status column shows the result of the Amazon EC2 Auto

23
Amazon EC2 Auto Scaling User Guide
Step 4: Next steps

Scaling health checks on your instances. Although an instance may be marked as healthy, the load
balancer will only send traﬃc to instances that pass the load balancer health checks.
5. Verify that your instances are registered with the load balancer. Open the Target groups page of the
Amazon EC2 console. Select your target group, and then choose the Targets tab. If the state of your
instances is initial, it's probably because they are still in the process of being registered, or they
are still undergoing health checks. When the state of your instances is healthy, they are ready for
use.

Step 4: Next steps

Now that you have completed this tutorial, you can learn more:

• You can configure your Auto Scaling group to use Elastic Load Balancing health checks. If you enable
load balancer health checks and an instance fails the health checks, the Auto Scaling group considers
the instance unhealthy and replaces it. For more information, see Adding ELB health checks (p. 105).
• You can expand your application to an additional Availability Zone in the same Region to increase fault
tolerance if there is a service disruption. For more information, see Adding Availability Zones (p. 106).
• You can configure your Auto Scaling group to use a target tracking scaling policy. This automatically
increases or decreases the number of instances as the demand on your instances changes. This
allows the group to handle changes in the amount of traffic that your application receives. For more
information, see Target tracking scaling policies (p. 154).

Step 5: Clean up
After you're ﬁnished with the resources that you created for this tutorial, you should consider cleaning
them up to avoid incurring unnecessary charges.

To delete your Auto Scaling group

1. Open the Auto Scaling groups page in the Amazon EC2 console.
2. Select your Auto Scaling group.
3. Choose Delete. When prompted for conﬁrmation, choose Delete.

Skip the following procedure if you would like to keep your launch template.

To delete your launch template

1. Open the Launch templates page of the Amazon EC2 console.

2. Select your launch template.
3. Choose Actions, Delete template. When prompted for conﬁrmation, choose Delete launch
template.

Skip the following procedure if you would like to keep your launch conﬁguration.

To delete your launch conﬁguration

1. Open the Launch conﬁgurations page of the Amazon EC2 console.

24
Amazon EC2 Auto Scaling User Guide
Step 5: Clean up

2. Select your launch conﬁguration.

3. Choose Actions, Delete launch conﬁguration. When prompted for conﬁrmation, choose Yes,
Delete.

Skip the following procedure if you want to keep the load balancer for future use.

To delete your load balancer

1. Open the Load balancers page of the Amazon EC2 console.

2. Choose the load balancer and choose Actions, Delete.
3. When prompted for conﬁrmation, choose Yes, Delete.

To delete your target group

1. Open the Target groups page of the Amazon EC2 console.

2. Choose the target group and choose Actions, Delete.
3. When prompted for conﬁrmation, choose Yes.

25
Amazon EC2 Auto Scaling User Guide

Launch templates
A launch template is similar to a launch configuration (p. 44), in that it specifies instance configuration
information. It includes the ID of the Amazon Machine Image (AMI), the instance type, a key pair, security
groups, and other parameters used to launch EC2 instances. However, defining a launch template instead
of a launch configuration allows you to have multiple versions of a launch template.

With versioning of launch templates, you can create a subset of the full set of parameters. Then, you
can reuse it to create other versions of the same launch template. For example, you can create a launch
template that defines a base configuration without an AMI or user data script. After you create your
launch template, you can create a new version and add the AMI and user data that has the latest version
of your application for testing. This results in two versions of the launch template. Storing a base
configuration helps you to maintain the required general configuration parameters. You can create a new
version of your launch template from the base configuration whenever you want. You can also delete the
versions used for testing your application when you no longer need them.

We recommend that you use launch templates to ensure that you're accessing the latest features
and improvements. Not all Amazon EC2 Auto Scaling features are available when you use launch
configurations. For example, you cannot create an Auto Scaling group that launches both Spot and On-
Demand Instances or that specifies multiple instance types. You must use a launch template to configure
these features. For more information, see Auto Scaling groups with multiple instance types and purchase
options (p. 55).

With launch templates, you can also use newer features of Amazon EC2. This includes the current
generation of EBS Provisioned IOPS volumes (io2), EBS volume tagging, T2 Unlimited instances, Elastic
Inference, and Dedicated Hosts, to name a few. Dedicated Hosts are physical servers with EC2 instance
capacity that are dedicated to your use. While Amazon EC2 Dedicated Instances also run on dedicated
hardware, the advantage of using Dedicated Hosts over Dedicated Instances is that you can bring eligible
software licenses from external vendors and use them on EC2 instances.

If you currently use launch configurations, you can migrate data from your existing launch configurations
to launch templates by copying them in the console. Then, you can migrate your deployed Auto Scaling
groups that use a launch configuration to a new launch template. To do this, start an instance refresh to
do a rolling update of your group. For more information, see Replacing Auto Scaling instances (p. 117).
Note
For more information about migrating to launch templates, see Amazon EC2 Auto Scaling will
no longer add support for new EC2 features to Launch Configurations on the AWS Compute
Blog.

When you create a launch template, all parameters are optional. However, if a launch template does not
specify an AMI, you cannot add the AMI when you create your Auto Scaling group. If you specify an AMI
but no instance type, you can add one or more instance types when you create your Auto Scaling group.

Contents
• Permissions (p. 27)
• Creating a launch template for an Auto Scaling group (p. 27)
• Copy launch configurations to launch templates (p. 34)
• Replacing a launch configuration with a launch template (p. 35)
• Requesting Spot Instances for fault-tolerant and flexible applications (p. 36)

26
Amazon EC2 Auto Scaling User Guide
Permissions

• Examples for creating and managing launch templates with the AWS Command Line Interface (AWS
CLI) (p. 37)

Permissions
The procedures in this section assume that you already have the required permissions to use launch
templates. With permissions in place, you can create and manage launch templates. You can also create
and update Auto Scaling groups and specify a launch template instead of a launch conﬁguration.

When you update or create an Auto Scaling group and specify a launch template, your
ec2:RunInstances permissions are checked. If you do not have suﬃcient permissions, you receive an
error that you're not authorized to use the launch template.

Some additional functionality in the request requires additional permissions, such as the ability to pass
an IAM role to provisioned instances or to add tags to provisioned instances and volumes.

For information about how an administrator grants you permissions, see Launch template
support (p. 316).

Creating a launch template for an Auto Scaling

group
Before you can create an Auto Scaling group using a launch template, you must create a launch template
that includes the parameters required to launch an EC2 instance, such as the ID of the Amazon Machine
Image (AMI) and an instance type.

A launch template provides full functionality for Amazon EC2 Auto Scaling and also newer features of
Amazon EC2 such as the current generation of EBS Provisioned IOPS volumes (io2), EBS volume tagging,
T2 Unlimited instances, Elastic Inference, and Dedicated Hosts.

The following procedure works for creating a new launch template. After you create your launch
template, you can create the Auto Scaling group by following the instructions in these topics:

• Creating an Auto Scaling group using a launch template (p. 83)

• Auto Scaling groups with multiple instance types and purchase options (p. 55)
• Creating an Auto Scaling group using attribute-based instance type selection (p. 78)

Contents
• Creating your launch template (console) (p. 28)
• Creating a launch template from an existing instance (console) (p. 33)
• Creating a launch template (AWS CLI) (p. 33)
• Limitations (p. 34)

Note
For additional information about creating launch templates, see:

• Launching an instance from a launch template section of the Amazon EC2 User Guide for Linux
Instances
• AWS::EC2::LaunchTemplate section of the AWS CloudFormation User Guide

27
Amazon EC2 Auto Scaling User Guide
Creating your launch template (console)

Creating your launch template (console)

Follow these steps to conﬁgure your launch template for the following:

• Specify the Amazon machine image (AMI) from which to launch the instances.
• Choose an instance type that is compatible with the AMI you've speciﬁed.
• Specify the key pair to use when connecting to instances, for example, using SSH.
• Add one or more security groups to allow relevant access to the instances from an external network.
• Specify whether to attach additional EBS volumes or instance store volumes to each instance.
• Add custom tags (key-value pairs) to the instances and volumes.

To create a launch template

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation pane, under INSTANCES, choose Launch Templates.
3. Choose Create launch template. Enter a name and provide a description for the initial version of the
launch template.
4. Under Auto Scaling guidance, select the check box to have Amazon EC2 provide guidance to help
create a template to use with Amazon EC2 Auto Scaling.
5. Under Launch template contents, fill out each required field and any optional fields to use as your
instance launch specification.

a. Amazon machine image (AMI): Choose the ID of the AMI from which to launch the instances.
You can search through all available AMIs, or from the Quick Start list, select from one of the
commonly used AMIs in the list. If you don't see the AMI that you need, you can ﬁnd a suitable
AMI, make note of its ID, and specify it as a custom value.
b. For Instance type, you can either select an instance type, or you can specify instance attributes
and let Amazon EC2 Auto Scaling identify the instance types with those attributes. For
more information, see Creating an Auto Scaling group using attribute-based instance type
selection (p. 78).

• Instance type: Ensure that the instance type is compatible with the AMI that you've speciﬁed.
For more information, see Instance types.
• Advanced: To specify instance attributes and let Amazon EC2 identify the instance types with
those attributes, choose Advanced, and then choose Specify instance type attributes.
• Number of vCPUs: Enter the minimum and maximum number of vCPUs for your compute
requirements. To indicate no limits, enter a minimum of 0, and leave the maximum blank.
• Amount of memory (MiB): Enter the minimum and maximum amount of memory, in MiB,
for your compute requirements. To indicate no limits, enter a minimum of 0, and leave the
maximum blank.
• Expand Optional instance type attributes and choose Add attribute to express
your compute requirements in more detail. For information about each attribute, see
InstanceRequirementsRequest in the Amazon EC2 API Reference.
• Resulting instance types: You can view the instance types that match the speciﬁed
compute requirements, such as vCPUs, memory, and storage.

(Optional) To exclude instance types, choose Add attribute, and from the Attribute list,
choose Excluded instance types. From the Attribute value list, select the instance types to
exclude.
c. (Optional) Key pair (login): Specify a key pair.
6. (Optional) Under Network settings, do the following:

28
Amazon EC2 Auto Scaling User Guide
Creating your launch template (console)

a. Networking platform: Choose whether to launch instances into a VPC or EC2-Classic, if

applicable. However, the network type and Availability Zone settings of the launch template are
ignored for Amazon EC2 Auto Scaling in favor of the settings of the Auto Scaling group.
b. Security groups: Choose one or more security groups, or leave blank and configure one or more
security groups as part of the network interface. Each security group must be configured for
the VPC that your Auto Scaling group will launch instances into. If you're using EC2-Classic, you
must use security groups created specifically for EC2-Classic.

If you don't specify any security groups in your launch template, Amazon EC2 uses the default
security group. By default, this security group doesn't allow inbound traﬃc from external
networks.
7. (Optional) For Storage (Volumes), specify volumes to attach to the instances in addition to the
volumes speciﬁed by the AMI (Volume 1 (AMI Root)). To add a new volume, choose Add new
volume.

a. Volume type: The type of volume depends on the instance type that you've chosen. Each
instance type has an associated root device volume, either an Amazon EBS volume or an
instance store volume. For more information, see Amazon EC2 instance store and Amazon EBS
volumes in the Amazon EC2 User Guide for Linux Instances.
b. Device name: Specify a device name for the volume.
c. Snapshot: Enter the ID of the snapshot from which to create the volume.
d. Size (GiB): For Amazon EBS-backed volumes, specify a storage size. If you're creating the
volume from a snapshot and don't specify a volume size, the default is the snapshot size.
e. Volume type: For Amazon EBS volumes, choose the volume type.
f. IOPS: With a Provisioned IOPS SSD volume, enter the maximum number of input/output
operations per second (IOPS) that the volume should support.
g. Delete on termination: For Amazon EBS volumes, choose whether to delete the volume when
the associated instance is terminated.
h. Encrypted: Choose Yes to change the encryption state of an Amazon EBS volume. The default
eﬀect of setting this parameter varies with the choice of volume source, as described in the
following table. In all cases, you must have permission to use the speciﬁed AWS KMS key. For
more information about specifying encrypted volumes, see Amazon EBS encryption in the
Amazon EC2 User Guide for Linux Instances.

Encryption outcomes

If Encrypted And if source of volume is... Then the default Notes

parameter is encryption state is...
set to...

No New (empty) volume Unencrypted* N/A

Unencrypted snapshot that Unencrypted*

you own

Encrypted snapshot that you Encrypted by same key

own

Unencrypted snapshot that is Unencrypted*

shared with you

Encrypted snapshot that is Encrypted by default

shared with you KMS key

29
Amazon EC2 Auto Scaling User Guide
Creating your launch template (console)

If Encrypted And if source of volume is... Then the default Notes

parameter is encryption state is...
set to...

Yes New volume Encrypted by default To use a non-

KMS key default KMS
key, specify a
Unencrypted snapshot that Encrypted by default value for the
you own KMS key Key parameter.
Encrypted snapshot that you Encrypted by same key
own

Unencrypted snapshot that is

shared with you

Encrypted snapshot that is Encrypted by default

shared with you KMS key

* If encryption by default is enabled, all newly created volumes (whether or not the Encrypted
parameter is set to Yes) are encrypted using the default KMS key. Setting both the Encrypted
and Key parameters allows you to specify a non-default KMS key.
i. Key: If you chose Yes in the previous step, optionally enter the KMS key you want to use
when encrypting the volumes. Enter a KMS key that you previously created using the AWS
Key Management Service. You can paste the full ARN of any key that you have access to. For
information about setting up key policies for your customer managed keys, see the AWS Key
Management Service Developer Guide and the Required AWS KMS key policy for use with
encrypted volumes (p. 321).
Note
Providing a KMS key without also setting the Encrypted parameter results in an error.
8. For Instance tags, specify tags by providing key and value combinations. You can tag the instances,
the volumes, or both. If you specify instance tags in your launch template and then you choose to
propagate your Auto Scaling group's tags to its instances, all the tags are merged. If the same tag
key is specified for a tag in your launch template and a tag in your Auto Scaling group, then the tag
value from the group takes precedence.
9. To change the default network interface, see Changing the default network interface (p. 30). Skip
this step if you want to keep the default network interface (the primary network interface).
10. To configure advanced settings, see Configuring advanced settings for your launch
template (p. 31). Otherwise, choose Create launch template.
11. To create an Auto Scaling group, choose Create Auto Scaling group from the confirmation page.

Changing the default network interface

This section shows you how to change the default network interface. This allows you to deﬁne, for
example, whether you want to assign a public IP address to each instance instead of defaulting to the
auto-assign public IP setting on the subnet.

Considerations and limitations

When specifying a network interface, keep in mind the following considerations and limitations:

• You must conﬁgure the security group as part of the network interface, and not in the Security groups
section of the template. You cannot specify security groups in both places.

30
Amazon EC2 Auto Scaling User Guide
Creating your launch template (console)

• You cannot assign speciﬁc private IP addresses to your Auto Scaling instances. When an instance
launches, a private address is allocated from the CIDR range of the subnet in which the instance is
launched. For more information on specifying CIDR ranges for your VPC or subnet, see the Amazon
VPC User Guide.
• You can launch only one instance if you specify an existing network interface ID. For this to work, you
must use the AWS CLI or an SDK to create the Auto Scaling group. When you create the group, you
must specify the Availability Zone, but not the subnet ID. Also, you can specify an existing network
interface only if it has a device index of 0.
• You cannot auto-assign a public IP address if you specify more than one network interface. You also
cannot specify duplicate device indexes across network interfaces. Note that both the primary and
secondary network interfaces will reside in the same subnet.

To change the default network interface

1. Under Network interfaces, choose Add network interface.

2. Specify the primary network interface, paying attention to the following ﬁelds:

a. Device index: Specify the device index. Enter 0 for the primary network interface (eth0).
b. Network interface: Leave blank to create a new network interface when an instance is
launched, or enter the ID of an existing network interface. If you specify an ID, this limits your
Auto Scaling group to one instance.
c. Description: Enter a descriptive name.
d. Subnet: While you can choose to specify a subnet, it is ignored for Amazon EC2 Auto Scaling in
favor of the settings of the Auto Scaling group.
e. Auto-assign public IP: Choose whether to automatically assign a public IP address to the
network interface with the device index of 0. This setting takes precedence over settings that
you configure for the subnets. If you do not set a value, the default is to use the auto-assign
public IP settings of the subnets that your instances are launched into.
f. Security groups: Choose one or more security groups. Each security group must be configured
for the VPC that your Auto Scaling group will launch instances into.
g. Delete on termination: Choose whether the network interface is deleted when the Auto Scaling
group scales in and terminates the instance to which the network interface is attached.
h. Elastic Fabric Adapter: Indicates whether the network interface is an Elastic Fabric Adapter. For
more information, see Elastic Fabric Adapter in the Amazon EC2 User Guide for Linux Instances.
i. Network card index: Attaches the network interface to a specific network card when using an
instance type that supports multiple network cards. The primary network interface (eth0) must
be assigned to network card index 0. Defaults to 0 if not specified. For more information, see
Network cards in the Amazon EC2 User Guide for Linux Instances.
3. To add a secondary network interface, choose Add network interface.

Conﬁguring advanced settings for your launch template

You can deﬁne any additional capabilities that your Auto Scaling instances need. For example, you can
choose an IAM role that your application can use when it accesses other AWS resources or specify the
instance user data that can be used to perform common automated conﬁguration tasks after an instance
starts.

The following steps discuss the most useful settings to pay attention to. For more information about any
of the settings under Advanced details, see Creating a launch template in the Amazon EC2 User Guide for
Linux Instances.

31
Amazon EC2 Auto Scaling User Guide
Creating your launch template (console)

To conﬁgure advanced settings

1. For Advanced details, expand the section to view the ﬁelds.

2. For Purchasing option, you can choose Request Spot Instances to request Spot Instances at the
Spot price, capped at the On-Demand price, and choose Customize to change the default Spot
Instance settings. For an Auto Scaling group, you must specify a one-time request with no end date
(the default). For more information, see Requesting Spot Instances for fault-tolerant and flexible
applications (p. 36).
Note
Amazon EC2 Auto Scaling lets you override the instance type in your launch template to
create an Auto Scaling group that uses multiple instance types and launches Spot and On-
Demand Instances. To do so, you must leave Purchasing option unspecified in your launch
template.
If you try to create a mixed instances group using a launch template with Purchasing
option specified, you get the following error.
Incompatible launch template: You cannot use a launch template that
is set to request Spot Instances (InstanceMarketOptions) when you
configure an Auto Scaling group with a mixed instances policy. Add a
different launch template to the group and try again.
For information about creating mixed instances groups, see Auto Scaling groups with
multiple instance types and purchase options (p. 55).
3. For IAM instance profile, you can specify an AWS Identity and Access Management (IAM) instance
profile to associate with the instances. When you choose an instance profile, you associate the
corresponding IAM role with the EC2 instances. For more information, see IAM role for applications
that run on Amazon EC2 instances (p. 320).
4. For Termination protection, choose whether to protect instances from accidental termination.
When you enable termination protection, it provides additional termination protection, but it
does not protect from Amazon EC2 Auto Scaling initiated termination. To control whether an Auto
Scaling group can terminate a particular instance, use Using instance scale-in protection (p. 246).
5. For Detailed CloudWatch monitoring, choose whether to enable the instances to publish metric
data at 1-minute intervals to Amazon CloudWatch. Additional charges apply. For more information,
see Configuring monitoring for Auto Scaling instances (p. 276).
6. For T2/T3 Unlimited, choose whether to enable applications to burst beyond the baseline for as
long as needed. This field is only valid for T2, T3, and T3a instances. Additional charges may apply.
For more information, see Using an Auto Scaling group to launch a burstable performance instance
as Unlimited in the Amazon EC2 User Guide for Linux Instances.
7. For Placement group name, you can specify a placement group in which to launch the instances.
Not all instance types can be launched in a placement group. If you configure an Auto Scaling group
using a CLI command that specifies a different placement group, the setting is ignored in favor of
the one specified for the Auto Scaling group.
8. For Capacity Reservation, you can specify whether to launch the instances into shared capacity, any
open Capacity Reservation, a specific Capacity Reservation, or a Capacity Reservation group. For
more information, see Launching instances into an existing capacity reservation in the Amazon EC2
User Guide for Linux Instances.
9. For Tenancy, you can choose to run your instances on shared hardware (Shared), on dedicated
hardware (Dedicated), or when using a host resource group, on Dedicated Hosts (Dedicated host).
Additional charges may apply.

If you chose Dedicated Hosts, complete the following information:

• For Tenancy host resource group, you can specify a host resource group for a BYOL AMI to
use on Dedicated Hosts. You do not have to have already allocated Dedicated Hosts in your
account before you use this feature. Your instances will automatically launch onto Dedicated
Hosts regardless. Note that an AMI based on a license conﬁguration association can be mapped

32
Amazon EC2 Auto Scaling User Guide
Creating a launch template from
an existing instance (console)

to only one host resource group at a time. For more information, see Host resource groups in
the AWS License Manager User Guide.
10. For License configurations, specify the license configuration to use. You can launch instances
against the specified license configuration to track your license usage. For more information, see
Create a license configuration in the License Manager User Guide.
11. To configure instance metadata options for all of the instances that are associated with this version
of the launch template, do the following:

a. For Metadata accessible, choose whether to enable or disable access to the HTTP endpoint
of the instance metadata service. By default, the HTTP endpoint is enabled. If you choose
to disable the endpoint, access to your instance metadata is turned oﬀ. You can specify the
condition to require IMDSv2 only when the HTTP endpoint is enabled.
b. For Metadata version, you can choose to require the use of Instance Metadata Service Version
2 (IMDSv2) when requesting instance metadata. If you do not specify a value, the default is to
support both IMDSv1 and IMDSv2.
c. For Metadata token response hop limit, you can set the allowable number of network hops for
the metadata token. If you do not specify a value, the default is 1.

For more information, see Conﬁguring the instance metadata service in the Amazon EC2 User Guide
for Linux Instances.
12. For User data, you can add shell scripts and cloud-init directives to customize an instance at launch.
For more information, see Run commands on your Linux instance at launch in the Amazon EC2 User
Guide for Linux Instances.
Note
Running scripts at launch adds to the amount of time it takes for an instance to be ready
for use. However, you can allow extra time for the scripts to complete before the instance
enters the InService state by adding a lifecycle hook to the Auto Scaling group. For more
information, see Amazon EC2 Auto Scaling lifecycle hooks (p. 204).
13. Choose Create launch template.
14. To create an Auto Scaling group, choose Create Auto Scaling group from the conﬁrmation page.

Creating a launch template from an existing instance

(console)
To create a launch template from an existing instance

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation pane, under INSTANCES, choose Instances.
3. Select the instance and choose Actions, Image and templates, Create template from instance.
4. Provide a name and description.
5. Under Auto Scaling guidance, select the check box.
6. Adjust any settings as required, and choose Create launch template.
7. To create an Auto Scaling group, choose Create Auto Scaling group from the conﬁrmation page.

Creating a launch template (AWS CLI)

To create a launch template using the command line

You can use one of the following commands:

33
Amazon EC2 Auto Scaling User Guide
Limitations

• create-launch-template (AWS CLI)

• New-EC2LaunchTemplate (AWS Tools for Windows PowerShell)

Limitations
• A launch template lets you configure a network type (VPC or EC2-Classic), subnet, and Availability
Zone. However, these settings are ignored in favor of what is specified in the Auto Scaling group.
• Because the subnet settings in your launch template are ignored in favor of what is specified in
the Auto Scaling group, all of the network interfaces that are created for a given instance will
be connected to the same subnet as the instance. For other limitations on user-defined network
interfaces, see Changing the default network interface (p. 30).
• A launch template lets you configure additional settings in your Auto Scaling group to launch multiple
instance types and combine On-Demand and Spot purchase options, as described in Auto Scaling
groups with multiple instance types and purchase options (p. 55). Launching instances with such a
combination is not supported:
• If you specify a Spot Instance request in the launch template
• In EC2-Classic
• Support for Dedicated Hosts (host tenancy) is only available if you specify a host resource group. You
cannot target a specific host ID or use host placement affinity.

Copy launch conﬁgurations to launch templates

To migrate from launch conﬁgurations to launch templates, you must copy or recreate your launch
conﬁgurations as launch templates. We recommend that you migrate to launch templates to take
advantage of the latest features of Amazon EC2 and Amazon EC2 Auto Scaling.

If you copy your launch conﬁgurations, you can migrate them all at once, or you can perform an
incremental migration over time by choosing which launch conﬁgurations to copy. The copying feature is
available only from the console.

To copy a launch conﬁguration to a launch template (console)

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation pane, under AUTO SCALING, choose Launch Configurations.
3. Select the launch configuration you want to copy and choose Copy to launch template, Copy
selected. This sets up a new launch template with the same name and options as the launch
configuration that you selected.
4. For New launch template name, you can use the name of the launch configuration (the default) or
enter a new name. Launch template names must be unique.
5. (Optional) To create an Auto Scaling group using the new launch template, select Create an Auto
Scaling group using the new template.
6. Choose Copy.

If you know that you want to copy all launch conﬁgurations to launch templates, use the following
procedure.

To copy all launch conﬁgurations to launch templates (console)

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

34
Amazon EC2 Auto Scaling User Guide
Replacing a launch conﬁguration with a launch template

2. On the navigation pane, under AUTO SCALING, choose Launch Conﬁgurations.

3. Choose Copy to launch template, Copy all. This copies each launch conﬁguration in the current
Region to a new launch template with the same name and options.
4. Choose Copy.

Next, you can update your existing Auto Scaling groups to specify the launch templates that you created.
For more information, see Replacing a launch conﬁguration with a launch template (p. 35). As
another option, you can follow the procedure in Replacing Auto Scaling instances based on an instance
refresh (p. 118) to add the new launch templates to your Auto Scaling groups and update your Auto
Scaling instances immediately.

Replacing a launch conﬁguration with a launch

template
When you edit an Auto Scaling group that has an existing launch conﬁguration, you have the option of
replacing the launch conﬁguration with a launch template. This lets you use launch templates with any
Auto Scaling groups that you currently use. In doing so, you can take advantage of versioning and other
features of launch templates.

After you replace the launch conﬁguration for an Auto Scaling group, any new instances are launched
using the new launch template. Existing instances are not aﬀected. To update the existing instances,
terminate them so that they are replaced by your Auto Scaling group, or allow automatic scaling to
gradually replace earlier instances with newer instances based on your termination policies (p. 236).
Note
With the instance refresh feature, you can replace the instances in the Auto Scaling group to
launch new instances that use the launch template immediately. For more information, see
Replacing Auto Scaling instances based on an instance refresh (p. 118).

Prerequisites

Before you can replace a launch configuration in an Auto Scaling group, you must first create your launch
template. A basic way to create a launch template is to copy it from the launch configuration. For more
information, see Copy launch configurations to launch templates (p. 34).

If you switch your Auto Scaling group from using a launch conﬁguration, be sure that your permissions
are up to date. In order to use a launch template, you need speciﬁc permissions.

To replace the launch conﬁguration for an Auto Scaling group (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens up in the bottom part of the page, showing information about the group that's
selected.
3. On the Details tab, choose Launch conﬁguration, Edit.
4. Choose Switch to launch template.
5. For Launch template, select your launch template.
6. For Version, select the launch template version, as needed. After you create versions of a launch
template, you can choose whether the Auto Scaling group uses the default or the latest version of
the launch template when scaling out.
7. When you have ﬁnished, choose Update.

35
Amazon EC2 Auto Scaling User Guide
Requesting Spot Instances

To replace a launch conﬁguration using the command line

You can use one of the following commands:

• update-auto-scaling-group (AWS CLI)

• Update-ASAutoScalingGroup (AWS Tools for Windows PowerShell)

For examples of using a CLI command to update an Auto Scaling group to use a launch template, see
Updating an Auto Scaling group to use a launch template (p. 43).

Requesting Spot Instances for fault-tolerant and

flexible applications
In your launch template, you can optionally request Spot Instances with no end date or duration.
Amazon EC2 Spot Instances are spare capacity available at steep discounts compared to the EC2
On-Demand price. Spot Instances are a cost-effective choice if you can be flexible about when your
applications run and if your applications can be interrupted. For more information about creating
a launch template that requests Spot Instances, see Configuring advanced settings for your launch
template (p. 31).
Important
Spot Instances are typically used to supplement On-Demand Instances. For this scenario, you
can specify the same settings that are used to launch Spot Instances as part of the settings of
your Auto Scaling group. When you specify the settings as part of the Auto Scaling group, you
can request to launch Spot Instances only after launching a certain number of On-Demand
Instances and then continue to launch some combination of On-Demand Instances and Spot
Instances as the group scales. For more information, see Auto Scaling groups with multiple
instance types and purchase options (p. 55).

This topic describes how to launch only Spot Instances in your Auto Scaling group by specifying settings
in a launch template, rather than in the Auto Scaling group itself. The information in this topic also
applies to Auto Scaling groups that request Spot Instances with a launch configuration (p. 44).
The difference is that a launch configuration requires a maximum price, but for launch templates, the
maximum price is optional.

When you create a launch template to launch only Spot Instances, keep the following considerations in
mind:

• Spot price. You pay only the current Spot price for the Spot Instances that you launch. This pricing
changes slowly over time based on long-term trends in supply and demand. For more information, see
Spot Instances and Pricing and savings in the Amazon EC2 User Guide for Linux Instances.
• Setting your maximum price. You can optionally include a maximum price per hour for Spot Instances
in your launch template. If your maximum price exceeds the current Spot price, the Amazon EC2
Spot service fulfills your request immediately if capacity is available. If the price for Spot Instances
rises above your maximum price for a running instance in your Auto Scaling group, it terminates your
instance.
Warning
Your application might not run if you do not receive any Spot Instances, such as when your
maximum price is too low. To take advantage of the Spot Instances available for as long as
possible, set your maximum price close to the On-Demand price.
• Balancing across Availability Zones. If you specify multiple Availability Zones, Amazon EC2 Auto
Scaling distributes the Spot requests across the specified zones. If your maximum price is too low
in one Availability Zone for any requests to be fulfilled, Amazon EC2 Auto Scaling checks whether

36
Amazon EC2 Auto Scaling User Guide
AWS CLI examples for working with launch templates

requests were fulfilled in the other zones. If so, Amazon EC2 Auto Scaling cancels the requests that
failed and redistributes them across the Availability Zones that have requests fulfilled. If the price in
an Availability Zone with no fulfilled requests drops enough that future requests succeed, Amazon EC2
Auto Scaling rebalances across all of the Availability Zones.
• Spot Instance termination. Spot Instances can be terminated at any time. The Amazon EC2 Spot
service can terminate Spot Instances in your Auto Scaling group as the availability of, or price for,
Spot Instances changes. When scaling or performing health checks, Amazon EC2 Auto Scaling can
also terminate Spot Instances in the same way that it can terminate On-Demand Instances. When an
instance is terminated, any storage is deleted.
• Maintaining your desired capacity. When a Spot Instance is terminated, Amazon EC2 Auto Scaling
attempts to launch another Spot Instance to maintain the desired capacity for the group. If the current
Spot price is less than your maximum price, it launches a Spot Instance. If the request for a Spot
Instance is unsuccessful, it keeps trying.
• Changing your maximum price. To change your maximum price, create a new launch template or
update an existing launch template with the new maximum price, and then associate it with your Auto
Scaling group. The existing Spot Instances continue to run as long as the maximum price specified in
the launch template used for those instances is higher than the current Spot price. If you did not set a
maximum price, the default maximum price is the On-Demand price.

Examples for creating and managing launch

templates with the AWS Command Line Interface
(AWS CLI)
You can create and manage launch templates through the AWS Management Console, AWS CLI, or SDKs.
This section shows you examples of creating and managing launch templates for Amazon EC2 Auto
Scaling from the AWS CLI.

Contents
• Example usage (p. 37)
• Creating a basic launch template (p. 38)
• Specifying tags that tag instances at launch (p. 39)
• Specifying an IAM role to pass to instances (p. 39)
• Assigning public IP addresses (p. 39)
• Specifying a user data script that conﬁgures instances at launch (p. 39)
• Specifying a block device mapping (p. 40)
• Specifying Dedicated Hosts to bring software licenses from external vendors (p. 40)
• Specifying an existing network interface (p. 40)
• Creating multiple network interfaces (p. 40)
• Managing your launch templates (p. 41)
• Updating an Auto Scaling group to use a launch template (p. 43)

Example usage
{
"LaunchTemplateName": "my-template-for-auto-scaling",
"VersionDescription": "test description",
"LaunchTemplateData": {
"ImageId": "ami-04d5cc9b88example",

37
Amazon EC2 Auto Scaling User Guide
Creating a basic launch template

"InstanceType": "t2.micro",
"SecurityGroupIds": [
"sg-903004f88example"
],
"KeyName": "MyKeyPair",
"Monitoring": {
"Enabled": true
},
"Placement": {
"Tenancy": "dedicated"
},
"CreditSpecification": {
"CpuCredits": "unlimited"
},
"MetadataOptions": {
"HttpTokens": "required",
"HttpPutResponseHopLimit": 1,
"HttpEndpoint": "enabled"
}
}
}

Creating a basic launch template

To create a basic launch template, use the create-launch-template command as follows, with these
modiﬁcations:

• Replace ami-04d5cc9b88example with the ID of the AMI from which to launch the instances.
• Replace t2.micro with an instance type that is compatible with the AMI that you speciﬁed.

This example creates a launch template with the name my-template-for-auto-scaling. If the
instances created by this launch template are launched in a default VPC, they receive a public IP address
by default. If the instances are launched in a nondefault VPC, they do not receive a public IP address by
default.

aws ec2 create-launch-template --launch-template-name my-template-for-auto-scaling --

version-description version1 \
--launch-template-data '{"ImageId":"ami-04d5cc9b88example","InstanceType":"t2.micro"}'

For more information about quoting JSON-formatted parameters, see Using quotation marks with
strings in the AWS CLI in the AWS Command Line Interface User Guide.

Alternatively, you can specify the JSON-formatted parameters in a conﬁguration ﬁle.

The following example creates a basic launch template, referencing a conﬁguration ﬁle for launch
template parameter values.

aws ec2 create-launch-template --launch-template-name my-template-for-auto-scaling --

version-description version1 \
--launch-template-data file://config.json

Contents of config.json:

{
"ImageId":"ami-04d5cc9b88example",
"InstanceType":"t2.micro"
}

38
Amazon EC2 Auto Scaling User Guide
Specifying tags that tag instances at launch

Specifying tags that tag instances at launch

The following example adds a tag (for example, purpose=webserver) to instances at launch.

aws ec2 create-launch-template --launch-template-name my-template-for-auto-scaling --

version-description version1 \
--launch-template-data '{"TagSpecifications":[{"ResourceType":"instance","Tags":
[{"Key":"purpose","Value":"webserver"}]}],"ImageId":"ami-04d5cc9b88example","InstanceType":"t2.micro"}'

Note
If you specify instance tags in your launch template and then you choose to propagate your
Auto Scaling group's tags to its instances, all the tags are merged. If the same tag key is
speciﬁed for a tag in your launch template and a tag in your Auto Scaling group, then the tag
value from the group takes precedence.

Specifying an IAM role to pass to instances

The following example speciﬁes the name of the instance proﬁle associated with the IAM role to pass
to instances at launch. For more information, see IAM role for applications that run on Amazon EC2
instances (p. 320).

aws ec2 create-launch-template --launch-template-name my-template-for-auto-scaling --

version-description version1 \
--launch-template-data '{"IamInstanceProfile":{"Name":"my-instance-
profile"},"ImageId":"ami-04d5cc9b88example","InstanceType":"t2.micro"}'

Assigning public IP addresses

The following create-launch-template example conﬁgures the launch template to assign public
addresses to instances launched in a nondefault VPC.
Note
When you specify a network interface, specify a value for Groups that corresponds to security
groups for the VPC that your Auto Scaling group will launch instances into. Specify the VPC
subnets as properties of the Auto Scaling group.

aws ec2 create-launch-template --launch-template-name my-template-for-auto-scaling --

version-description version1 \
--launch-template-data '{"NetworkInterfaces":
[{"DeviceIndex":0,"AssociatePublicIpAddress":true,"Groups":
["sg-903004f88example"],"DeleteOnTermination":true}],"ImageId":"ami-04d5cc9b88example","InstanceType":"

Specifying a user data script that conﬁgures instances

at launch
The following example speciﬁes a user data script as a base64-encoded string that conﬁgures instances
at launch. The create-launch-template command requires base64-encoded user data.

aws ec2 create-launch-template --launch-template-name my-template-for-auto-scaling --

version-description version1 \
--launch-template-data
'{"UserData":"IyEvYmluL2Jhc...","ImageId":"ami-04d5cc9b88example","InstanceType":"t2.micro"}'

39
Amazon EC2 Auto Scaling User Guide
Specifying a block device mapping

Specifying a block device mapping

The following create-launch-template example creates a launch template with a block device mapping:
a 22-gigabyte EBS volume mapped to /dev/xvdcz. The /dev/xvdcz volume uses the General Purpose
SSD (gp2) volume type and is deleted when terminating the instance it is attached to.

aws ec2 create-launch-template --launch-template-name my-template-for-auto-scaling --

version-description version1 \
--launch-template-data '{"BlockDeviceMappings":[{"DeviceName":"/dev/xvdcz","Ebs":
{"VolumeSize":22,"VolumeType":"gp2","DeleteOnTermination":true}}],"ImageId":"ami-04d5cc9b88example","In

Specifying Dedicated Hosts to bring software licenses

from external vendors
If you specify host tenancy, you can specify a host resource group and a License Manager license
conﬁguration to bring eligible software licenses from external vendors. Then, you can use the licenses on
EC2 instances by using the following create-launch-template command.

aws ec2 create-launch-template --launch-template-name my-template-for-auto-scaling --

version-description version1 \
--launch-template-data '{"Placement":
{"Tenancy":"host","HostResourceGroupArn":"arn"},"LicenseSpecifications":
[{"LicenseConfigurationArn":"arn"}],"ImageId":"ami-04d5cc9b88example","InstanceType":"t2.micro"}'

Specifying an existing network interface

The following create-launch-template example conﬁgures the primary network interface to use an
existing network interface.

aws ec2 create-launch-template --launch-template-name my-template-for-auto-scaling --

version-description version1 \
--launch-template-data '{"NetworkInterfaces":[{"DeviceIndex":0,"NetworkInterfaceId":"eni-
b9a5ac93","DeleteOnTermination":false}],"ImageId":"ami-04d5cc9b88example","InstanceType":"t2.micro"}'

Creating multiple network interfaces

The following create-launch-template example adds a secondary network interface. The primary
network interface has a device index of 0, and the secondary network interface has a device index of 1.

aws ec2 create-launch-template --launch-template-name my-template-for-auto-scaling --

version-description version1 \
--launch-template-data '{"NetworkInterfaces":[{"DeviceIndex":0,"Groups":
["sg-903004f88example"],"DeleteOnTermination":true},{"DeviceIndex":1,"Groups":
["sg-903004f88example"],"DeleteOnTermination":true}],"ImageId":"ami-04d5cc9b88example","InstanceType":"

If you use an instance type that supports multiple network cards and Elastic Fabric Adapters (EFAs),
you can add a secondary interface to a secondary network card and enable EFA by using the following
create-launch-template command. For more information, see Adding an EFA to a launch template in the
Amazon EC2 User Guide for Linux Instances.

aws ec2 create-launch-template --launch-template-name my-template-for-auto-scaling --

version-description version1 \
--launch-template-data '{"NetworkInterfaces":
[{"NetworkCardIndex":0,"DeviceIndex":0,"Groups":

40
Amazon EC2 Auto Scaling User Guide
Managing your launch templates

["sg-7c2270198example"],"InterfaceType":"efa","DeleteOnTermination":true},
{"NetworkCardIndex":1,"DeviceIndex":1,"Groups":
["sg-7c2270198example"],"InterfaceType":"efa","DeleteOnTermination":true}],"ImageId":"ami-09d95fab7fexa

Warning
The p4d.24xlarge instance type incurs higher costs than the other examples in this section. For
more information about pricing for P4d instances, see Amazon EC2 P4d Instances pricing.
Note
Attaching multiple network interfaces from the same subnet to an instance can introduce
asymmetric routing, especially on instances using a variant of non-Amazon Linux. If you need
this type of conﬁguration, you must conﬁgure the secondary network interface within the OS.
For an example, see How can I make my secondary network interface work in my Ubuntu EC2
instance? in the AWS Knowledge Center.

Managing your launch templates

The AWS CLI includes several other commands that help you manage your launch templates.

Contents
• Listing and describing your launch templates (p. 41)
• Creating a launch template version (p. 42)
• Deleting a launch template version (p. 42)
• Deleting a launch template (p. 43)

Listing and describing your launch templates

You can use two AWS CLI commands to get information about your launch templates: describe-launch-
templates and describe-launch-template-versions.

The describe-launch-templates command enables you to get a list of any of the launch templates that
you have created. You can use an option to ﬁlter results on a launch template name, create time, tag key,
or tag key-value combination. This command returns summary information about any of your launch
templates, including the launch template identiﬁer, latest version, and default version.

The following example provides a summary of the speciﬁed launch template.

aws ec2 describe-launch-templates --launch-template-names my-template-for-auto-scaling

The following is an example response.

{
"LaunchTemplates": [
{
"LaunchTemplateId": "lt-068f72b729example",
"LaunchTemplateName": "my-template-for-auto-scaling",
"CreateTime": "2020-02-28T19:52:27.000Z",
"CreatedBy": "arn:aws:iam::123456789012:user/Bob",
"DefaultVersionNumber": 1,
"LatestVersionNumber": 1
}
]
}

If you don't use the --launch-template-names option to limit the output to one launch template,
information on all of your launch templates is returned.

41
Amazon EC2 Auto Scaling User Guide
Managing your launch templates

The following describe-launch-template-versions command provides information describing the versions

of the speciﬁed launch template my-template-for-auto-scaling.

aws ec2 describe-launch-template-versions --launch-template-id lt-068f72b729example

The following is an example response.

{
"LaunchTemplateVersions": [
{
"VersionDescription": "version1",
"LaunchTemplateId": "lt-068f72b729example",
"LaunchTemplateName": "my-template-for-auto-scaling",
"VersionNumber": 1,
"CreatedBy": "arn:aws:iam::123456789012:user/Bob",
"LaunchTemplateData": {
"TagSpecifications": [
{
"ResourceType": "instance",
"Tags": [
{
"Key": "purpose",
"Value": "webserver"
}
]
}
],
"ImageId": "ami-04d5cc9b88example",
"InstanceType": "t2.micro",
"NetworkInterfaces": [
{
"DeviceIndex": 0,
"DeleteOnTermination": true,
"Groups": [
"sg-903004f88example"
],
"AssociatePublicIpAddress": true
}
]
},
"DefaultVersion": true,
"CreateTime": "2020-02-28T19:52:27.000Z"
}
]
}

Creating a launch template version

The following create-launch-template-version command creates a new launch template version based
on version 1 of the launch template and speciﬁes a diﬀerent AMI ID.

aws ec2 create-launch-template-version --launch-template-id lt-068f72b729example --version-

description version2 \
--source-version 1 --launch-template-data "ImageId=ami-c998b6b2example"

To set the default version of the launch template, use the modify-launch-template command.

Deleting a launch template version

The following delete-launch-template-versions command deletes the speciﬁed launch template version.

42
Amazon EC2 Auto Scaling User Guide
Updating an Auto Scaling group to use a launch template

aws ec2 delete-launch-template-versions --launch-template-id lt-068f72b729example --

versions 1

Deleting a launch template

If you no longer require a launch template, you can delete it using the following delete-launch-template
command. Deleting a launch template deletes all of its versions.

aws ec2 delete-launch-template --launch-template-id lt-068f72b729example

Updating an Auto Scaling group to use a launch

template
You can use the update-auto-scaling-group command to add a launch template to an existing Auto
Scaling group.
Note
If you switch your Auto Scaling group from using a launch conﬁguration, be sure that your
permissions are up to date. In order to use a launch template, you need speciﬁc permissions.

Updating an Auto Scaling group to use the latest version of a

launch template
The following update-auto-scaling-group command updates the speciﬁed Auto Scaling group to use the
latest version of the speciﬁed launch template.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-asg \

--launch-template LaunchTemplateId=lt-068f72b729example,Version='$Latest'

Updating an Auto Scaling group to use a speciﬁc version of a

launch template
The following update-auto-scaling-group command updates the specified Auto Scaling group to use a
specific version of the specified launch template.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-asg \

--launch-template LaunchTemplateName=my-template-for-auto-scaling,Version='2'

43
Amazon EC2 Auto Scaling User Guide
Creating a launch conﬁguration

Launch configurations
Important
We strongly recommend that you do not use launch configurations. They do not provide full
functionality for Amazon EC2 Auto Scaling or Amazon EC2. We provide information about
launch configurations for customers who have not yet migrated from launch configurations
to launch templates. For more information, see Amazon EC2 Auto Scaling will no longer add
support for new EC2 features to Launch Configurations on the AWS Compute Blog.

A launch configuration is an instance configuration template that an Auto Scaling group uses to launch
EC2 instances. When you create a launch configuration, you specify information for the instances.
Include the ID of the Amazon Machine Image (AMI), the instance type, a key pair, one or more security
groups, and a block device mapping. If you've launched an EC2 instance before, you specified the same
information in order to launch the instance.

You can specify your launch configuration with multiple Auto Scaling groups. However, you can only
specify one launch configuration for an Auto Scaling group at a time, and you can't modify a launch
configuration after you've created it. To change the launch configuration for an Auto Scaling group, you
must create a launch configuration and then update your Auto Scaling group with it.

Keep in mind that whenever you create an Auto Scaling group, you must specify a launch configuration,
a launch template, or an EC2 instance. When you create an Auto Scaling group using an EC2 instance,
Amazon EC2 Auto Scaling automatically creates a launch configuration for you and associates it with
the Auto Scaling group. For more information, see Creating an Auto Scaling group using parameters
from an existing instance (p. 87). Alternatively, if you are using launch templates, you can specify a
launch template instead of a launch configuration or an EC2 instance. For more information, see Launch
templates (p. 26).

Contents
• Creating a launch configuration (p. 44)
• Creating a launch configuration using an EC2 instance (p. 47)
• Changing the launch configuration for an Auto Scaling group (p. 51)
• Configuring instance tenancy with a launch configuration (p. 52)

Creating a launch conﬁguration

Important
We strongly recommend that you do not use launch configurations. They do not provide full
functionality for Amazon EC2 Auto Scaling or Amazon EC2. We provide information about
launch configurations for customers who have not yet migrated from launch configurations
to launch templates. For more information, see Amazon EC2 Auto Scaling will no longer add
support for new EC2 features to Launch Configurations on the AWS Compute Blog.

When you create a launch configuration, you must specify information about the EC2 instances to
launch. Include the Amazon Machine Image (AMI), instance type, key pair, security groups, and block
device mapping. Alternatively, you can create a launch configuration using attributes from a running EC2
instance. For more information, see Creating a launch configuration using an EC2 instance (p. 47).

After you create a launch conﬁguration, you can create an Auto Scaling group. For more information, see
Creating an Auto Scaling group using a launch conﬁguration (p. 85).

An Auto Scaling group is associated with one launch configuration at a time, and you can't modify a
launch configuration after you've created it. Therefore, if you want to change the launch configuration

44
Amazon EC2 Auto Scaling User Guide
Creating your launch conﬁguration (console)

for an existing Auto Scaling group, you must update it with the new launch conﬁguration. For more
information, see Changing the launch conﬁguration for an Auto Scaling group (p. 51).

Contents
• Creating your launch configuration (console) (p. 45)
• Creating a launch configuration (AWS CLI) (p. 46)
• Configuring the instance metadata options (p. 46)

Creating your launch conﬁguration (console)

To create a launch conﬁguration (console)

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation pane, under AUTO SCALING, choose Launch Configurations.
3. In the navigation bar, select your AWS Region.
4. Choose Create launch configuration, and enter a name for your launch configuration.
5. For Amazon machine image (AMI) , choose an AMI. To find a specific AMI, you can find a suitable
AMI, make note of its ID, and enter the ID as search criteria.

To get the ID of the Amazon Linux 2 AMI:

a. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

b. In the navigation pane, under Instances, choose Instances, and then choose Launch instances.
c. On the Quick Start tab of the Choose an Amazon Machine Image page, note the ID of the AMI
next to Amazon Linux 2 AMI (HVM).
6. For Instance type, select a hardware configuration for your instances.
7. Under Additional configuration, pay attention to the following fields:

a. (Optional) For Purchasing option, you can choose Request Spot Instances to request Spot
Instances at the Spot price, capped at the On-Demand price. Optionally, you can specify a
maximum price per instance hour for your Spot Instances.
Note
Spot Instances are a cost-effective choice compared to On-Demand Instances, if you
can be flexible about when your applications run and if your applications can be
interrupted. For more information, see Requesting Spot Instances for fault-tolerant and
flexible applications (p. 36).
b. (Optional) For IAM instance profile, choose a role to associate with the instances. For more
information, see IAM role for applications that run on Amazon EC2 instances (p. 320).
c. (Optional) For Monitoring, choose whether to enable the instances to publish metric data at 1-
minute intervals to Amazon CloudWatch by enabling detailed monitoring. Additional charges
apply. For more information, see Configuring monitoring for Auto Scaling instances (p. 276).
d. (Optional) For Advanced details, User data, you can specify user data to configure an instance
during launch, or to run a configuration script after the instance starts.
e. (Optional) For Advanced details, IP address type, choose whether to assign a public IP address
to the group's instances. If you do not set a value, the default is to use the auto-assign public IP
settings of the subnets that your instances are launched into.
8. (Optional) For Storage (volumes), if you don't need additional storage, you can skip this section.
Otherwise, to specify volumes to attach to the instances in addition to the volumes specified by the
AMI, choose Add new volume. Then choose the desired options and associated values for Devices,
Snapshot, Size, Volume type, IOPS, Throughput, Delete on termination, and Encrypted.
9. For Security groups, create or select the security group to associate with the group's instances. If
you leave the Create a new security group option selected, a default SSH rule is configured for

45
Amazon EC2 Auto Scaling User Guide
Creating a launch conﬁguration (AWS CLI)

Amazon EC2 instances running Linux. A default RDP rule is conﬁgured for Amazon EC2 instances
running Windows.
10. For Key pair (login), choose an option under Key pair options.

If you've already conﬁgured an Amazon EC2 instance key pair, you can choose it here.

If you don't already have an Amazon EC2 instance key pair, choose Create a new key pair and give it
a recognizable name. Choose Download key pair to download the key pair to your computer.
Important
If you need to connect to your instances, do not choose Proceed without a key pair.
11. Select the acknowledgment check box, and then choose Create launch conﬁguration.

Creating a launch conﬁguration (AWS CLI)

To create a launch conﬁguration using the command line

You can use one of the following commands:

• create-launch-conﬁguration (AWS CLI)

• New-ASLaunchConﬁguration (AWS Tools for Windows PowerShell)

Conﬁguring the instance metadata options

Amazon EC2 Auto Scaling supports configuring the Instance Metadata Service (IMDS) in launch
configurations. This gives you the option of using launch configurations to configure the Amazon EC2
instances in your Auto Scaling groups to require Instance Metadata Service Version 2 (IMDSv2), which is
a session-oriented method for requesting instance metadata. For details about IMDSv2's advantages, see
this article on the AWS Blog about enhancements to add defense in depth to the EC2 instance metadata
service.

You can conﬁgure IMDS to support both IMDSv2 and IMDSv1 (the default), or to require the use of
IMDSv2. If you are using the AWS CLI or one of the SDKs to conﬁgure IMDS, you must use the latest
version of the AWS CLI or the SDK to require the use of IMDSv2.

You can conﬁgure your launch conﬁguration for the following:

• Require the use of IMDSv2 when requesting instance metadata

• Specify the PUT response hop limit
• Turn oﬀ access to instance metadata

You can find more details on configuring the Instance Metadata Service in the following topic:
Configuring the instance metadata service in the Amazon EC2 User Guide for Linux Instances.

Use the following procedure to configure IMDS options in a launch configuration. After you create your
launch configuration, you can associate it with your Auto Scaling group. If you associate the launch
configuration with an existing Auto Scaling group, the existing launch configuration is disassociated from
the Auto Scaling group, and existing instances will require replacement to use the IMDS options that you
specified in the new launch configuration. For more information, see Changing the launch configuration
for an Auto Scaling group (p. 51).

To conﬁgure IMDS in a launch conﬁguration (console)

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

46
Amazon EC2 Auto Scaling User Guide
Creating a launch conﬁguration using an EC2 instance

2. On the navigation pane, under AUTO SCALING, choose Launch Conﬁgurations.

3. In the navigation bar, select your AWS Region.
4. Choose Create launch configuration, and create the launch configuration the usual way. Include the
ID of the Amazon Machine Image (AMI), the instance type, and optionally, a key pair, one or more
security groups, and any additional EBS volumes or instance store volumes for your instances.
5. To configure instance metadata options for all of the instances associated with this launch
configuration, in Additional configuration, under Advanced details, do the following:

To require the use of IMDSv2 in a launch conﬁguration using the AWS CLI

Use the following create-launch-conﬁguration command with --metadata-options set to

HttpTokens=required. When you specify a value for HttpTokens, you must also set HttpEndpoint
to enabled. Because the secure token header is set to required for metadata retrieval requests, this opts
in the instance to require using IMDSv2 when requesting instance metadata.

aws autoscaling create-launch-configuration \

--launch-configuration-name my-lc-with-imdsv2 \
--image-id ami-01e24be29428c15b2 \
--instance-type t2.micro \
...
--metadata-options "HttpEndpoint=enabled,HttpTokens=required"

To turn oﬀ access to instance metadata

Use the following create-launch-conﬁguration command to turn oﬀ access to instance metadata. You
can turn access back on later by using the modify-instance-metadata-options command.

aws autoscaling create-launch-configuration \

--launch-configuration-name my-lc-with-imds-disabled \
--image-id ami-01e24be29428c15b2 \
--instance-type t2.micro \
...
--metadata-options "HttpEndpoint=disabled"

Creating a launch conﬁguration using an EC2

instance
Amazon EC2 Auto Scaling provides you with an option to create a launch conﬁguration using the
attributes from a running EC2 instance.

If the speciﬁed instance has properties that are not currently supported by launch conﬁgurations, the
instances launched by the Auto Scaling group might not be identical to the original EC2 instance.

47
Amazon EC2 Auto Scaling User Guide
Create a launch conﬁguration using an EC2 instance

There are differences between creating a launch configuration from scratch and creating a launch
configuration from an existing EC2 instance. When you create a launch configuration from scratch, you
specify the image ID, instance type, optional resources (such as storage devices), and optional settings
(like monitoring). When you create a launch configuration from a running instance, Amazon EC2 Auto
Scaling derives attributes for the launch configuration from the specified instance. Attributes are also
derived from the block device mapping for the AMI from which the instance was launched, ignoring any
additional block devices that were added after launch.

When you create a launch configuration using a running instance, you can override the following
attributes by specifying them as part of the same request: AMI, block devices, key pair, instance profile,
instance type, kernel, instance monitoring, placement tenancy, ramdisk, security groups, Spot (max)
price, user data, whether the instance has a public IP address, and whether the instance is EBS-optimized.
Tip
You can create an Auto Scaling group directly from an EC2 instance (p. 87). When you use this
feature, Amazon EC2 Auto Scaling automatically creates a launch configuration for you as well.

The following examples show you to create a launch conﬁguration from an EC2 instance.

Examples
• Create a launch configuration using an EC2 instance (p. 48)
• Create a launch configuration from an instance and override the block devices (AWS CLI) (p. 49)
• Create a launch configuration and override the instance type (AWS CLI) (p. 50)

Create a launch conﬁguration using an EC2 instance

To create a launch conﬁguration using the attributes of an existing EC2 instance, specify the ID of the
instance.
Important
The AMI used to launch the speciﬁed instance must still exist.

Create a launch conﬁguration from an EC2 instance (console)

You can use the console to create a launch conﬁguration and an Auto Scaling group from a running EC2
instance and add the instance to the new Auto Scaling group. For more information, see Attach EC2
instances to your Auto Scaling group (p. 145).

Create a launch conﬁguration from an EC2 instance (AWS CLI)

Use the following create-launch-conﬁguration command to create a launch conﬁguration from an
instance using the same attributes as the instance. Any block devices added after launch are ignored.

aws autoscaling create-launch-configuration --launch-configuration-name my-lc-from-instance

--instance-id i-a8e09d9c

You can use the following describe-launch-conﬁgurations command to describe the launch conﬁguration
and verify that its attributes match those of the instance.

aws autoscaling describe-launch-configurations --launch-configuration-names my-lc-from-

instance

The following is an example response.

{
"LaunchConfigurations": [

48
Amazon EC2 Auto Scaling User Guide
Create a launch conﬁguration from an instance
and override the block devices (AWS CLI)

{
"UserData": null,
"EbsOptimized": false,
"LaunchConfigurationARN": "arn",
"InstanceMonitoring": {
"Enabled": false
},
"ImageId": "ami-05355a6c",
"CreatedTime": "2014-12-29T16:14:50.382Z",
"BlockDeviceMappings": [],
"KeyName": "my-key-pair",
"SecurityGroups": [
"sg-8422d1eb"
],
"LaunchConfigurationName": "my-lc-from-instance",
"KernelId": "null",
"RamdiskId": null,
"InstanceType": "t1.micro",
"AssociatePublicIpAddress": true
}
]
}

Create a launch conﬁguration from an instance and

override the block devices (AWS CLI)
By default, Amazon EC2 Auto Scaling uses the attributes from the EC2 instance that you specify to create
the launch configuration. However, the block devices come from the AMI used to launch the instance, not
the instance. To add block devices to the launch configuration, override the block device mapping for the
launch configuration.
Important
The AMI used to launch the specified instance must still exist.

Create a launch conﬁguration and override the block devices

Use the following create-launch-conﬁguration command to create a launch conﬁguration using an EC2
instance but with a custom block device mapping.

aws autoscaling create-launch-configuration --launch-configuration-name my-lc-from-

instance-bdm --instance-id i-a8e09d9c \
--block-device-mappings "[{\"DeviceName\":\"/dev/sda1\",\"Ebs\":{\"SnapshotId\":
\"snap-3decf207\"}},{\"DeviceName\":\"/dev/sdf\",\"Ebs\":{\"SnapshotId\":\"snap-
eed6ac86\"}}]"

Use the following describe-launch-conﬁgurations command to describe the launch conﬁguration and
verify that it uses your custom block device mapping.

aws autoscaling describe-launch-configurations --launch-configuration-names my-lc-from-

instance-bdm

The following example response describes the launch conﬁguration.

{
"LaunchConfigurations": [
{
"UserData": null,
"EbsOptimized": false,
"LaunchConfigurationARN": "arn",

49
Amazon EC2 Auto Scaling User Guide
Create a launch conﬁguration and
override the instance type (AWS CLI)

"InstanceMonitoring": {
"Enabled": false
},
"ImageId": "ami-c49c0dac",
"CreatedTime": "2015-01-07T14:51:26.065Z",
"BlockDeviceMappings": [
{
"DeviceName": "/dev/sda1",
"Ebs": {
"SnapshotId": "snap-3decf207"
}
},
{
"DeviceName": "/dev/sdf",
"Ebs": {
"SnapshotId": "snap-eed6ac86"
}
}
],
"KeyName": "my-key-pair",
"SecurityGroups": [
"sg-8637d3e3"
],
"LaunchConfigurationName": "my-lc-from-instance-bdm",
"KernelId": null,
"RamdiskId": null,
"InstanceType": "t1.micro",
"AssociatePublicIpAddress": true
}
]
}

Create a launch conﬁguration and override the

instance type (AWS CLI)
By default, Amazon EC2 Auto Scaling uses the attributes from the EC2 instance you specify to create the
launch conﬁguration. Depending on your requirements, you might want to override attributes from the
instance and use the values that you need. For example, you can override the instance type.
Important
The AMI used to launch the speciﬁed instance must still exist.

Create a launch conﬁguration and override the instance type

Use the following create-launch-configuration command to create a launch configuration using an EC2
instance but with a different instance type (for example t2.medium) than the instance (for example
t2.micro).

aws autoscaling create-launch-configuration --launch-configuration-name my-lc-from-

instance-changetype \
--instance-id i-a8e09d9c --instance-type t2.medium

Use the following describe-launch-conﬁgurations command to describe the launch conﬁguration and
verify that the instance type was overridden.

aws autoscaling describe-launch-configurations --launch-configuration-names my-lc-from-

instance-changetype

The following example response describes the launch conﬁguration.

50
Amazon EC2 Auto Scaling User Guide
Changing a launch conﬁguration

{
"LaunchConfigurations": [
{
"UserData": null,
"EbsOptimized": false,
"LaunchConfigurationARN": "arn",
"InstanceMonitoring": {
"Enabled": false
},
"ImageId": "ami-05355a6c",
"CreatedTime": "2014-12-29T16:14:50.382Z",
"BlockDeviceMappings": [],
"KeyName": "my-key-pair",
"SecurityGroups": [
"sg-8422d1eb"
],
"LaunchConfigurationName": "my-lc-from-instance-changetype",
"KernelId": "null",
"RamdiskId": null,
"InstanceType": "t2.medium",
"AssociatePublicIpAddress": true
}
]
}

Changing the launch conﬁguration for an Auto

Scaling group
An Auto Scaling group is associated with one launch configuration at a time, and you can't modify a
launch configuration after you've created it. To change the launch configuration for an Auto Scaling
group, use an existing launch configuration as the basis for a new launch configuration. Then, update the
Auto Scaling group to use the new launch configuration.

After you change the launch configuration for an Auto Scaling group, any new instances are launched
using the new configuration options, but existing instances are not affected. To update the existing
instances, terminate them so that they are replaced by your Auto Scaling group, or allow auto scaling to
gradually replace older instances with newer instances based on your termination policies (p. 236).
Note
You can also replace all instances in the Auto Scaling group to launch new instances that use the
new launch configuration. For more information, see Replacing Auto Scaling instances (p. 117).

To change the launch conﬁguration for an Auto Scaling group (console)

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation pane, under AUTO SCALING, choose Launch Configurations.
3. Select the launch configuration and choose Actions, Copy launch configuration. This sets up a new
launch configuration with the same options as the original, but with "Copy" added to the name.
4. On the Copy Launch Configuration page, edit the configuration options as needed and choose
Create launch configuration.
5. On the navigation pane, under AUTO SCALING, choose Auto Scaling Groups.
6. Select the check box next to the Auto Scaling group.

A split pane opens up in the bottom part of the page, showing information about the group that's
selected.

51
Amazon EC2 Auto Scaling User Guide
Conﬁguring instance tenancy

7. On the Details tab, choose Launch conﬁguration, Edit.

8. For Launch configuration, select the new launch configuration.
9. When you have finished, choose Update.

To change the launch conﬁguration for an Auto Scaling group (AWS CLI)

1. Describe the current launch conﬁguration using the describe-launch-conﬁgurations command.

2. Create a new launch configuration using the create-launch-configuration command.
3. Update the launch configuration for the Auto Scaling group using the update-auto-scaling-group
command with the --launch-configuration-names parameter.

To change the launch conﬁguration for an Auto Scaling group (Tools for Windows
PowerShell)

1. Describe the current launch conﬁguration using the Get-ASLaunchConﬁguration command.

2. Create a new launch configuration using the New-ASLaunchConfiguration command.
3. Update the launch configuration for the Auto Scaling group using the Update-ASAutoScalingGroup
command with the -LaunchConfigurationName parameter.

Conﬁguring instance tenancy with a launch

configuration
Tenancy defines how EC2 instances are distributed across physical hardware and affects pricing. There
are three tenancy options available:

• Shared (default) — Multiple AWS accounts may share the same physical hardware.
• Dedicated Instance (dedicated) — Your instance runs on single-tenant hardware.
• Dedicated Host (host) — Your instance runs on a physical server with EC2 instance capacity fully
dedicated to your use, an isolated server with conﬁgurations that you can control.

This topic describes how to launch Dedicated Instances in your Auto Scaling group by specifying settings
in a launch conﬁguration. For pricing information and to learn more about Dedicated Instances, see the
Amazon EC2 dedicated instances product page and Dedicated Instances in the Amazon EC2 User Guide
for Linux Instances.

You can configure tenancy for EC2 instances using a launch configuration or launch template. However,
the host tenancy value cannot be used with a launch configuration. Use the default or dedicated
tenancy values only.
Important
To use a tenancy value of host, you must use a launch template. For more information, see
Creating a launch template for an Auto Scaling group (p. 27). Before launching Dedicated Hosts,
we recommend that you become familiar with launching and managing Dedicated Hosts using
AWS License Manager. For more information, see the License Manager User Guide.

Dedicated Instances are physically isolated at the host hardware level from instances that aren't
dedicated and from instances that belong to other AWS accounts. When you create a VPC, by default
its tenancy attribute is set to default. In such a VPC, you can launch instances with a tenancy value
of dedicated so that they run as single-tenancy instances. Otherwise, they run as shared-tenancy
instances by default. If you set the tenancy attribute of a VPC to dedicated, all instances launched in
the VPC run as single-tenancy instances.

52
Amazon EC2 Auto Scaling User Guide
Conﬁguring instance tenancy

When you create a launch configuration, the default value for the instance placement tenancy is null
and the instance tenancy is controlled by the tenancy attribute of the VPC. You can specify the instance
placement tenancy for your launch configuration as default or dedicated using the create-launch-
configuration CLI command with the --placement-tenancy option.

The following table summarizes the instance placement tenancy of the Auto Scaling instances launched
in a VPC.

Launch conﬁguration tenancy VPC tenancy = default VPC tenancy = dedicated

not speciﬁed shared-tenancy instances Dedicated Instances

default shared-tenancy instances Dedicated Instances

dedicated Dedicated Instances Dedicated Instances

To create a launch conﬁguration that creates Dedicated Instances (AWS CLI)

Use the following create-launch-configuration command to create a launch configuration that sets the
launch configuration tenancy to dedicated.

aws autoscaling create-launch-configuration --launch-configuration-name my-launch-config --

placement-tenancy dedicated --image-id ...

You can use the following describe-launch-conﬁgurations command to verify the instance placement
tenancy of the launch conﬁguration.

aws autoscaling describe-launch-configurations --launch-configuration-names my-launch-

config

The following is example output for a launch conﬁguration that creates Dedicated Instances. The
PlacementTenancy parameter is only part of the output for this command when you explicitly set the
instance placement tenancy.

{
"LaunchConfigurations": [
{
"UserData": null,
"EbsOptimized": false,
"PlacementTenancy": "dedicated",
"LaunchConfigurationARN": "arn",
"InstanceMonitoring": {
"Enabled": true
},
"ImageId": "ami-b5a7ea85",
"CreatedTime": "2020-03-08T23:39:49.011Z",
"BlockDeviceMappings": [],
"KeyName": null,
"SecurityGroups": [],
"LaunchConfigurationName": "my-launch-config",
"KernelId": null,
"RamdiskId": null,
"InstanceType": "m3.medium"
}
]
}

53
Amazon EC2 Auto Scaling User Guide

Auto Scaling groups

We are retiring EC2-Classic on August 15, 2022. To avoid interruptions to your workloads, we
recommend that you migrate from EC2-Classic to a VPC prior to August 15, 2022. For more
information, see the blog post EC2-Classic Networking is Retiring - Here's How to Prepare.

An Auto Scaling group contains a collection of Amazon EC2 instances that are treated as a logical
grouping for the purposes of automatic scaling and management. An Auto Scaling group also enables
you to use Amazon EC2 Auto Scaling features such as health check replacements and scaling policies.
Both maintaining the number of instances in an Auto Scaling group and automatic scaling are the core
functionality of the Amazon EC2 Auto Scaling service.

The size of an Auto Scaling group depends on the number of instances that you set as the desired
capacity. You can adjust its size to meet demand, either manually or by using automatic scaling.

An Auto Scaling group starts by launching enough instances to meet its desired capacity. It maintains
this number of instances by performing periodic health checks on the instances in the group. The Auto
Scaling group continues to maintain a ﬁxed number of instances even if an instance becomes unhealthy.
If an instance becomes unhealthy, the group terminates the unhealthy instance and launches another
instance to replace it. For more information, see Health checks for Auto Scaling instances (p. 259).

You can use scaling policies to increase or decrease the number of instances in your group dynamically
to meet changing conditions. When the scaling policy is in eﬀect, the Auto Scaling group adjusts the
desired capacity of the group, between the minimum and maximum capacity values that you specify, and
launches or terminates the instances as needed. You can also scale on a schedule. For more information,
see Scaling the size of your Auto Scaling group (p. 140).

An Auto Scaling group can launch On-Demand Instances, Spot Instances, or both. You can specify
multiple purchase options for your Auto Scaling group only when you conﬁgure the group to use a
launch template. (We recommend that you use launch templates instead of launch conﬁgurations to
make sure that you can use the latest features of Amazon EC2.)

Spot Instances provide you with access to unused Amazon EC2 capacity at steep discounts relative to
On-Demand prices. For more information, see Amazon EC2 Spot Instances. There are key diﬀerences
between Spot Instances and On-Demand Instances:

• The price for Spot Instances varies based on demand

• Amazon EC2 can terminate an individual Spot Instance as the availability of, or price for, Spot Instances
changes

When a Spot Instance is terminated, the Auto Scaling group attempts to launch a replacement instance
to maintain the desired capacity for the group.

When instances are launched, if you speciﬁed multiple Availability Zones, the desired capacity is
distributed across these Availability Zones. If a scaling action occurs, Amazon EC2 Auto Scaling
automatically maintains balance across all of the Availability Zones that you specify.

If you're new to Auto Scaling groups, start by creating a launch template or a launch conﬁguration and
then use it to create an Auto Scaling group in which all instances have the same instance attributes.

54
Amazon EC2 Auto Scaling User Guide
Using multiple instance types and purchase options

You can set the following instance attributes by specifying them as part of the launch template or
launch conﬁguration: AMI, block devices, key pair, instance type, security groups, user data, EC2 instance
monitoring, instance proﬁle, kernel, ramdisk, the tenancy of the instance, whether the instance has a
public IP address, and whether the instance is EBS-optimized. The Getting started with Amazon EC2
Auto Scaling (p. 13) tutorial provides a quick introduction to the various building blocks that are used in
Amazon EC2 Auto Scaling.

Contents
• Auto Scaling groups with multiple instance types and purchase options (p. 55)
• Creating an Auto Scaling group using attribute-based instance type selection (p. 78)
• Creating an Auto Scaling group using a launch template (p. 83)
• Creating an Auto Scaling group using a launch conﬁguration (p. 85)
• Creating an Auto Scaling group using parameters from an existing instance (p. 87)
• Creating an Auto Scaling group using the Amazon EC2 launch wizard (p. 91)
• Tagging Auto Scaling groups and instances (p. 93)
• Elastic Load Balancing and Amazon EC2 Auto Scaling (p. 100)
• Launching Auto Scaling instances in a VPC (p. 112)
• Getting recommendations for an instance type from AWS Compute Optimizer (p. 115)
• Replacing Auto Scaling instances (p. 117)
• Deleting your Auto Scaling infrastructure (p. 136)

Auto Scaling groups with multiple instance types

and purchase options
You can launch and automatically scale a ﬂeet of On-Demand Instances and Spot Instances within
a single Auto Scaling group. In addition to receiving discounts for using Spot Instances, you can use
Reserved Instances or a Savings Plan to receive discounted rates of the regular On-Demand Instance
pricing. All of these factors combined help you to optimize your cost savings for EC2 instances, while
making sure that you obtain the desired scale and performance for your application.

You first specify the common configuration parameters in a launch template, and choose it when you
create an Auto Scaling group. When you configure the Auto Scaling group, you can:

• Choose one or more instance types for the group (optionally overriding the instance type that is
specified by the launch template).
• Define multiple launch templates to allow instances with different CPU architectures (for example,
Arm and x86) to launch in the same Auto Scaling group.
• Assign each instance type an individual weight. Doing so might be useful, for example, if the instance
types offer different vCPU, memory, storage, or network bandwidth capabilities.
• Prioritize instance types that can benefit from Savings Plan or Reserved Instance discount pricing.
• Specify how much On-Demand and Spot capacity to launch, and specify an optional On-Demand base
portion.
• Define how Amazon EC2 Auto Scaling should distribute your On-Demand and Spot capacity across
instance types.
• Enable Capacity Rebalancing. When you turn on Capacity Rebalancing, Amazon EC2 Auto Scaling
attempts to launch a Spot Instance whenever the Amazon EC2 Spot service notifies that a Spot
Instance is at an elevated risk of interruption. After launching a new instance, it then terminates an old
instance. For more information, see Amazon EC2 Auto Scaling Capacity Rebalancing (p. 263).

55
Amazon EC2 Auto Scaling User Guide
Allocation strategies

You enhance availability by deploying your application across multiple instance types running in multiple
Availability Zones. You can use just one instance type, but it is a best practice to use a few instance types
to allow Amazon EC2 Auto Scaling to launch another instance type in the event that there is insuﬃcient
instance capacity in your chosen Availability Zones. With Spot Instances, if there is insuﬃcient instance
capacity, Amazon EC2 Auto Scaling keeps trying in other Spot Instance pools (determined by your choice
of instance types and allocation strategy) rather than launching On-Demand Instances, so that you can
leverage the cost savings of Spot Instances.

There are two ways to associate multiple instance types with your Auto Scaling group conﬁguration:

• Manually add instance types as described in this topic.

• Choose a set of instance attributes to use as criteria for selecting the instance types that your Auto
Scaling group uses. This is known as attribute-based instance type selection. For more information, see
Using attribute-based instance type selection (p. 78).

Contents
• Allocation strategies (p. 56)
• Controlling the proportion of On-Demand instances (p. 58)
• Best practices for Spot Instances (p. 59)
• Prerequisites (p. 60)
• Creating an Auto Scaling group with Spot and On-Demand Instances (console) (p. 60)
• Configuring Spot allocation strategies (AWS CLI) (p. 62)
• Verifying whether your Auto Scaling group is configured correctly and that the group has launched
instances (AWS CLI) (p. 67)
• Configuring overrides (p. 68)

Allocation strategies
The following allocation strategies determine how the Auto Scaling group fulﬁlls your On-Demand and
Spot capacities from the possible instance types.

Amazon EC2 Auto Scaling first tries to ensure that your instances are evenly balanced across the
Availability Zones that you specified. Then, it launches instance types according to the allocation strategy
that is specified.

Spot Instances
Amazon EC2 Auto Scaling provides the following allocation strategies that can be used for Spot
Instances:

capacity-optimized

Amazon EC2 Auto Scaling allocates your instances from the Spot Instance pool with optimal capacity
for the number of instances that are launching. Deploying in this way helps you make the most
eﬃcient use of spare EC2 capacity.

With Spot Instances, the pricing changes slowly over time based on long-term trends in supply and
demand, but capacity ﬂuctuates in real time. The capacity-optimized strategy automatically
launches Spot Instances into the most available pools by looking at real-time capacity data and
predicting which are the most available. This works well for workloads such as big data and
analytics, image and media rendering, and machine learning. It also works well for high performance
computing that may have a higher cost of interruption associated with restarting work and

56
Amazon EC2 Auto Scaling User Guide
Allocation strategies

checkpointing. By oﬀering the possibility of fewer interruptions, the capacity-optimized

strategy can lower the overall cost of your workload.

Alternatively, you can use the capacity-optimized-prioritized allocation strategy and

then set the order of instance types in the list of launch template overrides from highest to lowest
priority (first to last in the list). Amazon EC2 Auto Scaling honors the instance type priorities on
a best-effort basis but optimizes for capacity first. This is a good option for workloads where the
possibility of disruption must be minimized, but also the preference for certain instance types
matters.
lowest-price

Amazon EC2 Auto Scaling allocates your Spot Instances from the N number of pools per Availability
Zone that you specify and from the Spot Instance pools with the lowest price in each Availability
Zone.

For example, if you specify four instance types and four Availability Zones, your Auto Scaling group
has access to as many as 16 Spot pools (four in each Availability Zone). If you specify two Spot pools
(N=2) for the allocation strategy, your Auto Scaling group can draw on the two cheapest pools per
Availability Zone to fulﬁll your Spot capacity.

Note that Amazon EC2 Auto Scaling attempts to draw Spot Instances from the N number of pools
that you specify on a best effort basis. If a pool runs out of Spot capacity before fulfilling your
desired capacity, Amazon EC2 Auto Scaling will continue to fulfill your request by drawing from the
next cheapest pool. To ensure that your desired capacity is met, you might receive Spot Instances
from more than the N number of pools that you specified. Similarly, if most of the pools have no
Spot capacity, you might receive your full desired capacity from fewer than the N number of pools
that you specified.

To get started, we recommend choosing the capacity-optimized allocation strategy and specifying
a few instance types that are appropriate for your application. In addition, you can deﬁne a range of
Availability Zones for Amazon EC2 Auto Scaling to choose from when launching instances.

Optionally, you can specify a maximum price for your Spot Instances. If you don't specify a maximum
price, the default maximum price is the On-Demand price, but you still receive the steep discounts
provided by Spot Instances. These discounts are possible because of the stable Spot pricing that is made
available using the new Spot pricing model.

For more information about the allocation strategies for Spot Instances, see Introducing the capacity-
optimized allocation strategy for Amazon EC2 Spot Instances in the AWS blog.

On-Demand Instances
Amazon EC2 Auto Scaling provides the following allocation strategies that can be used for On-Demand
Instances:

lowest-price

Amazon EC2 Auto Scaling automatically deploys the cheapest instance type in each Availability Zone
based on the current On-Demand price.

To ensure that your desired capacity is met, you might receive On-Demand Instances of more than
one instance type in each Availability Zone, depending on how much capacity you request.
Note
Currently, Amazon EC2 Auto Scaling does not honor the lowest-price allocation strategy
for On-Demand Instances when implementing your termination policies (p. 239) during
scale-in events.

57
Amazon EC2 Auto Scaling User Guide
Controlling the proportion of On-Demand instances

prioritized

Amazon EC2 Auto Scaling uses the order of instance types in the list of launch template overrides
to determine which instance type to use first when fulfilling On-Demand capacity. For example, let's
say that you specified three launch template overrides in the following order: c5.large, c4.large,
and c3.large. When your On-Demand Instances are launched, the Auto Scaling group fulfills On-
Demand capacity by starting with c5.large, then c4.large, and then c3.large.

Consider the following when managing the priority order of your On-Demand Instances:

You can pay for usage upfront to get significant discounts for On-Demand Instances by using
either Savings Plans or Reserved Instances. For more information about Savings Plans or Reserved
Instances, see the Amazon EC2 pricing page.
• With Reserved Instances, your discounted rate of the regular On-Demand Instance pricing applies
if Amazon EC2 Auto Scaling launches matching instance types. That means that if you have
unused Reserved Instances for c4.large, you can set the instance type priority to give the
highest priority for your Reserved Instances to a c4.large instance type. When a c4.large
instance launches, you receive the Reserved Instance pricing.
• With Savings Plans, your discounted rate of the regular On-Demand Instance pricing applies when
using either Amazon EC2 Instance Savings Plans or Compute Savings Plans. Because of the flexible
nature of Savings Plans, you have greater flexibility in prioritizing your instance types. As long as
you use instance types that are covered by your Savings Plan, you can set them in any order of
priority and even occasionally change their order entirely, and continue to receive the discounted
rate provided by your Savings Plan. To learn more about Savings Plans, see the Savings Plans User
Guide.

Controlling the proportion of On-Demand instances

You have full control over the proportion of instances in the Auto Scaling group that are launched as On-
Demand Instances. To ensure that you always have instance capacity, you can designate a percentage of
the group to launch as On-Demand Instances and, optionally, a base number of On-Demand Instances to
start with. If you choose to specify a base capacity of On-Demand Instances, Amazon EC2 Auto Scaling
launches Spot Instances only after launching this base capacity of On-Demand Instances when the group
scales out. Anything beyond the base capacity uses the On-Demand percentage to determine how many
On-Demand Instances and Spot Instances to launch. You can specify any number from 0 to 100 for the
On-Demand percentage.

Amazon EC2 Auto Scaling converts the percentage to the equivalent number of instances. If the result
creates a fractional number, Amazon EC2 Auto Scaling rounds up to the next integer in favor of On-
Demand Instances.

The behavior of the Auto Scaling group as it increases in size is as follows:

Example: Scaling behavior

Instances Total number of running instances across purchase options

distribution

10 20 30 40

Example 1

On-Demand base: 10 10 10 10
10

On-Demand 0 5 10 15
percentage above
base: 50%

58
Amazon EC2 Auto Scaling User Guide
Best practices for Spot Instances

Instances Total number of running instances across purchase options

distribution

Spot percentage: 0 5 10 15
50%

Example 2

On-Demand base: 0 0 0 0
0

On-Demand 0 0 0 0
percentage above
base: 0%

Spot percentage: 10 20 30 40
100%

Example 3

On-Demand base: 0 0 0 0
0

On-Demand 6 12 18 24
percentage above
base: 60%

Spot percentage: 4 8 12 16
40%

Example 4

On-Demand base: 0 0 0 0
0

On-Demand 10 20 30 40
percentage above
base: 100%

Spot percentage: 0 0 0 0
0%

Example 5

On-Demand base: 10 12 12 12
12

On-Demand 0 0 0 0
percentage above
base: 0%

Spot percentage: 0 8 18 28
100%

Best practices for Spot Instances

Before you create your Auto Scaling group to request Spot Instances, review Best practices for EC2
Spot in the Amazon EC2 User Guide for Linux Instances. Use these best practices when you plan your
request so that you can provision the type of instances that you want at the lowest possible price. We
also recommend that you do the following:

59
Amazon EC2 Auto Scaling User Guide
Prerequisites

• Use the default maximum price, which is the On-Demand price. You pay only the Spot price for the
Spot Instances that you launch. If the Spot price is within your maximum price, whether your request is
fulfilled depends on availability. For more information, see Pricing and savings in the Amazon EC2 User
Guide for Linux Instances.
• Create your Auto Scaling group with multiple instance types. Because capacity fluctuates
independently for each instance type in an Availability Zone, you can often get more compute capacity
when you have instance type flexibility.
• Similarly, don't limit yourself to only the most popular instance types. Because prices adjust based on
long-term demand, popular instance types (such as recently launched instance families), tend to have
more price adjustments. Picking older-generation instance types that are less popular tends to result in
lower costs and fewer interruptions.
• We recommend that you use the capacity-optimized or capacity-optimized-prioritized
allocation strategy. This means that Amazon EC2 Auto Scaling launches instances using Spot pools
that are optimally chosen based on the available Spot capacity, which helps you reduce the possibility
of a Spot interruption.
• If you choose the lowest-price allocation strategy and you run a web service, specify a high number
of Spot pools, for example, N=10. Specifying a high number of Spot pools reduces the impact of Spot
Instance interruptions if a pool in one of the Availability Zones becomes temporarily unavailable. If
you run batch processing or other non-mission critical applications, you can specify a lower number
of Spot pools, for example, N=2. This helps to ensure that you provision Spot Instances from only the
very lowest priced Spot pools available per Availability Zone.

If you intend to specify a maximum price, use the AWS CLI or an SDK to create the Auto Scaling group,
but be cautious. If your maximum price is lower than the Spot price for the instance types that you
selected, your Spot Instances are not launched.

Prerequisites
Create a launch template. For more information, see Creating a launch template for an Auto Scaling
group (p. 27).

Verify that you have the permissions required to use a launch template. Your ec2:RunInstances
permissions are checked when use a launch template. Your iam:PassRole permissions are also
checked if the launch template speciﬁes an IAM role. For more information, see Launch template
support (p. 316).

Creating an Auto Scaling group with Spot and On-

Demand Instances (console)
Complete the following steps to create a ﬂeet of Spot Instances and On-Demand Instances that you can
scale.

Before you begin, conﬁrm that you have created a launch template, as described in
Prerequisites (p. 60).

Verify that the launch template doesn't already request Spot Instances.

To create an Auto Scaling group with Spot and On-Demand Instances

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. On the navigation bar at the top of the screen, choose the same AWS Region that you used when
you created the launch template.
3. Choose Create an Auto Scaling group.

60
Amazon EC2 Auto Scaling User Guide
Creating an Auto Scaling group with
Spot and On-Demand Instances (console)

4. On the Choose launch template or conﬁguration page, do the following:

a. For Auto Scaling group name, enter a name for your Auto Scaling group.
b. For Launch template, choose an existing launch template.
c. For Launch template version, choose whether the Auto Scaling group uses the default, the
latest, or a specific version of the launch template when scaling out.
d. Verify that your launch template supports all of the options that you are planning to use, and
then choose Next.
5. On the Choose instance launch options page, under Network, for VPC, choose a VPC. The Auto
Scaling group must be created in the same VPC as the security group you specified in your launch
template.
6. For Availability Zones and subnets, choose one or more subnets in the specified VPC. Use subnets
in multiple Availability Zones for high availability. For more information, see Considerations when
choosing VPC subnets (p. 113).
7. For Instance type requirements, choose Override launch template, Manually add instance types.

a. For Instance types, choose which types of instances can be launched. You can use our
recommendations as a starting point.
b. (Optional) To change the order of the instance types, use the arrows. The order in which you set
the instance types sets their launch priority if you choose a priority-based allocation strategy.
c. (Optional) To use instance weighting (p. 72), assign each instance type a relative weight that
corresponds to how much the instance should count toward the capacity of the Auto Scaling
group.
8. Under Instance purchase options, make updates to the purchase options as needed to lower the
cost of your application by using Spot Instances.

a. For Instances distribution, specify the percentages of On-Demand Instances to Spot Instances
to launch for the Auto Scaling group. If your application is stateless, fault tolerant and can
handle an instance being interrupted, you can specify a higher percentage of Spot Instances.
b. Depending on whether you chose to launch Spot Instances, you can select the check box next to
Include On-Demand base capacity and then specify the minimum amount of the Auto Scaling
group's initial capacity that must be fulﬁlled by On-Demand Instances. Anything beyond the
base capacity uses the Instances distribution settings to determine how many On-Demand
Instances and Spot Instances to launch.
9. Under Allocation strategies, for On-Demand allocation strategy, choose an allocation strategy.
10. For Spot allocation strategy, choose an allocation strategy. We recommend that you keep the
default setting of Capacity optimized. If you prefer not to keep the default, choose Lowest price,
and then enter the number of lowest priced Spot Instance pools to diversify across.
11. For Capacity rebalance, choose whether to enable or disable Capacity Rebalancing. For more
information, see Amazon EC2 Auto Scaling Capacity Rebalancing (p. 263).
12. Choose Next.

Or, you can accept the rest of the defaults, and choose Skip to review.
13. On the Configure advanced options page, configure the options as desired, and then choose Next:
14. (Optional) On the Configure group size and scaling policies page, configure the following options,
and then choose Next:

61
Amazon EC2 Auto Scaling User Guide
Conﬁguring Spot allocation strategies (AWS CLI)

c. Under Instance scale-in protection, choose whether to enable instance scale-in protection. For
more information, see Using instance scale-in protection (p. 246).
15. (Optional) To receive notifications, for Add notification, configure the notification, and then choose
Next. For more information, see Getting Amazon SNS notifications when your Auto Scaling group
scales (p. 281).
16. (Optional) To add tags, choose Add tag, provide a tag key and value for each tag, and then choose
Next. For more information, see Tagging Auto Scaling groups and instances (p. 93).
17. On the Review page, choose Create Auto Scaling group.

Conﬁguring Spot allocation strategies (AWS CLI)

The following example configurations show how to launch Spot Instances using the different Spot
allocation strategies.
Note
These examples show how to use a configuration file formatted in JSON or YAML. If you use
AWS CLI version 1, you must specify a JSON-formatted configuration file. If you use AWS CLI
version 2, you can specify a configuration file formatted in either YAML or JSON.

Examples
• Example 1: Launch Spot Instances using the capacity-optimized allocation strategy (p. 62)
• Example 2: Launch Spot Instances using the capacity-optimized-prioritized allocation
strategy (p. 64)
• Example 3: Launch Spot Instances using the lowest-price allocation strategy diversiﬁed over two
pools (p. 66)

Example 1: Launch Spot Instances using the capacity-

optimized allocation strategy
The following create-auto-scaling-group command creates an Auto Scaling group that speciﬁes the
following:

• The percentage of the group to launch as On-Demand Instances (0) and a base number of On-Demand
Instances to start with (1)
• The instance types to launch in priority order (c5.large, c5a.large, m5.large, m5a.large,
c4.large, m4.large, c3.large, m3.large)
• The subnets in which to launch the instances (subnet-5ea0c127, subnet-6194ea3b, subnet-
c934b782), each corresponding to a diﬀerent Availability Zone
• The launch template (my-launch-template) and the launch template version ($Default)

When Amazon EC2 Auto Scaling attempts to fulﬁll your On-Demand capacity, it launches the c5.large
instance type ﬁrst. The Spot Instances come from the optimal Spot pool in each Availability Zone based
on Spot Instance capacity.

JSON

aws autoscaling create-auto-scaling-group --cli-input-json file://~/config.json

The following is an example config.json ﬁle.

{
"AutoScalingGroupName": "my-asg",

62
Amazon EC2 Auto Scaling User Guide
Conﬁguring Spot allocation strategies (AWS CLI)

"MixedInstancesPolicy": {
"LaunchTemplate": {
"LaunchTemplateSpecification": {
"LaunchTemplateName": "my-launch-template",
"Version": "$Default"
},
"Overrides": [
{
"InstanceType": "c5.large"
},
{
"InstanceType": "c5a.large"
},
{
"InstanceType": "m5.large"
},
{
"InstanceType": "m5a.large"
},
{
"InstanceType": "c4.large"
},
{
"InstanceType": "m4.large"
},
{
"InstanceType": "c3.large"
},
{
"InstanceType": "m3.large"
}
]
},
"InstancesDistribution": {
"OnDemandBaseCapacity": 1,
"OnDemandPercentageAboveBaseCapacity": 0,
"SpotAllocationStrategy": "capacity-optimized"
}
},
"MinSize": 1,
"MaxSize": 5,
"DesiredCapacity": 3,
"VPCZoneIdentifier": "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782"
}

YAML

Alternatively, you can use the following create-auto-scaling-group command to create the Auto Scaling
group, referencing a YAML ﬁle as the sole parameter for your Auto Scaling group instead of a JSON ﬁle.

aws autoscaling create-auto-scaling-group --cli-input-yaml file://~/config.yaml

The following is an example config.yaml ﬁle.

---
AutoScalingGroupName: my-asg
MixedInstancesPolicy:
LaunchTemplate:
LaunchTemplateSpecification:
LaunchTemplateName: my-launch-template
Version: $Default
Overrides:
- InstanceType: c5.large

63
Amazon EC2 Auto Scaling User Guide
Conﬁguring Spot allocation strategies (AWS CLI)

- InstanceType: c5a.large
- InstanceType: m5.large
- InstanceType: m5a.large
- InstanceType: c4.large
- InstanceType: m4.large
- InstanceType: c3.large
- InstanceType: m3.large
InstancesDistribution:
OnDemandBaseCapacity: 1
OnDemandPercentageAboveBaseCapacity: 0
SpotAllocationStrategy: capacity-optimized
MinSize: 1
MaxSize: 5
DesiredCapacity: 3
VPCZoneIdentifier: subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782

Example 2: Launch Spot Instances using the capacity-

optimized-prioritized allocation strategy
The following create-auto-scaling-group command creates an Auto Scaling group that speciﬁes the
following:

When Amazon EC2 Auto Scaling attempts to fulfill your On-Demand capacity, it launches the c5.large
instance type first. When Amazon EC2 Auto Scaling attempts to fulfill your Spot capacity, it honors the
instance type priorities on a best-effort basis, but optimizes for capacity first.

JSON

aws autoscaling create-auto-scaling-group --cli-input-json file://~/config.json

The following is an example config.json ﬁle.

64
Amazon EC2 Auto Scaling User Guide
Conﬁguring Spot allocation strategies (AWS CLI)

{
"InstanceType": "m5a.large"
},
{
"InstanceType": "c4.large"
},
{
"InstanceType": "m4.large"
},
{
"InstanceType": "c3.large"
},
{
"InstanceType": "m3.large"
}
]
},
"InstancesDistribution": {
"OnDemandBaseCapacity": 1,
"OnDemandPercentageAboveBaseCapacity": 0,
"SpotAllocationStrategy": "capacity-optimized-prioritized"
}
},
"MinSize": 1,
"MaxSize": 5,
"DesiredCapacity": 3,
"VPCZoneIdentifier": "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782"
}

YAML

aws autoscaling create-auto-scaling-group --cli-input-yaml file://~/config.yaml

The following is an example config.yaml ﬁle.

---
AutoScalingGroupName: my-asg
MixedInstancesPolicy:
LaunchTemplate:
LaunchTemplateSpecification:
LaunchTemplateName: my-launch-template
Version: $Default
Overrides:
- InstanceType: c5.large
- InstanceType: c5a.large
- InstanceType: m5.large
- InstanceType: m5a.large
- InstanceType: c4.large
- InstanceType: m4.large
- InstanceType: c3.large
- InstanceType: m3.large
InstancesDistribution:
OnDemandBaseCapacity: 1
OnDemandPercentageAboveBaseCapacity: 0
SpotAllocationStrategy: capacity-optimized-prioritized
MinSize: 1
MaxSize: 5
DesiredCapacity: 3
VPCZoneIdentifier: subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782

65
Amazon EC2 Auto Scaling User Guide
Conﬁguring Spot allocation strategies (AWS CLI)

Example 3: Launch Spot Instances using the lowest-price

allocation strategy diversiﬁed over two pools
The following create-auto-scaling-group command creates an Auto Scaling group that speciﬁes the
following:

• The percentage of the group to launch as On-Demand Instances (50) without also specifying a base
number of On-Demand Instances to start with
• The instance types to launch in priority order (c5.large, c5a.large, m5.large, m5a.large,
c4.large, m4.large, c3.large, m3.large)
• The subnets in which to launch the instances (subnet-5ea0c127, subnet-6194ea3b, subnet-
c934b782), each corresponding to a diﬀerent Availability Zone
• The launch template (my-launch-template) and the launch template version ($Latest)

When Amazon EC2 Auto Scaling attempts to fulﬁll your On-Demand capacity, it launches the c5.large
instance type ﬁrst. For your Spot capacity, Amazon EC2 Auto Scaling attempts to launch the Spot
Instances evenly across the two lowest-priced pools in each Availability Zone.

JSON

aws autoscaling create-auto-scaling-group --cli-input-json file://~/config.json

The following is an example config.json ﬁle.

{
"AutoScalingGroupName": "my-asg",
"MixedInstancesPolicy": {
"LaunchTemplate": {
"LaunchTemplateSpecification": {
"LaunchTemplateName": "my-launch-template",
"Version": "$Latest"
},
"Overrides": [
{
"InstanceType": "c5.large"
},
{
"InstanceType": "c5a.large"
},
{
"InstanceType": "m5.large"
},
{
"InstanceType": "m5a.large"
},
{
"InstanceType": "c4.large"
},
{
"InstanceType": "m4.large"
},
{
"InstanceType": "c3.large"
},
{
"InstanceType": "m3.large"
}
]
},

66
Amazon EC2 Auto Scaling User Guide
Verifying whether your Auto Scaling
group is conﬁgured correctly and that the
group has launched instances (AWS CLI)
"InstancesDistribution": {
"OnDemandPercentageAboveBaseCapacity": 50,
"SpotAllocationStrategy": "lowest-price",
"SpotInstancePools": 2
}
},
"MinSize": 1,
"MaxSize": 5,
"DesiredCapacity": 3,
"VPCZoneIdentifier": "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782"
}

YAML

aws autoscaling create-auto-scaling-group --cli-input-yaml file://~/config.yaml

The following is an example config.yaml ﬁle.

---
AutoScalingGroupName: my-asg
MixedInstancesPolicy:
LaunchTemplate:
LaunchTemplateSpecification:
LaunchTemplateName: my-launch-template
Version: $Default
Overrides:
- InstanceType: c5.large
- InstanceType: c5a.large
- InstanceType: m5.large
- InstanceType: m5a.large
- InstanceType: c4.large
- InstanceType: m4.large
- InstanceType: c3.large
- InstanceType: m3.large
InstancesDistribution:
OnDemandPercentageAboveBaseCapacity: 50
SpotAllocationStrategy: lowest-price
SpotInstancePools: 2
MinSize: 1
MaxSize: 5
DesiredCapacity: 3
VPCZoneIdentifier: subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782

Note
For additional examples, see Specifying a diﬀerent launch template for an instance
type (p. 68), Conﬁguring instance weighting for Amazon EC2 Auto Scaling (p. 72), and
Amazon EC2 Auto Scaling Capacity Rebalancing (p. 263).

Verifying whether your Auto Scaling group is

configured correctly and that the group has launched
instances (AWS CLI)
To check whether your Auto Scaling group is configured correctly and that it has launched instances,
use the describe-auto-scaling-groups command. Verify that the mixed instances policy and the list
of subnets exist and are configured correctly. If the instances have launched, you will see a list of the

67
Amazon EC2 Auto Scaling User Guide
Conﬁguring overrides

instances and their statuses. To view the scaling activities that result from instances launching, use the
describe-scaling-activities command. You can monitor scaling activities that are in progress and that are
recently completed.

Conﬁguring overrides
Overrides are changes you make to the properties of your launch template. Amazon EC2 Auto Scaling
supports overrides to the instance type property. That way, you can specify multiple instance types. To
do so, you must add the Overrides structure to your mixed instances policy.

The Overrides structure allows you to deﬁne a set of parameters that Amazon EC2 Auto Scaling can
use to launch instances, including:

• InstanceType — The instance type. For more information about the instance types that are
available, see Instance types in the Amazon EC2 User Guide for Linux Instances.
• LaunchTemplateSpecification — (Optional) A launch template for an individual instance type.
This property is currently limited to the AWS CLI or an SDK, and is not available from the console.
• WeightedCapacity — (Optional) The number of units that a provisioned instance of this type
provides toward fulﬁlling the desired capacity of the Auto Scaling group. If you specify a weight value
for one instance type, you must specify a weight value for all of them.

Note
As an alternative to specifying a list of instance types, you can specify a set of instance
attributes to use as criteria for selecting the instance types your Auto Scaling group uses. This
is known as attribute-based instance type selection. For more information, see Using attribute-
based instance type selection (p. 78).

Contents
• Specifying a diﬀerent launch template for an instance type (p. 68)
• Conﬁguring instance weighting for Amazon EC2 Auto Scaling (p. 72)

Specifying a diﬀerent launch template for an instance type

The Overrides structure allows you to deﬁne a new launch template for individual instance types for
a new or existing Auto Scaling group. For example, if the architecture of an instance type requires a
diﬀerent AMI from the rest of the group, you must specify a launch template with a compatible AMI.

Say that you conﬁgure an Auto Scaling group for compute-intensive applications and want to include
a mix of C5, C5a, and C6g instance types. However, C6g instances feature an AWS Graviton processor
based on 64-bit Arm architecture, while the C5 and C5a instances run on 64-bit Intel x86 processors. The
AMI for C5 instances works on C5a instances and vice-versa, but not on C6g instances. The Overrides
property allows you to include a diﬀerent launch template for C6g instances, while still using the same
launch template for C5 and C5a instances.
Note
Currently, this feature is available only if you use the AWS CLI or an SDK, and is not available
from the console.

Contents
• Adding or changing a launch template for an instance type (AWS CLI) (p. 68)

Adding or changing a launch template for an instance type (AWS CLI)

The following procedure shows you how to use the AWS CLI to conﬁgure an Auto Scaling group so that
one or more of the instance types uses a launch template that is diﬀerent from the rest of the group.

68
Amazon EC2 Auto Scaling User Guide
Conﬁguring overrides

To create and conﬁgure a new Auto Scaling group

1. Create a conﬁguration ﬁle where you specify a mixed instances policy structure and include the
Overrides structure.

The following are the contents of an example configuration file formatted in JSON. It specifies the
c5.large, c5a.large, and c6g.large instance types and defines a new launch template for
the c6g.large instance type to ensure that an appropriate AMI is used to launch Arm instances.
Amazon EC2 Auto Scaling uses the order of instance types to determine which instance type to use
first when fulfilling On-Demand capacity.

{
"AutoScalingGroupName":"my-asg",
"MixedInstancesPolicy":{
"LaunchTemplate":{
"LaunchTemplateSpecification":{
"LaunchTemplateName":"my-launch-template-for-x86",
"Version":"$Latest"
},
"Overrides":[
{
"InstanceType":"c6g.large",
"LaunchTemplateSpecification": {
"LaunchTemplateName": "my-launch-template-for-arm",
"Version": "$Latest"
}
},
{
"InstanceType":"c5.large"
},
{
"InstanceType":"c5a.large"
}
]
},
"InstancesDistribution":{
"OnDemandBaseCapacity": 1,
"OnDemandPercentageAboveBaseCapacity": 50,
"SpotAllocationStrategy": "capacity-optimized"
}
},
"MinSize":1,
"MaxSize":5,
"DesiredCapacity":3,
"VPCZoneIdentifier":"subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782",
"Tags":[ ]
}

2. Use the following create-auto-scaling-group command, referencing the JSON ﬁle as the sole
parameter for your Auto Scaling group.

aws autoscaling create-auto-scaling-group --cli-input-json file://~/config.json

To change the launch template for an instance type in an existing Auto Scaling group

• Use the following update-auto-scaling-group command to specify a diﬀerent launch template for an
instance type by passing the Overrides structure.

When this change is made, any new instances that are launched are based on the new settings, but
existing instances are not aﬀected. To ensure that your Auto Scaling group is using the new settings,

69
Amazon EC2 Auto Scaling User Guide
Conﬁguring overrides

you can replace all instances in the group by starting an instance refresh or by using the maximum
instance lifetime feature.

aws autoscaling update-auto-scaling-group --cli-input-json file://~/config.json

The following is an example config.json ﬁle.

{
"AutoScalingGroupName":"my-asg",
"MixedInstancesPolicy":{
"LaunchTemplate":{
"Overrides":[
{
"InstanceType":"c6g.large",
"LaunchTemplateSpecification": {
"LaunchTemplateName": "my-launch-template-for-arm",
"Version": "$Latest"
}
},
{
"InstanceType":"c5.large"
},
{
"InstanceType":"c5a.large"
}
]
}
}
}

To verify the launch templates for an Auto Scaling group

• Use the following describe-auto-scaling-groups command to verify and view the currently speciﬁed
launch templates.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-name my-asg

The following is an example response.

70
Amazon EC2 Auto Scaling User Guide
Conﬁguring overrides

},
{
"InstanceType":"c5.large"
},
{
"InstanceType":"c5a.large"
}
]
},
"InstancesDistribution":{
"OnDemandAllocationStrategy":"prioritized",
"OnDemandBaseCapacity":1,
"OnDemandPercentageAboveBaseCapacity":50,
"SpotAllocationStrategy":"capacity-optimized"
}
},
"MinSize":1,
"MaxSize":5,
"DesiredCapacity":3,
"Instances":[
{
"InstanceId":"i-07c63168522c0f620",
"InstanceType":"c5.large",
"AvailabilityZone":"us-west-2c",
"LifecycleState":"InService",
"HealthStatus":"Healthy",
"LaunchTemplate":{
"LaunchTemplateId":"lt-0fb0e487336917fb2",
"LaunchTemplateName":"my-launch-template-for-x86",
"Version":"1"
},
"ProtectedFromScaleIn":false
},
{
"InstanceId":"i-0b7ff78be9896a2c2",
"InstanceType":"c5.large",
"AvailabilityZone":"us-west-2a",
"LifecycleState":"InService",
"HealthStatus":"Healthy",
"LaunchTemplate":{
"LaunchTemplateId":"lt-0fb0e487336917fb2",
"LaunchTemplateName":"my-launch-template-for-x86",
"Version":"1"
},
"ProtectedFromScaleIn":false
},
{
"InstanceId":"i-0c682c2ceae918bc0",
"InstanceType":"c6g.large",
"AvailabilityZone":"us-west-2b",
"LifecycleState":"InService",
"HealthStatus":"Healthy",
"LaunchTemplate":{
"LaunchTemplateId":"lt-09d958b8fb2ba5bcc",
"LaunchTemplateName":"my-launch-template-for-arm",
"Version":"1"
},
...
}
]
}

71
Amazon EC2 Auto Scaling User Guide
Conﬁguring overrides

Conﬁguring instance weighting for Amazon EC2 Auto Scaling

When you configure an Auto Scaling group to launch multiple instance types, you have the option of
defining the number of capacity units that each instance contributes to the desired capacity of the
group, using instance weighting. This allows you to specify the relative weight of each instance type in
a way that directly maps to the performance of your application. You can weight your instances to suit
your specific application needs, for example, by the cores (vCPUs) or by memory (GiBs).

For example, let's say that you run a compute-intensive application that performs best with at least 8
vCPUs and 15 GiB of RAM. If you use c5.2xlarge as your base unit, any of the following EC2 instance
types would meet your application needs.

Instance types example

Instance type vCPU Memory (GiB)

c5.2xlarge 8 16

c5.4xlarge 16 32

c5.12xlarge 48 96

c5.18xlarge 72 144

c5.24xlarge 96 192

By default, all instance types are treated as the same weight. In other words, whether Amazon EC2 Auto
Scaling launches a large or small instance type, each instance counts toward the group's desired capacity.

With instance weighting, however, you assign a number value that speciﬁes how many capacity units
to associate with each instance type. For example, if the instances are of diﬀerent sizes, a c5.2xlarge
instance could have the weight of 2, and a c5.4xlarge (which is two times bigger) could have the
weight of 4, and so on. Then, when Amazon EC2 Auto Scaling launches instances, their weights count
toward your desired capacity.

Contents
• Price per unit hour (p. 72)
• Considerations (p. 73)
• Add or modify weights for your Auto Scaling group (p. 74)
• Additional information (p. 77)

Price per unit hour

The following table compares the hourly price for Spot Instances in diﬀerent Availability Zones in US
East (N. Virginia, Ohio) with the price for On-Demand Instances in the same Region. The prices shown are
example pricing and not current pricing. These are your costs per instance hour.

Example: Spot pricing per instance hour

Instance type us-east-1a us-east-1b us-east-1c On-Demand pricing

c5.2xlarge $0.180 $0.191 $0.170 $0.34

c5.4xlarge $0.341 $0.361 $0.318 $0.68

c5.12xlarge $0.779 $0.777 $0.777 $2.04

72
Amazon EC2 Auto Scaling User Guide
Conﬁguring overrides

Instance type us-east-1a us-east-1b us-east-1c On-Demand pricing

c5.18xlarge $1.207 $1.475 $1.357 $3.06

c5.24xlarge $1.555 $1.555 $1.555 $4.08

With instance weighting, you can evaluate your costs based on what you use per unit hour. You can
determine the price per unit hour by dividing your price for an instance type by the number of units that
it represents. For On-Demand Instances, the price per unit hour is the same when deploying one instance
type as it is when deploying a diﬀerent size of the same instance type. In contrast, however, the Spot
price per unit hour varies by Spot pool.

The easiest way to understand how the price per unit hour calculation works with weighted instances is
with an example. For example, for ease of calculation, let's say you want to launch Spot Instances only in
us-east-1a. The per unit hour price is captured below.

Example: Spot Price per unit hour example

Instance type us-east-1a Instance weight Price per unit hour

c5.2xlarge $0.180 2 $0.090

c5.4xlarge $0.341 4 $0.085

c5.12xlarge $0.779 12 $0.065

c5.18xlarge $1.207 18 $0.067

c5.24xlarge $1.555 24 $0.065

Considerations
This section discusses the key considerations in implementing instance weighting eﬀectively.

• Start by choosing a few instance types that reflect the actual performance requirements of your
application. Then, decide how much each instance type should count toward the desired capacity of
your Auto Scaling group by specifying their weights. The weights apply to current and future instances
in the group.
• Be cautious about choosing very large ranges for your weights. For example, we don't recommend
specifying a weight of 1 for an instance type when the next larger instance type has a weight of 200.
The difference between the smallest and largest weights should also not be extreme. If any of the
instance types have too large of a weight difference, this can have a negative effect on ongoing cost-
performance optimization.
• The size of the Auto Scaling group is measured in capacity units, and not in instances. For example, if
your weights are based on vCPUs, you must specify the desired, minimum, and maximum number of
cores you want.
• Set your weights and desired capacity so that the desired capacity is at least two to three times larger
than your largest weight.

With instance weighting, the following new behaviors are introduced:

• Current capacity will either be at the desired capacity or above it. Because Amazon EC2 Auto Scaling
wants to provision instances until the desired capacity is totally fulﬁlled, an overage can happen. For
example, suppose that you specify two instance types, c5.2xlarge and c5.12xlarge, and you
assign instance weights of 2 for c5.2xlarge and 12 for c5.12xlarge. If there are 5 units remaining

73
Amazon EC2 Auto Scaling User Guide
Conﬁguring overrides

to fulﬁll the desired capacity, and Amazon EC2 Auto Scaling provisions a c5.12xlarge, the desired
capacity is exceeded by 7 units.
• When Amazon EC2 Auto Scaling provisions instances to reach the desired capacity, distributing
instances across Availability Zones and respecting the allocation strategies for On-Demand and Spot
Instances both take precedence over avoiding overages.
• Amazon EC2 Auto Scaling can overstep the maximum capacity limit to maintain balance across
Availability Zones, using your preferred allocation strategies. The hard limit enforced by Amazon EC2
Auto Scaling is a value that is equal to your desired capacity plus your largest weight.

Note the following when adding or modifying weights for existing groups:

• When adding instance weights to an existing Auto Scaling group, you must include any instance types
that are already running in the group.
• When modifying existing instance weights, Amazon EC2 Auto Scaling will launch or terminate
instances to reach your desired capacity based on the new weights.
• If you remove an instance type, any running instances of that instance type will continue to have their
last updated weight values, even though the instance type has been removed.

Add or modify weights for your Auto Scaling group

You can add weights to an existing Auto Scaling group, or to a new Auto Scaling group as you create
it. You can also update an existing Auto Scaling group to deﬁne new conﬁguration options (Spot/On-
Demand usage, Spot allocation strategy, instance types). If you change how many Spot or On-Demand
Instances you want, Amazon EC2 Auto Scaling gradually replaces existing instances to match the new
purchase options.

Before creating Auto Scaling groups using instance weighting, we recommend that you become familiar
with launching groups with multiple instance types. For more information and additional examples, see
Auto Scaling groups with multiple instance types and purchase options (p. 55).

The following examples show how to use the AWS CLI to add weights when you create Auto Scaling
groups, and to add or modify weights for existing Auto Scaling groups. You can configure a variety of
parameters in a JSON file, and then reference the JSON file as the sole parameter for your Auto Scaling
group.

To add weights to an Auto Scaling group on creation

• Use the create-auto-scaling-group command to create a new Auto Scaling group. For example, the
following command creates a new Auto Scaling group and adds instance weighting by specifying the
following:

• The percentage of the group to launch as On-Demand Instances (0)

• The allocation strategy for Spot Instances in each Availability Zone (capacity-optimized)
• The instance types to launch in priority order (m4.16xlarge, m5.24xlarge)
• The instance weights that correspond to the relative size diﬀerence (vCPUs) between instance
types (16, 24)
• The subnets in which to launch the instances (subnet-5ea0c127, subnet-6194ea3b, subnet-
c934b782), each corresponding to a diﬀerent Availability Zone
• The launch template (my-launch-template) and the launch template version ($Latest)

aws autoscaling create-auto-scaling-group --cli-input-json file://~/config.json

The following is an example config.json ﬁle.

74
Amazon EC2 Auto Scaling User Guide
Conﬁguring overrides

{
"AutoScalingGroupName": "my-asg",
"MixedInstancesPolicy": {
"LaunchTemplate": {
"LaunchTemplateSpecification": {
"LaunchTemplateName": "my-launch-template",
"Version": "$Latest"
},
"Overrides": [
{
"InstanceType": "m4.16xlarge",
"WeightedCapacity": "16"
},
{
"InstanceType": "m5.24xlarge",
"WeightedCapacity": "24"
}
]
},
"InstancesDistribution": {
"OnDemandPercentageAboveBaseCapacity": 0,
"SpotAllocationStrategy": "capacity-optimized"
}
},
"MinSize": 160,
"MaxSize": 720,
"DesiredCapacity": 480,
"VPCZoneIdentifier": "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782",
"Tags": []
}

To add or modify weights for an existing Auto Scaling group

• Use the update-auto-scaling-group command to add or modify weights. For example, the following
command adds weights to instance types in an existing Auto Scaling group by specifying the
following:

• The instance types to launch in priority order (c5.18xlarge, c5.24xlarge, c5.2xlarge,

c5.4xlarge)
• The instance weights that correspond to the relative size diﬀerence (vCPUs) between instance
types (18, 24, 2, 4)
• The new, increased desired capacity, which is larger than the largest weight

aws autoscaling update-auto-scaling-group --cli-input-json file://~/config.json

The following is an example config.json ﬁle.

{
"AutoScalingGroupName": "my-existing-asg",
"MixedInstancesPolicy": {
"LaunchTemplate": {
"Overrides": [
{
"InstanceType": "c5.18xlarge",
"WeightedCapacity": "18"
},
{
"InstanceType": "c5.24xlarge",

75
Amazon EC2 Auto Scaling User Guide
Conﬁguring overrides

"WeightedCapacity": "24"
},
{
"InstanceType": "c5.2xlarge",
"WeightedCapacity": "2"
},
{
"InstanceType": "c5.4xlarge",
"WeightedCapacity": "4"
}
]
}
},
"MinSize": 0,
"MaxSize": 100,
"DesiredCapacity": 100
}

To verify the weights for an Auto Scaling group

• Use the following describe-auto-scaling-groups command to verify the weights.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-name my-asg

The following is an example response.

{
"AutoScalingGroups": [
{
"AutoScalingGroupName": "my-asg",
"AutoScalingGroupARN": "arn",
"MixedInstancesPolicy": {
"LaunchTemplate": {
"LaunchTemplateSpecification": {
"LaunchTemplateId": "lt-0b97f1e282EXAMPLE",
"LaunchTemplateName": "my-launch-template",
"Version": "$Latest"
},
"Overrides": [
{
"InstanceType": "m4.16xlarge",
"WeightedCapacity": "16"
},
{
"InstanceType": "m5.24xlarge",
"WeightedCapacity": "24"
}
]
},
"InstancesDistribution": {
"OnDemandAllocationStrategy": "prioritized",
"OnDemandBaseCapacity": 0,
"OnDemandPercentageAboveBaseCapacity": 0,
"SpotAllocationStrategy": "capacity-optimized"
}
},
"MinSize": 160,
"MaxSize": 720,
"DesiredCapacity": 480,
"DefaultCooldown": 300,
"AvailabilityZones": [
"us-west-2a",

76
Amazon EC2 Auto Scaling User Guide
Conﬁguring overrides

"us-west-2b",
"us-west-2c"
],
"LoadBalancerNames": [],
"TargetGroupARNs": [],
"HealthCheckType": "EC2",
"HealthCheckGracePeriod": 0,
"Instances": [
{
"InstanceId": "i-027327f0ace86f499",
"InstanceType": "m5.24xlarge",
"AvailabilityZone": "us-west-2a",
"LifecycleState": "InService",
"HealthStatus": "Healthy",
"LaunchTemplate": {
"LaunchTemplateId": "lt-0b97f1e282EXAMPLE",
"LaunchTemplateName": "my-launch-template",
"Version": "7"
},
"ProtectedFromScaleIn": false,
"WeightedCapacity": "24"
},
{
"InstanceId": "i-0ec0d761cc134878d",
"InstanceType": "m4.16xlarge",
"AvailabilityZone": "us-west-2a",
"LifecycleState": "Pending",
"HealthStatus": "Healthy",
"LaunchTemplate": {
"LaunchTemplateId": "lt-0b97f1e282EXAMPLE",
"LaunchTemplateName": "my-launch-template",
"Version": "7"
},
"ProtectedFromScaleIn": false,
"WeightedCapacity": "16"
},
...
}
]
}

Additional information
Instance weighting and allocation strategies
The allocation strategies (p. 56) determine which instance pools your instances come from. When you
use the instance weighting feature, the allocation strategies perform exactly like they do for other Auto
Scaling groups. However, there is one key diﬀerence in how instance pools are chosen when you use the
lowest-price strategy. When you choose lowest-price for your allocation strategy, your instances
come from the instance pools with the lowest price per unit in each Availability Zone.

For example, consider you have an Auto Scaling group that has several instance types with varying
amounts of vCPUs. You use lowest-price for your Spot and On-Demand allocation strategies. If you
choose to assign weights based on the vCPU count of each instance type, Amazon EC2 Auto Scaling
launches whichever instance types have the lowest price per your assigned weight values (for example,
per vCPU) at the time of fulﬁlment. If it's a Spot Instance, then this means the lowest Spot price per
vCPU. If it's an On-Demand Instance, then this means the lowest On-Demand price per vCPU.

Instance weighting and Spot max price

When you create your Auto Scaling group using the AWS CLI or an SDK, you can specify the
SpotMaxPrice parameter. This parameter determines the maximum price you would be willing to

77
Amazon EC2 Auto Scaling User Guide
Using attribute-based instance type selection

pay for a Spot instance hour, and by default, is set at the On-Demand price. When you use the instance
weighting feature, remember that the maximum Spot price reﬂects the maximum unit price (for
example, price per vCPU) instead of the maximum price for a whole instance.

Creating an Auto Scaling group using attribute-

based instance type selection
When you create an Auto Scaling group, you must specify the necessary information to conﬁgure the
Amazon EC2 instances, the Availability Zones and VPC subnets for the instances, the desired capacity,
and the minimum and maximum capacity limits.

As an alternative to manually choosing instance types when creating a mixed instances group (p. 55),
you can specify a set of instance attributes that describe your compute requirements. As Amazon EC2
Auto Scaling launches instances, any instance types used by the Auto Scaling group must match your
required instance attributes. This is known as attribute-based instance type selection.

Your Auto Scaling group or your launch template speciﬁes your instance attributes, including the
amount of memory and computing power that you need for the applications that you plan to run on the
instances. Additionally, your Auto Scaling group or your launch template speciﬁes two price protection
thresholds for Spot and On-Demand Instances, that you can optionally customize, so that you can
prevent Amazon EC2 Auto Scaling from launching more expensive instance types if you don’t need them.

This approach is ideal for workloads and frameworks that can be ﬂexible about which instance types
they use, such as containers, big data, and CI/CD.

The following are beneﬁts of attribute-based instance type selection:

• Amazon EC2 Auto Scaling can select from a wide range of instance types for launching Spot Instances.
This meets the Spot best practice of being flexible about instance types, which gives the Amazon EC2
Spot service a better chance of finding and allocating your required amount of compute capacity.
• With so many options available, finding the right instance types for your workload can be time
consuming. By specifying instance attributes, you can simplify instance type selection when
configuring a mixed instances group.
• Your Auto Scaling groups can use newer generation instance types as they're released. Newer
generation instance types are automatically used when they match your requirements and align with
the allocation strategies you choose for your Auto Scaling group.

You can use attribute-based instance type selection through the AWS Management Console, AWS CLI, or
SDKs.

For information about how to conﬁgure attribute-based instance type selection in a launch template, see
Creating a launch template for an Auto Scaling group (p. 27). For information about how to conﬁgure
attribute-based instance type selection by passing parameters in Amazon EC2 Auto Scaling API calls
using an SDK, see InstanceRequirements in the Amazon EC2 Auto Scaling API Reference.

To learn more about attribute-based instance type selection, see Attribute-Based Instance Type Selection
for EC2 Auto Scaling and EC2 Fleet on the AWS Blog.

Contents
• Considerations (p. 79)
• Prerequisites (p. 80)
• Use attribute-based instance type selection (p. 80)
• Limitations (p. 83)

78
Amazon EC2 Auto Scaling User Guide
Considerations

Considerations
The following are things to consider when using attribute-based instance type selection:

• For most general purpose workloads, it is enough to specify the number of vCPUs and memory that
you need. For advanced use cases, you can specify attributes like storage type, network interfaces, CPU
manufacturer, and accelerator type.
• By default, you set the value for the desired capacity of your Auto Scaling group as the number of
instances. You can optionally specify the desired capacity type as the number of vCPUs or the amount
of memory when you use attribute-based instance type selection. Then, when Amazon EC2 Auto
Scaling launches instances, their number of vCPUs or amount of memory count toward your desired
capacity. When creating your group in the Amazon EC2 Auto Scaling console, this setting appears in
the Group size section on the Conﬁgure group size and scaling policies page. This feature is a useful
replacement for the instance weighting (p. 72) feature.
• You can preview the instance types that match your compute requirements without launching them
and adjust your requirements if necessary. When creating your Auto Scaling group in the Amazon EC2
Auto Scaling console, a preview of the instance types appears in the Preview matching instance types
section on the Choose instance launch options page.
• Alternatively, you can preview the instance types by making an Amazon EC2
GetInstanceTypesFromInstanceRequirements API call using the AWS CLI or an SDK. Pass the
InstanceRequirements parameters in the request in the exact format that you would use to create
or update an Auto Scaling group. For more information, see Preview instance types with speciﬁed
attributes in the Amazon EC2 User Guide for Linux Instances.

Understand price protection

Price protection is a feature that protects your Auto Scaling group from extreme price differences across
instance types. When you create a new Auto Scaling group or update an existing Auto Scaling group
with attribute-based instance type selection, we enable price protection by default. You can optionally
choose your price protection thresholds for Spot and On-Demand Instances, and Amazon EC2 Auto
Scaling doesn't select instance types whose price is higher than your specified thresholds. The thresholds
represent what you are willing to pay, defined in terms of a percentage above a baseline, rather than as
absolute values. The baseline is determined by the price of the least expensive M, C, or R instance type
with your specified attributes. If your attributes don't match any M, C, or R instance types, we use the
lowest priced instance type.

If you don't specify a threshold, the following are used by default:

• For On-Demand Instances, the price protection threshold is set to 20 percent.

• For Spot Instances, the price protection threshold is set to 100 percent.

To update these values when creating your Auto Scaling group in the Amazon EC2 Auto Scaling console,
on the Choose instance launch options page, choose the desired price protection attribute from the
Additional instance attributes drop-down list, and then type or choose a value for the attribute in
the text box. You can also update these values at any time by editing the Auto Scaling group from the
console or passing the relevant parameters using the AWS CLI or an SDK.
Note
If you set Desired capacity type to vCPUs or Memory GiB, the price protection threshold is
applied based on the per vCPU or per memory price instead of the per instance price.

79
Amazon EC2 Auto Scaling User Guide
Prerequisites

Prerequisites
Create a launch template that includes the parameters required to launch an EC2 instance, such as the
Amazon Machine Image (AMI) and security groups. For more information, see Creating a launch template
for an Auto Scaling group (p. 27).

Use attribute-based instance type selection

Complete the following steps to create an Auto Scaling group that uses attribute-based instance type
selection.

Before you begin, conﬁrm that you have created a launch template, as described in
Prerequisites (p. 80).

Verify that the launch template doesn't already request Spot Instances.

To create an Auto Scaling group using attribute-based instance type selection (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. On the navigation bar at the top of the screen, choose the same AWS Region that you used when
you created the launch template.
3. Choose Create an Auto Scaling group.
4. On the Choose launch template or conﬁguration page, do the following:

a. Under Specify instance attributes, start by entering your vCPUs and memory requirements.

• vCPUs: Enter the minimum and maximum number of vCPUs for your compute requirements.
Select the No minimum or No maximum check box to indicate no limit in that direction.
• Memory (MiB): Enter the minimum and maximum amount of memory, in MiB, for your
compute requirements. Select the No minimum or No maximum check box to indicate no
limit in that direction.

80
Amazon EC2 Auto Scaling User Guide
Use attribute-based instance type selection

b. (Optional) For Additional instance attributes, choose Add attribute to express your compute
requirements in more detail. The attributes and values that you choose here further limit
which instance types may be launched. For a complete list of supported attributes, see
InstanceRequirements in the Amazon EC2 Auto Scaling API Reference.
c. For Preview matching instance types, view the instance types that match the speciﬁed
compute requirements, such as vCPUs, memory, and storage.

(Optional) To exclude instance types, select the instance types to exclude and choose Exclude
selected instance types. Alternatively, for Additional instance attributes, choose Add
attribute, Exclude instance types and then select the instance types to exclude.
8. Under Instance purchase options, make updates to the purchase options as needed to lower the
cost of your application by using Spot Instances.

a. For Instances distribution, specify the percentages of On-Demand Instances to Spot Instances
to launch for the Auto Scaling group. If your application is stateless, fault tolerant and can
handle an instance being interrupted, you can specify a higher percentage of Spot Instances.
b. Depending on whether you chose to launch Spot Instances, you can select the check box next to
Include On-Demand base capacity and then specify the minimum amount of the Auto Scaling
group's initial capacity that must be fulﬁlled by On-Demand Instances. Anything beyond the
base capacity uses the Instances distribution settings to determine how many On-Demand
Instances and Spot Instances to launch.
9. Under Allocation strategies, Lowest price is automatically selected for the On-Demand allocation
strategy and cannot be changed.
10. For Spot allocation strategy, choose an allocation strategy. We recommend that you keep the
default setting of Capacity optimized. If you prefer not to keep the default, choose Lowest price,
and then enter the number of lowest priced Spot Instance pools to diversify across.
11. For Capacity rebalance, choose whether to enable or disable Capacity Rebalancing. For more
information, see Amazon EC2 Auto Scaling Capacity Rebalancing (p. 263).
12. Choose Next twice to go to the Conﬁgure group size and scaling policies page.

Or, you can accept the rest of the defaults, and choose Skip to review.
13. (Optional) On the Conﬁgure group size and scaling policies page, conﬁgure the following options,
and then choose Next:

a. Choose a Desired capacity type. Units (default), vCPUs and Memory GiB are supported.
b. Enter the initial size of your Auto Scaling group for Desired capacity and update the Minimum
capacity and Maximum capacity limits as needed. For more information, see Setting capacity
limits on your Auto Scaling group (p. 141).
c. To automatically scale the size of the Auto Scaling group, choose Target tracking scaling policy
and follow the directions. For more information, see Target Tracking Scaling Policies (p. 157).
d. Under Instance scale-in protection, choose whether to enable instance scale-in protection. For
more information, see Using instance scale-in protection (p. 246).
14. (Optional) To receive notifications, for Add notification, configure the notification, and then choose
Next. For more information, see Getting Amazon SNS notifications when your Auto Scaling group
scales (p. 281).
15. (Optional) To add tags, choose Add tag, provide a tag key and value for each tag, and then choose
Next. For more information, see Tagging Auto Scaling groups and instances (p. 93).
16. On the Review page, choose Create Auto Scaling group.

81
Amazon EC2 Auto Scaling User Guide
Use attribute-based instance type selection

Example: Create an Auto Scaling group using attribute-based

instance type selection (AWS CLI)
To create an Auto Scaling group with attribute-based instance type selection using the command line,
you can use the following create-auto-scaling-group command.

The following instance attributes are speciﬁed:

• VCpuCount – The instance types must have a minimum of four vCPUs and a maximum of eight vCPUs.
• MemoryMiB – The instance types must have a minimum of 16384 MiB of memory.
• CpuManufacturers – The instance types must have an Intel manufactured CPU.

JSON

aws autoscaling create-auto-scaling-group --cli-input-json file://~/config.json

The following is an example config.json ﬁle.

{
"AutoScalingGroupName": "my-asg",
"DesiredCapacityType": "units",
"MixedInstancesPolicy": {
"LaunchTemplate": {
"LaunchTemplateSpecification": {
"LaunchTemplateName": "my-launch-template",
"Version": "$Default"
},
"Overrides": [{
"InstanceRequirements": {
"VCpuCount": {"Min": 4, "Max": 8},
"MemoryMiB": {"Min": 16384},
"CpuManufacturers": ["intel"]
}
}]
},
"InstancesDistribution": {
"OnDemandPercentageAboveBaseCapacity": 50,
"SpotAllocationStrategy": "capacity-optimized"
}
},
"MinSize": 0,
"MaxSize": 100,
"DesiredCapacity": 4,
"VPCZoneIdentifier": "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782"
}

To set the value for desired capacity as the number of vCPUs or the amount of memory, specify
"DesiredCapacityType": "vcpu" or "DesiredCapacityType": "memory-mib" in the ﬁle.
The default desired capacity type is units, which sets the value for desired capacity as the number of
instances.

YAML

aws autoscaling create-auto-scaling-group --cli-input-yaml file://~/config.yaml

82
Amazon EC2 Auto Scaling User Guide
Limitations

The following is an example config.yaml ﬁle.

---
AutoScalingGroupName: my-asg
DesiredCapacityType: units
MixedInstancesPolicy:
LaunchTemplate:
LaunchTemplateSpecification:
LaunchTemplateName: my-launch-template
Version: $Default
Overrides:
- InstanceRequirements:
VCpuCount:
Min: 2
Max: 4
MemoryMiB:
Min: 2048
CpuManufacturers:
- intel
InstancesDistribution:
OnDemandPercentageAboveBaseCapacity: 50
SpotAllocationStrategy: capacity-optimized
MinSize: 0
MaxSize: 100
DesiredCapacity: 4
VPCZoneIdentifier: subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782

To set the value for desired capacity as the number of vCPUs or the amount of memory, specify
DesiredCapacityType: vcpu or DesiredCapacityType: memory-mib in the ﬁle. The default
desired capacity type is units, which sets the value for desired capacity as the number of instances.

Limitations
• You can conﬁgure attribute-based instance type selection only for Auto Scaling groups that use a
launch template.
• If you have an existing Auto Scaling group and plan to substitute your instance types with your
required instance attributes, your On-Demand allocation strategy must be lowest-price. To use the
prioritized allocation strategy, you must continue to manually add and prioritize your instance
types. Additionally, your Spot allocation strategy must be either capacity-optimized or lowest-
price. To use the capacity-optimized-prioritized allocation strategy, you must manually add
and prioritize your instance types.

Creating an Auto Scaling group using a launch

template
When you create an Auto Scaling group, you must specify the necessary information to conﬁgure the
Amazon EC2 instances, the Availability Zones and VPC subnets for the instances, the desired capacity,
and the minimum and maximum capacity limits.

To conﬁgure Amazon EC2 instances that are launched by your Auto Scaling group, you can specify a
launch template or a launch conﬁguration. The following procedure demonstrates how to create an Auto
Scaling group using a launch template.

To update the configuration of the EC2 instances after the group is created, you can create a new version
of the launch template. After you change the launch template for an Auto Scaling group, any new
instances are launched using the new configuration options, but existing instances are not affected. To
update the existing instances, terminate them so that they are replaced by your Auto Scaling group, or

83
Amazon EC2 Auto Scaling User Guide
Creating a group using a launch template

allow auto scaling to gradually replace older instances with newer instances based on your termination
policies (p. 236).
Note
You can also replace all instances in the Auto Scaling group to launch new instances that use the
new launch template. For more information, see Replacing Auto Scaling instances (p. 117).

Prerequisites

• You must have created a launch template. For more information, see Creating a launch template for an
Auto Scaling group (p. 27).
• You must have IAM permissions to create an Auto Scaling group using a launch template. Your
ec2:RunInstances permissions are checked when use a launch template. Your iam:PassRole
permissions are also checked if the launch template speciﬁes an IAM role. For more information, see
Launch template support (p. 316).

To create an Auto Scaling group using a launch template (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

a. For Auto Scaling group name, enter a name for your Auto Scaling group.
b. For Launch template, choose an existing launch template.
c. For Launch template version, choose whether the Auto Scaling group uses the default, the
latest, or a specific version of the launch template when scaling out.
d. Verify that your launch template supports all of the options that you are planning to use, and
then choose Next.
5. On the Choose instance launch options page, under Network, for VPC, choose a VPC. The Auto
Scaling group must be created in the same VPC as the security group you specified in your launch
template.
6. For Availability Zones and subnets, choose one or more subnets in the specified VPC. Use subnets
in multiple Availability Zones for high availability. For more information, see Considerations when
choosing VPC subnets (p. 113).
7. If you created a launch template with an instance type specified, then you can continue to the next
step to create an Auto Scaling group that uses the instance type in the launch template.

Alternatively, you can choose the Override launch template option if no instance type is speciﬁed
in your launch template or if you want to use multiple instance types for auto scaling. For more
information, see Auto Scaling groups with multiple instance types and purchase options (p. 55).
8. Choose Next to continue to the next step.

Or, you can accept the rest of the defaults, and choose Skip to review.
9. (Optional) On the Conﬁgure advanced options page, conﬁgure the following options, and then
choose Next:

84
Amazon EC2 Auto Scaling User Guide
Creating a group using a launch conﬁguration

c. Under Health check grace period, enter the amount of time until Amazon EC2 Auto Scaling
checks the health of new instances. The intention of this setting is to prevent Amazon EC2
Auto Scaling from marking instances as unhealthy and terminating them before they have
time to come up. The default is 300 seconds. For more information, see Health check grace
period (p. 261).
d. Under Additional settings, Monitoring, choose whether to enable CloudWatch group metrics
collection. These metrics provide measurements that can be indicators of a potential issue, such
as number of terminating instances or number of pending instances. For more information, see
Monitoring CloudWatch metrics for your Auto Scaling groups and instances (p. 270).
10. (Optional) On the Conﬁgure group size and scaling policies page, conﬁgure the following options,
and then choose Next:

a. For Desired capacity, enter the initial number of instances to launch. When you change this
number to a value outside of the minimum or maximum capacity limits, you must update the
values of Minimum capacity or Maximum capacity. For more information, see Setting capacity
limits on your Auto Scaling group (p. 141).
b. To automatically scale the size of the Auto Scaling group, choose Target tracking scaling policy
and follow the directions. For more information, see Target Tracking Scaling Policies (p. 157).
c. Under Instance scale-in protection, choose whether to enable instance scale-in protection. For
more information, see Using instance scale-in protection (p. 246).
11. (Optional) To receive notifications, for Add notification, configure the notification, and then choose
Next. For more information, see Getting Amazon SNS notifications when your Auto Scaling group
scales (p. 281).
12. (Optional) To add tags, choose Add tag, provide a tag key and value for each tag, and then choose
Next. For more information, see Tagging Auto Scaling groups and instances (p. 93).
13. On the Review page, choose Create Auto Scaling group.

To create an Auto Scaling group using the command line

You can use one of the following commands:

• create-auto-scaling-group (AWS CLI)

• New-ASAutoScalingGroup (AWS Tools for Windows PowerShell)

Creating an Auto Scaling group using a launch

configuration
When you create an Auto Scaling group, you must specify the necessary information to configure the
Amazon EC2 instances, the Availability Zones and VPC subnets for the instances, the desired capacity,
and the minimum and maximum capacity limits.
Important
To configure the Amazon EC2 instances, you can specify a launch template or a launch
configuration. We recommend that you use a launch template to make sure that you can use the
latest features of Amazon EC2. For more information, see Creating an Auto Scaling group using
a launch template (p. 83).

The following procedure demonstrates how to create an Auto Scaling group using a launch
configuration. You cannot modify a launch configuration after it is created, but you can replace the
launch configuration for an Auto Scaling group. For more information, see Changing the launch
configuration for an Auto Scaling group (p. 51).

Prerequisites

85
Amazon EC2 Auto Scaling User Guide
Creating a group using a launch conﬁguration

You must have created a launch conﬁguration. For more information, see Creating a launch
conﬁguration (p. 44).

To create an Auto Scaling group using a launch conﬁguration (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. On the navigation bar at the top of the screen, choose the same AWS Region that you used when
you created the launch configuration.
3. Choose Create an Auto Scaling group.
4. On the Choose launch template or configuration page, for Auto Scaling group name, enter a
name for your Auto Scaling group.
5. To choose a launch configuration, do the following:

a. For Launch template, choose Switch to launch conﬁguration.

b. For Launch configuration, choose an existing launch configuration.
c. Verify that your launch configuration supports all of the options that you are planning to use,
and then choose Next.
6. On the Configure instance launch options page, under Network, for VPC, choose a VPC. The Auto
Scaling group must be created in the same VPC as the security group you specified in your launch
configuration.
7. For Availability Zones and subnets, choose one or more subnets in the specified VPC. Use subnets
in multiple Availability Zones for high availability. For more information, see Considerations when
choosing VPC subnets (p. 113).
8. Choose Next.

Or, you can accept the rest of the defaults, and choose Skip to review.
9. (Optional) On the Conﬁgure advanced options page, conﬁgure the following options, and then
choose Next:

a. To register your Amazon EC2 instances with a load balancer, choose an existing load balancer
or create a new one. For more information, see Elastic Load Balancing and Amazon EC2
Auto Scaling (p. 100). To create a new load balancer, follow the procedure in Configure an
Application Load Balancer or Network Load Balancer using the Amazon EC2 Auto Scaling
console (p. 104).
b. To enable your Elastic Load Balancing (ELB) health checks, for Health checks, choose ELB under
Health check type. These health checks are optional when you enable load balancing.
c. Under Health check grace period, enter the amount of time until Amazon EC2 Auto Scaling
checks the health of new instances. The intention of this setting is to prevent Amazon EC2
Auto Scaling from marking instances as unhealthy and terminating them before they have
time to come up. The default is 300 seconds. For more information, see Health check grace
period (p. 261).
d. Under Additional settings, Monitoring, choose whether to enable CloudWatch group metrics
collection. These metrics provide measurements that can be indicators of a potential issue, such
as number of terminating instances or number of pending instances. For more information, see
Monitoring CloudWatch metrics for your Auto Scaling groups and instances (p. 270).
10. (Optional) On the Configure group size and scaling policies page, configure the following options,
and then choose Next:

86
Amazon EC2 Auto Scaling User Guide
Creating a group using an EC2 instance

c. Under Instance scale-in protection, choose whether to enable instance scale-in protection. For
more information, see Using instance scale-in protection (p. 246).
11. (Optional) To receive notifications, for Add notification, configure the notification, and then choose
Next. For more information, see Getting Amazon SNS notifications when your Auto Scaling group
scales (p. 281).
12. (Optional) To add tags, choose Add tag, provide a tag key and value for each tag, and then choose
Next. For more information, see Tagging Auto Scaling groups and instances (p. 93).
13. On the Review page, choose Create Auto Scaling group.

To create an Auto Scaling group using the command line

You can use one of the following commands:

• create-auto-scaling-group (AWS CLI)

• New-ASAutoScalingGroup (AWS Tools for Windows PowerShell)

Creating an Auto Scaling group using parameters

from an existing instance
Important
This topic only applies to creating an Auto Scaling group using the AWS CLI. If this is your ﬁrst
time creating an Auto Scaling group, we recommend you use the console to create a launch
template from an existing EC2 instance. Then use the launch template to create a new Auto
Scaling group. For this procedure, see Creating an Auto Scaling group using the Amazon EC2
launch wizard (p. 91).

The following procedure shows how to create an Auto Scaling group by specifying the ID of an existing
instance to use as a base for launching other instances. Multiple parameters are required to create an
EC2 instance, such as the Amazon Machine Image (AMI) ID, instance type, key pair, and security group.
All of this information is also used by Amazon EC2 Auto Scaling to launch instances on your behalf when
there is a need to scale. This information is stored in either a launch template or a launch conﬁguration.

When you specify an ID of an existing instance, Amazon EC2 Auto Scaling creates an Auto Scaling group
that launches instances based on a launch configuration that's created at the same time. The new launch
configuration has the same name as the Auto Scaling group, and it includes certain configuration details
from the identified instance.

The following configuration details are copied from the identified instance into the launch configuration:

• AMI ID
• Instance type
• Key pair
• Security groups
• IP address type (public or private)
• IAM instance proﬁle, if applicable
• Monitoring (true or false)
• EBS optimized (true or false)
• Tenancy setting, if launching into a VPC (shared or dedicated)
• Kernel ID and RAM disk ID, if applicable
• User data, if speciﬁed
• Spot (maximum) price

87
Amazon EC2 Auto Scaling User Guide
Prerequisites

The following conﬁguration details are not copied from your identiﬁed instance:

• Storage: The block devices (EBS volumes and instance store volumes) are not copied from the
identified instance. Instead, the block device mapping created as part of creating the AMI determines
which devices are used.
• Number of network interfaces: The network interfaces are not copied from your identified instance.
Instead, Amazon EC2 Auto Scaling uses its default settings to create one network interface, which is
the primary network interface (eth0).
• Instance metadata options: The metadata accessible, metadata version, and token response hop limit
settings are not copied from the identified instance. Instead, Amazon EC2 Auto Scaling uses its default
settings. For more information, see Configuring the instance metadata options (p. 46).
• Load balancers: If the identified instance is registered with one or more load balancers, the information
about the load balancer is not copied to the load balancer or target group attribute of the new Auto
Scaling group.
• Tags: If the identified instance has tags, the tags are not copied to the Tags attribute of the new Auto
Scaling group.

The new Auto Scaling group launches instances into the same Availability Zone, VPC, and subnet in
which the identiﬁed instance is located.

If the identified instance is in a placement group, the new Auto Scaling group launches instances into the
same placement group as the identified instance. Because the launch configuration settings do not allow
a placement group to be specified, the placement group is copied to the PlacementGroup attribute of
the new Auto Scaling group.

Prerequisites
Before you begin, ﬁnd the ID of the EC2 instance using the Amazon EC2 console or the describe-
instances command (AWS CLI). The EC2 instance must meet the following criteria:

• The instance is in the subnet and Availability Zone in which you want to create the Auto Scaling group.
• The instance is not a member of another Auto Scaling group.
• The instance is in the running state.
• The AMI that was used to launch the instance must still exist.

Create an Auto Scaling group from an EC2 instance

(AWS CLI)
In this exercise, we demonstrate how to use the AWS CLI. The console does not provide options to create
an Auto Scaling group from an EC2 instance, unless you also attach the instance to the Auto Scaling
group (as described in the Limitations (p. 90)).

To use your current instance as a template

• Use the following create-auto-scaling-group command to create an Auto Scaling group, my-asg-
from-instance, from the EC2 instance i-0e69cc3f05f825f4f.

aws autoscaling create-auto-scaling-group --auto-scaling-group-name my-asg-from-

instance \
--instance-id i-0e69cc3f05f825f4f --min-size 1 --max-size 2 --desired-capacity 2

88
Amazon EC2 Auto Scaling User Guide
Create an Auto Scaling group
from an EC2 instance (AWS CLI)

To verify that your Auto Scaling group has launched instances

• Use the following describe-auto-scaling-groups command to verify that the Auto Scaling group was
created successfully.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-name my-asg-from-

instance

The following example response shows that the desired capacity of the group is 2, the group has 2
running instances, and the launch conﬁguration is named my-asg-from-instance.

{
"AutoScalingGroups":[
{
"AutoScalingGroupName":"my-asg-from-instance",
"AutoScalingGroupARN":"arn",
"LaunchConfigurationName":"my-asg-from-instance",
"MinSize":1,
"MaxSize":2,
"DesiredCapacity":2,
"DefaultCooldown":300,
"AvailabilityZones":[
"us-west-2a"
],
"LoadBalancerNames":[ ],
"TargetGroupARNs":[ ],
"HealthCheckType":"EC2",
"HealthCheckGracePeriod":0,
"Instances":[
{
"InstanceId":"i-06905f55584de02da",
"InstanceType":"t2.micro",
"AvailabilityZone":"us-west-2a",
"LifecycleState":"InService",
"HealthStatus":"Healthy",
"LaunchConfigurationName":"my-asg-from-instance",
"ProtectedFromScaleIn":false
},
{
"InstanceId":"i-087b42219468eacde",
"InstanceType":"t2.micro",
"AvailabilityZone":"us-west-2a",
"LifecycleState":"InService",
"HealthStatus":"Healthy",
"LaunchConfigurationName":"my-asg-from-instance",
"ProtectedFromScaleIn":false
}
],
"CreatedTime":"2020-10-28T02:39:22.152Z",
"SuspendedProcesses":[ ],
"VPCZoneIdentifier":"subnet-6bea5f06",
"EnabledMetrics":[ ],
"Tags":[ ],
"TerminationPolicies":[
"Default"
],
"NewInstancesProtectedFromScaleIn":false,
"ServiceLinkedRoleARN":"arn"
}
]
}

89
Amazon EC2 Auto Scaling User Guide
Limitations

To view the launch conﬁguration

• Use the following describe-launch-conﬁgurations command to view the details of the launch
conﬁguration.

aws autoscaling describe-launch-configurations --launch-configuration-names my-asg-

from-instance

The following is example output:

{
"LaunchConfigurations":[
{
"LaunchConfigurationName":"my-asg-from-instance",
"LaunchConfigurationARN":"arn",
"ImageId":"ami-0528a5175983e7f28",
"KeyName":"my-key-pair-uswest2",
"SecurityGroups":[
"sg-05eaec502fcdadc2e"
],
"ClassicLinkVPCSecurityGroups":[ ],
"UserData":"",
"InstanceType":"t2.micro",
"KernelId":"",
"RamdiskId":"",
"BlockDeviceMappings":[ ],
"InstanceMonitoring":{
"Enabled":true
},
"CreatedTime":"2020-10-28T02:39:22.321Z",
"EbsOptimized":false,
"AssociatePublicIpAddress":true
}
]
}

To terminate the instance

• If you no longer need the instance, you can terminate it. The following terminate-instances
command terminates the instance i-0e69cc3f05f825f4f.

aws ec2 terminate-instances --instance-ids i-0e69cc3f05f825f4f

After you terminate an Amazon EC2 instance, you can't restart the instance. After termination, its
data is gone and the volume can't be attached to any instance. To learn more about terminating
instances, see Terminate an instance in the Amazon EC2 User Guide for Linux Instances.

Limitations
This procedure does not add the instance to the Auto Scaling group. To create an Auto Scaling group
from a running instance, and at the same time add the instance to the Auto Scaling group where it can
be managed as part of the group, see Attach EC2 instances to your Auto Scaling group (p. 145).

90
Amazon EC2 Auto Scaling User Guide
Creating a group using the EC2 launch wizard

Creating an Auto Scaling group using the Amazon

EC2 launch wizard
The following procedure shows how to create an Auto Scaling group by using the Launch instance
wizard in the Amazon EC2 console. This option automatically populates a launch template with certain
configuration details from the Launch instance wizard.
Note
The wizard does not populate the Auto Scaling group with the number of instances you specify;
it only populates the launch template with the Amazon Machine Image (AMI) ID and instance
type. Use the Create Auto Scaling group wizard to specify the number of instances to launch.
An AMI provides the information required to configure an instance. You can launch multiple
instances from a single AMI when you need multiple instances with the same configuration. We
recommend using a custom AMI that already has your application installed on it to avoid having
your instances terminated if you reboot an instance belonging to an Auto Scaling group. To use
a custom AMI with Amazon EC2 Auto Scaling, you must first create your AMI from a customized
instance, and then use the AMI to create a launch template for your Auto Scaling group.

Prerequisites

• You must have created a custom AMI in the same AWS Region where you plan to create the Auto
Scaling group. For more information, see Create an AMI in the Amazon EC2 User Guide for Linux
Instances.
• You must have IAM permissions to create an Auto Scaling group using a launch template and also to
create EC2 resources for the instances. For more information, see Launch template support (p. 316).

To use a custom AMI as a template

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation bar at the top of the screen, the current AWS Region is displayed. Select a Region
in which to launch your Auto Scaling group.
3. From the console dashboard, choose Launch instance, choose Launch instance again, and then do
the following:

a. On the Choose an Amazon Machine Image (AMI) page, choose My AMIs, find the AMI that you
created, and then choose Select.
b. On the Choose an Instance Type page, choose an instance type.
Note
Select the same instance type that you used when you created the AMI or a more
powerful one.
c. At the bottom of the screen, choose Next: Configure Instance Details.
d. In Step 3: Configure Instance Details, choose Launch into Auto Scaling Group next to Number
of instances.
e. On the confirmation dialogue, choose Continue to go to the Create launch template page with
the AMI and instance type you selected in the launch instance wizard already populated.

Create a launch template

After you choose Continue, the Create launch template page opens. Follow this procedure to create a
launch template. For more information, see Creating your launch template (console) (p. 28).

91
Amazon EC2 Auto Scaling User Guide
Create an Auto Scaling group

To create a launch template

1. Enter a name and description for the new launch template.

2. (Optional) For Key pair (login), Key pair name, choose the name of the previously created key pair
to use when connecting to instances, for example, using SSH.
3. (Optional) For Network settings, Security groups, choose one or more previously created security
groups.
4. (Optional) For Storage (Volumes), update the storage configuration. The default storage
configuration is determined by the AMI and the instance type.
5. When you are done configuring the launch template, choose Create launch template.
6. On the confirmation page, choose Create Auto Scaling group.

Create an Auto Scaling group

Note
The rest of this topic describes the basic procedure for creating an Auto Scaling group. For more
description of the parameters you can conﬁgure for your Auto Scaling group, see Creating an
Auto Scaling group using a launch template (p. 83).

After you choose Create Auto Scaling group, the Create Auto Scaling group wizard opens. Follow this
procedure to create an Auto Scaling group.

To create an Auto Scaling group

1. On the Choose launch template or conﬁguration page, enter a name for the Auto Scaling group.
2. The launch template that you created is already selected for you.

For Launch template version, choose whether the Auto Scaling group uses the default, the latest, or
a specific version of the launch template when scaling out.
3. Choose Next to continue to the next step.
4. On the Choose instance launch options page, under Network, for VPC, choose a VPC. The Auto
Scaling group must be created in the same VPC as the security group you specified in your launch
template.
Tip
If you didn't specify a security group in your launch template, your instances are launched
with a default security group from the VPC that you specify. By default, this security group
doesn't allow inbound traffic from external networks.
5. For Availability Zones and subnets, choose one or more subnets in the specified VPC.
6. Choose Next twice to go to the Configure group size and scaling policies page.
7. Under Group size, define the Desired capacity (initial number of instances to launch immediately
after the Auto Scaling group is created), Minimum capacity (minimum number of instances), and
Maximum capacity (maximum number of instances).
8. Choose Skip to review.
9. On the Review page, choose Create Auto Scaling group.

Next steps
You can check that the Auto Scaling Group has been created correctly by viewing the activity history.
On the Activity tab, under Activity history, the Status column shows whether your Auto Scaling group
has successfully launched instances. If the instances fail to launch or they launch but then immediately
terminate, see the following topics for possible causes and resolutions:

92
Amazon EC2 Auto Scaling User Guide
Tagging Auto Scaling groups and instances

• Troubleshooting Amazon EC2 Auto Scaling: EC2 instance launch failures (p. 332)
• Troubleshooting Amazon EC2 Auto Scaling: AMI issues (p. 338)
• Troubleshooting Amazon EC2 Auto Scaling: Health checks (p. 341)

You can now attach a load balancer in the same Region as your Auto Scaling group, if desired. For more
information, see Elastic Load Balancing and Amazon EC2 Auto Scaling (p. 100).

Tagging Auto Scaling groups and instances

A tag is a custom attribute label that you assign or that AWS assigns to an AWS resource. Each tag has
two parts:

• A tag key (for example, costcenter, environment, or project)

• An optional ﬁeld known as a tag value (for example, 111122223333 or production)

Tags help you do the following:

• Track your AWS costs. You activate these tags on the AWS Billing and Cost Management dashboard.
AWS uses the tags to categorize your costs and deliver a monthly cost allocation report to you. For
more information, see Using cost allocation tags in the AWS Billing and Cost Management User Guide.
• Filter and search for Auto Scaling groups based on the tags you add. For more information, see Use
tags to ﬁlter Auto Scaling groups (p. 98).
• Control access to Auto Scaling groups based on tags. You can use conditions in your IAM policies to
control access to Auto Scaling groups based on the tags on that group. For more information, see
Tagging for security (p. 97).
• Identify and organize your AWS resources. Many AWS services support tagging, so you can assign the
same tag to resources from diﬀerent services to indicate that the resources are related.

You can tag new or existing Auto Scaling groups. You can also propagate tags from an Auto Scaling
group to the Amazon EC2 instances it launches.

Tags are not propagated to Amazon EBS volumes. To add tags to Amazon EBS volumes, specify the
tags in a launch template. For more information, see Creating a launch template for an Auto Scaling
group (p. 27).

You can create and manage tags through the AWS Management Console, AWS CLI, or SDKs.

Contents
• Tag naming and usage restrictions (p. 93)
• EC2 instance tagging lifecycle (p. 94)
• Tag your Auto Scaling groups (p. 94)
• Delete tags (p. 96)
• Tagging for security (p. 97)
• Controlling access to tags (p. 97)
• Use tags to ﬁlter Auto Scaling groups (p. 98)

Tag naming and usage restrictions

The following basic restrictions apply to tags:

93
Amazon EC2 Auto Scaling User Guide
EC2 instance tagging lifecycle

• The maximum number of tags per resource is 50.

• The maximum number of tags that you can add or remove using a single call is 25.
• The maximum key length is 128 Unicode characters.
• The maximum value length is 256 Unicode characters.
• Tag keys and values are case-sensitive. As a best practice, decide on a strategy for capitalizing tags,
and consistently implement that strategy across all resource types.
• Do not use the aws: preﬁx in your tag names or values, because it is reserved for AWS use. You
can't edit or delete tag names or values with this preﬁx, and they do not count toward your tags per
resource quota.

EC2 instance tagging lifecycle

If you have opted to propagate tags to your Amazon EC2 instances, the tags are managed as follows:

• When an Auto Scaling group launches instances, it adds tags to the instances during resource creation
rather than after the resource is created.
• The Auto Scaling group automatically adds a tag to instances with a key of
aws:autoscaling:groupName and a value of the Auto Scaling group name.
• If you specify instance tags in your launch template and you opted to propagate your group's tags to
its instances, all the tags are merged. If the same tag key is speciﬁed for a tag in your launch template
and a tag in your Auto Scaling group, then the tag value from the group takes precedence.
• When you attach existing instances, the Auto Scaling group adds the tags to the instances,
overwriting any existing tags with the same tag key. It also adds a tag with a key of
aws:autoscaling:groupName and a value of the Auto Scaling group name.
• When you detach an instance from an Auto Scaling group, it removes only the
aws:autoscaling:groupName tag.

Tag your Auto Scaling groups

When you add a tag to your Auto Scaling group, you can specify whether it should be added to instances
launched in the Auto Scaling group. If you modify a tag, the updated version of the tag is added to
instances launched in the Auto Scaling group after the change. If you create or modify a tag for an Auto
Scaling group, these changes are not made to instances that are already running in the Auto Scaling
group.

Contents
• Add or modify tags (console) (p. 94)
• Add or modify tags (AWS CLI) (p. 95)

Add or modify tags (console)

To tag an Auto Scaling group on creation

When you use the Amazon EC2 console to create an Auto Scaling group, you can specify tag keys
and values on the Add tags page of the Create Auto Scaling group wizard. To propagate a tag to the
instances launched in the Auto Scaling group, make sure that you keep the Tag new instances option for
that tag selected. Otherwise, you can deselect it.

To add or modify tags for an existing Auto Scaling group

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

94
Amazon EC2 Auto Scaling User Guide
Tag your Auto Scaling groups

2. Select the check box next to the Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Details tab, choose Tags, Edit.
4. To modify existing tags, edit Key and Value.
5. To add a new tag, choose Add tag and edit Key and Value. You can keep Tag new instances selected
to add the tag to the instances launched in the Auto Scaling group automatically, and deselect it
otherwise.
6. When you have ﬁnished adding tags, choose Update.

Add or modify tags (AWS CLI)

The following examples show how to use the AWS CLI to add tags when you create Auto Scaling groups,
and to add or modify tags for existing Auto Scaling groups.

To tag an Auto Scaling group on creation

Use the create-auto-scaling-group command to create a new Auto Scaling group and add a tag, for
example, environment=production, to the Auto Scaling group. The tag is also added to any instances
launched in the Auto Scaling group.

aws autoscaling create-auto-scaling-group --auto-scaling-group-name my-asg \

--launch-configuration-name my-launch-config --min-size 1 --max-size 3 \
--vpc-zone-identifier "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782" \
--tags Key=environment,Value=production,PropagateAtLaunch=true

To create or modify tags for an existing Auto Scaling group

Use the create-or-update-tags command to create or modify a tag. For example, the following command
adds the Name=my-asg and costcenter=cc123 tags. The tags are also added to any instances
launched in the Auto Scaling group after this change. If a tag with either key already exists, the existing
tag is replaced. The Amazon EC2 console associates the display name for each instance with the name
that is speciﬁed for the Name key (case-sensitive).

aws autoscaling create-or-update-tags \

--tags ResourceId=my-asg,ResourceType=auto-scaling-group,Key=Name,Value=my-
asg,PropagateAtLaunch=true \
ResourceId=my-asg,ResourceType=auto-scaling-
group,Key=costcenter,Value=cc123,PropagateAtLaunch=true

Describe the tags for an Auto Scaling group (AWS CLI)

If you want to view the tags that are applied to a speciﬁc Auto Scaling group, you can use either of the
following commands:

• describe-tags — You supply your Auto Scaling group name to view a list of the tags for the speciﬁed
group.

aws autoscaling describe-tags --filters Name=auto-scaling-group,Values=my-asg

The following is an example response.

95
Amazon EC2 Auto Scaling User Guide
Delete tags

"Tags": [
{
"ResourceType": "auto-scaling-group",
"ResourceId": "my-asg",
"PropagateAtLaunch": true,
"Value": "production",
"Key": "environment"
}
]
}

• describe-auto-scaling-groups — You supply your Auto Scaling group name to view the attributes of
the speciﬁed group, including any tags.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-name my-asg

The following is an example response.

{
"AutoScalingGroups": [
{
"AutoScalingGroupARN": "arn",
"HealthCheckGracePeriod": 0,
"SuspendedProcesses": [],
"DesiredCapacity": 1,
"Tags": [
{
"ResourceType": "auto-scaling-group",
"ResourceId": "my-asg",
"PropagateAtLaunch": true,
"Value": "production",
"Key": "environment"
}
],
"EnabledMetrics": [],
"LoadBalancerNames": [],
"AutoScalingGroupName": "my-asg",
...
}
]
}

Delete tags
You can delete a tag associated with your Auto Scaling group at any time.

Contents
• Delete tags (console) (p. 96)
• Delete tags (AWS CLI) (p. 97)

Delete tags (console)

To delete a tag

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to an existing group.

96
Amazon EC2 Auto Scaling User Guide
Tagging for security

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Details tab, choose Tags, Edit.
4. Choose Remove next to the tag.
5. Choose Update.

Delete tags (AWS CLI)

Use the delete-tags command to delete a tag. For example, the following command deletes a tag with a
key of environment.

aws autoscaling delete-tags --tags "ResourceId=my-asg,ResourceType=auto-scaling-

group,Key=environment"

You must specify the tag key, but you don't have to specify the value. If you specify a value and the value
is incorrect, the tag is not deleted.

Tagging for security

IAM supports controlling access to Auto Scaling groups based on tags. To control access based on tags,
provide tag information in the condition element of an IAM policy.

For example, you could deny access to all Auto Scaling groups that include a tag with the key
environment and the value production, as shown in the following example.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Deny",
"Action": [
"autoscaling:CreateAutoScalingGroup",
"autoscaling:UpdateAutoScalingGroup",
"autoscaling:DeleteAutoScalingGroup"
],
"Resource": "*",
"Condition": {
"StringEquals": {"autoscaling:ResourceTag/environment": "production"}
}
}
]
}

For details, see Authorization based on Amazon EC2 Auto Scaling tags (p. 300).

For more examples of IAM policies based on tags, see Amazon EC2 Auto Scaling identity-based policy
examples (p. 307).

Controlling access to tags

IAM also supports controlling which IAM users and groups in your account have permissions to add,
modify, or delete tags for Auto Scaling groups. To control access to tags, provide tag information in the
condition element of an IAM policy.

For example, you could create an IAM policy that allows removing only the tag with the temporary key
from Auto Scaling groups.

97
Amazon EC2 Auto Scaling User Guide
Use tags to ﬁlter Auto Scaling groups

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"autoscaling:DeleteTags"
],
"Resource": "*",
"Condition": {
"ForAllValues:StringEquals": { "aws:TagKeys": ["temporary"] }
}
}
]
}

For more examples of IAM policies based on tags, see Amazon EC2 Auto Scaling identity-based policy
examples (p. 307).
Note
Even if you have a policy that restricts your users from performing a tagging (or untagging)
operation on an Auto Scaling group, this does not prevent them from manually changing the
tags on the instances after they have launched. For examples that control access to tags on EC2
instances, see Example: Tagging resources in the Amazon EC2 User Guide for Linux Instances.

Use tags to ﬁlter Auto Scaling groups

The following examples show you how to use ﬁlters with the describe-auto-scaling-groups command to
describe Auto Scaling groups with speciﬁc tags. Filtering by tags is limited to the AWS CLI or an SDK, and
is not available from the console.

Filtering considerations

• You can specify multiple filters and multiple filter values in a single request.
• You cannot use wildcards with the filter values.
• Filter values are case-sensitive.

Example: Describe Auto Scaling groups with a speciﬁc tag key and value pair

The following command shows how to ﬁlter results to show only Auto Scaling groups with the tag key
and value pair of environment=production.

aws autoscaling describe-auto-scaling-groups \

--filters Name=tag-key,Values=environment Name=tag-value,Values=production

The following is an example response.

98
Amazon EC2 Auto Scaling User Guide
Use tags to ﬁlter Auto Scaling groups

"PropagateAtLaunch": true,
"Value": "production",
"Key": "environment"
}
],
"EnabledMetrics": [],
"LoadBalancerNames": [],
"AutoScalingGroupName": "my-asg",
...
}
]
}

Alternatively, you can specify tags using a tag:<key> filter. For example, the following command
shows how to filter results to show only Auto Scaling groups with a tag key and value pair of
environment=production. This filter is formatted as follows: Name=tag:<key>,Values=<value>,
with <key> and <value> representing a tag key and value pair.

aws autoscaling describe-auto-scaling-groups \

--filters Name=tag:environment,Values=production

You can also ﬁlter AWS CLI output by using the --query option. The following example shows how to
limit AWS CLI output for the previous command to the group name, minimum size, maximum size, and
desired capacity attributes only.

aws autoscaling describe-auto-scaling-groups \

--filters Name=tag:environment,Values=production \
--query "AutoScalingGroups[].{AutoScalingGroupName: AutoScalingGroupName, MinSize:
MinSize, MaxSize: MaxSize, DesiredCapacity: DesiredCapacity}"

The following is an example response.

[
{
"AutoScalingGroupName": "my-asg",
"MinSize": 0,
"MaxSize": 10,
"DesiredCapacity": 1
}
...
]

For more information about ﬁltering, see Filtering AWS CLI output in the AWS Command Line Interface
User Guide.

Example: Describe Auto Scaling groups with tags that match the tag key speciﬁed

The following command shows how to ﬁlter results to show only Auto Scaling groups with the
environment tag, regardless of the tag value.

aws autoscaling describe-auto-scaling-groups \

--filters Name=tag-key,Values=environment

Example: Describe Auto Scaling groups with tags that match the set of tag keys speciﬁed

The following command shows how to ﬁlter results to show only Auto Scaling groups with tags for
environment and project, regardless of the tag values.

aws autoscaling describe-auto-scaling-groups \

99
Amazon EC2 Auto Scaling User Guide
Elastic Load Balancing

--filters Name=tag-key,Values=environment Name=tag-key,Values=project

Example: Describe Auto Scaling groups with tags that match at least one of the tag keys speciﬁed

The following command shows how to ﬁlter results to show only Auto Scaling groups with tags for
environment or project, regardless of the tag values.

aws autoscaling describe-auto-scaling-groups \

--filters Name=tag-key,Values=environment,project

Example: Describe Auto Scaling groups with the speciﬁed tag value

The following command shows how to ﬁlter results to show only Auto Scaling groups with a tag value of
production, regardless of the tag key.

aws autoscaling describe-auto-scaling-groups \

--filters Name=tag-value,Values=production

Example: Describe Auto Scaling groups with the set of tag values speciﬁed

The following command shows how to ﬁlter results to show only Auto Scaling groups with the tag values
production and development, regardless of the tag key.

aws autoscaling describe-auto-scaling-groups \

--filters Name=tag-value,Values=production Name=tag-value,Values=development

Example: Describe Auto Scaling groups with tags that match at least one of the tag values speciﬁed

The following command shows how to ﬁlter results to show only Auto Scaling groups with a tag value of
production or development, regardless of the tag key.

aws autoscaling describe-auto-scaling-groups \

--filters Name=tag-value,Values=production,development

Example: Describe Auto Scaling groups with tags that match multiple tag keys and values

You can also combine ﬁlters to create custom AND and OR logic to do more complex ﬁltering.

The following command shows how to ﬁlter results to show only Auto Scaling groups with a speciﬁc set
of tags. One tag key is environment AND the tag value is (production OR development) AND the
other tag key is costcenter AND the tag value is cc123.

aws autoscaling describe-auto-scaling-groups \

--filters Name=tag:environment,Values=production,development
Name=tag:costcenter,Values=cc123

Elastic Load Balancing and Amazon EC2 Auto

Scaling
Elastic Load Balancing automatically distributes your incoming application traﬃc across all the EC2
instances that you are running. Elastic Load Balancing helps to manage incoming requests by optimally
routing traﬃc so that no one instance is overwhelmed.

100
Amazon EC2 Auto Scaling User Guide
Elastic Load Balancing types

To use Elastic Load Balancing with your Auto Scaling group, attach the load balancer to your Auto
Scaling group (p. 103). This registers the group with the load balancer, which acts as a single point of
contact for all incoming web traﬃc to your Auto Scaling group.

When you use Elastic Load Balancing with your Auto Scaling group, it's not necessary to register
individual EC2 instances with the load balancer. Instances that are launched by your Auto Scaling group
are automatically registered with the load balancer. Likewise, instances that are terminated by your Auto
Scaling group are automatically deregistered from the load balancer.

After attaching a load balancer to your Auto Scaling group, you can conﬁgure your Auto Scaling group
to use Elastic Load Balancing metrics (such as the Application Load Balancer request count per target) to
scale the number of instances in the group as demand ﬂuctuates.

Optionally, you can add Elastic Load Balancing health checks to your Auto Scaling group so that Amazon
EC2 Auto Scaling can identify and replace unhealthy instances based on these additional health checks.
Otherwise, you can create a CloudWatch alarm that notiﬁes you if the healthy host count of the target
group is lower than allowed.

Limitations

• The load balancer and its target group must be in the same Region as your Auto Scaling group.
• The target group must specify a target type of instance. You can't specify a target type of ip when
using an Auto Scaling group.

Contents
• Elastic Load Balancing types (p. 101)
• Prerequisites for getting started with Elastic Load Balancing (p. 102)
• Attaching a load balancer to your Auto Scaling group (p. 103)
• Adding Elastic Load Balancing health checks to an Auto Scaling group (p. 105)
• Adding and removing Availability Zones (p. 106)
• Examples for working with Elastic Load Balancing with the AWS Command Line Interface (AWS
CLI) (p. 109)

Elastic Load Balancing types

Elastic Load Balancing provides four types of load balancers that can be used with your Auto Scaling
group: Application Load Balancers, Network Load Balancers, Gateway Load Balancers, and Classic Load
Balancers.

There is a key difference in how the load balancer types are configured. With Application Load Balancers,
Network Load Balancers, and Gateway Load Balancers, instances are registered as targets with a target
group, and you route traffic to the target group. With Classic Load Balancers, instances are registered
directly with the load balancer.

Application Load Balancer

Routes and load balances at the application layer (HTTP/HTTPS), and supports path-based routing.
An Application Load Balancer can route requests to ports on one or more registered targets, such as
EC2 instances, in your virtual private cloud (VPC).
Network Load Balancer

Routes and load balances at the transport layer (TCP/UDP Layer-4), based on address information
extracted from the TCP packet header, not from packet content. Network Load Balancers can handle
traﬃc bursts, retain the source IP of the client, and use a ﬁxed IP for the life of the load balancer.

101
Amazon EC2 Auto Scaling User Guide
Prerequisites

Gateway Load Balancer

Distributes traffic to a fleet of appliance instances. Provides scale, availability, and simplicity for
third-party virtual appliances, such as firewalls, intrusion detection and prevention systems, and
other appliances. Gateway Load Balancers work with virtual appliances that support the GENEVE
protocol. Additional technical integration is required, so make sure to consult the user guide before
choosing a Gateway Load Balancer.
Classic Load Balancer

Routes and load balances either at the transport layer (TCP/SSL), or at the application layer (HTTP/
HTTPS). A Classic Load Balancer supports either EC2-Classic or a VPC.

To learn more about Elastic Load Balancing, see the following topics:

• What is Elastic Load Balancing?

• What is an Application Load Balancer?
• What is a Network Load Balancer?
• What is a Gateway Load Balancer?
• What is a Classic Load Balancer?

Prerequisites for getting started with Elastic Load

Balancing
Follow the procedures in the Elastic Load Balancing documentation to create the load balancer and
target group. You can skip the step for registering your Amazon EC2 instances. Amazon EC2 Auto Scaling
automatically takes care of registering instances. For more information, see Getting started with Elastic
Load Balancing in the Elastic Load Balancing User Guide.

Alternatively, if you want to create an Application Load Balancer or Network Load Balancer, you do not
need to create the load balancer and target group now. You can create and attach a new Application
Load Balancer or Network Load Balancer from the Amazon EC2 Auto Scaling console. For more
information, see Conﬁgure an Application Load Balancer or Network Load Balancer using the Amazon
EC2 Auto Scaling console (p. 104).

If necessary, create a new launch template or launch configuration for your Auto Scaling group. Create
a launch template or launch configuration with a security group that controls the traffic to and from the
instances behind the load balancer. The recommended rules depend on the type of load balancer and
the types of backends that the load balancer uses. For example, to route traffic to web servers, allow
inbound HTTP access on port 80 from the load balancer.

You can configure the health check settings for a specific Auto Scaling group at any time. To add Elastic
Load Balancing health checks, see Adding Elastic Load Balancing health checks to an Auto Scaling
group (p. 105). Before adding these health checks, make sure that the security group for your launch
template or launch configuration allows access from the load balancer on the correct port for Elastic
Load Balancing to perform health checks.

Before deploying virtual appliances behind a Gateway Load Balancer, the launch template or launch
conﬁguration must meet the following requirements:

• The Amazon Machine Image (AMI) must specify the ID of an AMI that supports GENEVE using a
Gateway Load Balancer.
• The security groups must allow UDP traﬃc on port 6081.

102
Amazon EC2 Auto Scaling User Guide
Attaching a load balancer

Attaching a load balancer to your Auto Scaling group

This topic describes how to attach an Elastic Load Balancing load balancer to your Auto Scaling group.
Amazon EC2 Auto Scaling integrates with Elastic Load Balancing to help you to insert an Application
Load Balancer, Network Load Balancer, Classic Load Balancer, or Gateway Load Balancer in front of your
Auto Scaling group. Classic Load Balancers are the only type of load balancer available for EC2-Classic.
To learn more about the diﬀerent types of load balancers, see Elastic Load Balancing types (p. 101).

When you attach an Application Load Balancer, Network Load Balancer, or Gateway Load Balancer, you
attach a target group. Amazon EC2 Auto Scaling adds instances to the attached target group when they
are launched. You can attach one or multiple target groups, and conﬁgure health checks on a per target
group basis.

Contents
• Understand load balancer status (p. 103)
• Attach an existing load balancer (p. 103)
• Conﬁgure an Application Load Balancer or Network Load Balancer using the Amazon EC2 Auto
Scaling console (p. 104)
• Detach a load balancer (p. 105)

Understand load balancer status

When you attach a load balancer, it enters the Adding state while registering the instances in the group.
After all instances in the group are registered, it enters the Added state. After at least one registered
instance passes the health checks, it enters the InService state. When the load balancer is in the
InService state, Amazon EC2 Auto Scaling can terminate and replace any instances that are reported
as unhealthy. If no registered instances pass the health checks (for example, due to a misconﬁgured
health check), the load balancer doesn't enter the InService state. Amazon EC2 Auto Scaling doesn't
terminate and replace the instances.

When you detach a load balancer, it enters the Removing state while deregistering the instances in
the group. The instances remain running after they are deregistered. By default, connection draining
is enabled for Application Load Balancers, Network Load Balancers, and Gateway Load Balancers. If
connection draining is enabled, Elastic Load Balancing waits for in-ﬂight requests to complete or for the
maximum timeout to expire (whichever comes ﬁrst) before it deregisters the instances.

Attach an existing load balancer

You can attach an existing load balancer to an Auto Scaling group when you create or update the group.
If you want to create and attach a new Application Load Balancer or Network Load Balancer at the same
time as you create the group, see Conﬁgure an Application Load Balancer or Network Load Balancer
using the Amazon EC2 Auto Scaling console (p. 104).

To attach an existing load balancer as you are creating a new Auto Scaling group

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Choose Create Auto Scaling group.
3. In steps 1 and 2, choose the options as desired and proceed to Step 3: Conﬁgure advanced options.
4. For Load balancing, choose Attach to an existing load balancer.
5. Under Attach to an existing load balancer, do one of the following:

a. For Application Load Balancers, Network Load Balancers, and Gateway Load Balancers:

Choose Choose from your load balancer target groups, and then choose a target group in the
Existing load balancer target groups ﬁeld.

103
Amazon EC2 Auto Scaling User Guide
Attaching a load balancer

b. For Classic Load Balancers:

Choose Choose from Classic Load Balancers, and then choose your load balancer in the Classic
Load Balancers ﬁeld.
6. Proceed to create the Auto Scaling group. Your instances will be automatically registered to the load
balancer after the Auto Scaling group has been created.

To attach an existing load balancer to an existing Auto Scaling group

Use the following procedure to attach a load balancer to an existing Auto Scaling group.

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to an existing group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Details tab, choose Load balancing, Edit.
4. Under Load balancing, do one of the following:

a. For Application, Network or Gateway Load Balancer target groups, select its check box and
choose a target group.
b. For Classic Load Balancers, select its check box and choose your load balancer.
5. Choose Update.

Conﬁgure an Application Load Balancer or Network Load

Balancer using the Amazon EC2 Auto Scaling console
Use the following procedure to create and attach an Application Load Balancer or a Network Load
Balancer as you create your Auto Scaling group.

To create and attach a new load balancer as you create a new Auto Scaling group

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation pane, under AUTO SCALING, choose Auto Scaling Groups.
3. Choose Create Auto Scaling group.
4. In steps 1 and 2, choose the options as desired and proceed to Step 3: Conﬁgure advanced options.
5. For Load balancing, choose Attach to a new load balancer.

a. Under Attach to a new load balancer, for Load balancer type, choose whether to create an
Application Load Balancer or Network Load Balancer.
b. For Load balancer name, enter a name for the load balancer, or keep the default name.
c. For Load balancer scheme, choose whether to create a public internet-facing load balancer, or
keep the default for an internal load balancer.
d. For Availability Zones and subnets, select the public subnet for each Availability Zone in which
you chose to launch your EC2 instances. (These prepopulate from step 2.).
e. For Listeners and routing, update the port number for your listener (if necessary), and under
Default routing, choose Create a target group. Alternatively, you can choose an existing target
group from the drop-down list.
f. If you chose Create a target group in the last step, for New target group name, enter a name
for the target group, or keep the default name.
g. To add tags, choose Add tag, and provide a tag key and value for each tag.

104
Amazon EC2 Auto Scaling User Guide
Adding ELB health checks

6. Proceed to create the Auto Scaling group. Your instances will be automatically registered to the load
balancer after the Auto Scaling group has been created.
Note
After creating your Auto Scaling group, you can use the Elastic Load Balancing console
to create additional listeners. This is useful if you need to create a listener with a secure
protocol, such as HTTPS, or a UDP listener. You can add more listeners to existing load
balancers, as long as you use distinct ports.

Detach a load balancer

When you no longer need the load balancer, use the following procedure to detach it from your Auto
Scaling group.

To detach a load balancer from a group

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation pane, under AUTO SCALING, choose Auto Scaling Groups.
3. Select the check box next to an existing group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
4. On the Details tab, choose Load balancing, Edit.
5. Under Load balancing, do one of the following:

a. For Application, Network or Gateway Load Balancer target groups, choose the delete (X) icon
next to the target group.
b. For Classic Load Balancers, choose the delete (X) icon next to the load balancer.
6. Choose Update

Adding Elastic Load Balancing health checks to an

Auto Scaling group
The default health checks for an Auto Scaling group are EC2 status checks only. If an instance fails these
status checks, it is marked unhealthy and is terminated while Amazon EC2 Auto Scaling launches a new
replacement instance.

You can attach one or more load balancer target groups, one or more Classic Load Balancers, or both
to your Auto Scaling group. However, by default, the Auto Scaling group does not consider an instance
unhealthy and replace it if it fails the Elastic Load Balancing health checks.

To ensure that your Auto Scaling group can determine instance health based on additional load balancer
tests, conﬁgure the Auto Scaling group to use Elastic Load Balancing (ELB) health checks. The load
balancer periodically sends pings, attempts connections, or sends requests to test the EC2 instances
and determines if an instance is unhealthy. If you conﬁgure the Auto Scaling group to use Elastic Load
Balancing health checks, it considers the instance unhealthy if it fails either the EC2 status checks or the
Elastic Load Balancing health checks. If you attach multiple load balancer target groups or Classic Load
Balancers to the group, all of them must report that an instance is healthy in order for it to consider the
instance healthy. If any one of them reports an instance as unhealthy, the Auto Scaling group replaces
the instance, even if others report it as healthy.

Add Elastic Load Balancing health checks

Use the following procedure to add Elastic Load Balancing (ELB) health checks to an Auto Scaling group.

105
Amazon EC2 Auto Scaling User Guide
Adding Availability Zones

To add Elastic Load Balancing health checks

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to an existing group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Details tab, choose Health checks, Edit.
4. For Health check type, select Enable ELB health checks.
5. For Health check grace period, enter the amount of time, in seconds, that Amazon EC2 Auto Scaling
needs to wait before checking the health status of an instance. New instances often need time for a
brief warm-up before they can pass a health check. To provide enough warm-up time, set the health
check grace period of the group to match the expected startup time of your application.
6. Choose Update.
7. On the Instance management tab, under Instances, you can view the health status of instances. The
Health Status column displays the results of the newly added health checks.

See also
• For more information, see Health checks for Auto Scaling instances (p. 259).
• To configure health checks for your Application Load Balancer, see Health checks for your target
groups in the User Guide for Application Load Balancers.
• To configure health checks for your Network Load Balancer, see Health checks for your target groups in
the User Guide for Network Load Balancers.
• To configure health checks for your Gateway Load Balancer, see Health checks for your target groups
in the User Guide for Gateway Load Balancers.
• To configure health checks for your Classic Load Balancer, see Configure health checks for your Classic
Load Balancer in the User Guide for Classic Load Balancers.

Adding and removing Availability Zones

To take advantage of the safety and reliability of geographic redundancy, span your Auto Scaling group
across multiple Availability Zones within a Region and attach a load balancer to distribute incoming
traﬃc across those Availability Zones.

When one Availability Zone becomes unhealthy or unavailable, Amazon EC2 Auto Scaling launches new
instances in an unaﬀected Availability Zone. When the unhealthy Availability Zone returns to a healthy
state, Amazon EC2 Auto Scaling automatically redistributes the application instances evenly across all
the Availability Zones for your Auto Scaling group. Amazon EC2 Auto Scaling does this by attempting
to launch new instances in the Availability Zone with the fewest instances. If the attempt fails, however,
Amazon EC2 Auto Scaling attempts to launch in other Availability Zones until it succeeds.

Elastic Load Balancing creates a load balancer node for each Availability Zone you enable for the load
balancer. If you enable cross-zone load balancing for your load balancer, each load balancer node
distributes traﬃc evenly across the registered instances in all enabled Availability Zones. If cross-zone
load balancing is disabled, each load balancer node distributes requests evenly across the registered
instances in its Availability Zone only.

You must specify at least one Availability Zone when you are creating your Auto Scaling group. Later, you
can expand the availability of your application by adding an Availability Zone to your Auto Scaling group
and enabling that Availability Zone for your load balancer (if the load balancer supports it).

Contents

106
Amazon EC2 Auto Scaling User Guide
Adding Availability Zones

• Add an Availability Zone (p. 107)

• Remove an Availability Zone (p. 107)
• Limitations (p. 108)

Add an Availability Zone

Use the following procedure to expand your Auto Scaling group and load balancer to a subnet in an
additional Availability Zone.

To add an Availability Zone

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to an existing group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Details tab, choose Network, Edit.
4. In Subnets, choose the subnet corresponding to the Availability Zone that you want to add to the
Auto Scaling group.
5. Choose Update.
6. To update the Availability Zones for your load balancer so that it shares the same Availability Zones
as your Auto Scaling group, complete the following steps:

a. On the navigation pane, under LOAD BALANCING, choose Load Balancers.

b. Choose your load balancer.
c. Do one of the following:
• For Application Load Balancers and Network Load Balancers:

1. On the Description tab, for Availability Zones, choose Edit subnets.

2. On the Edit subnets page, for Availability Zones, select the check box for the
Availability Zone to add. If there is only one subnet for that zone, it is selected. If there is
more than one subnet for that zone, select one of the subnets.
• For Classic Load Balancers in a VPC:

1. On the Instances tab, choose Edit Availability Zones.

2. On the Add and Remove Subnets page, for Available subnets, select the subnet using
its add (+) icon. The subnet is moved under Selected subnets.
• For Classic Load Balancers in EC2-Classic:

1. On the Instances tab, choose Edit Availability Zones.

2. On the Add and Remove Availability Zones page, choose the Availability Zone to add.
d. Choose Save.

Remove an Availability Zone

To remove an Availability Zone from your Auto Scaling group and load balancer, use the following
procedure.

To remove an Availability Zone

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to an existing group.

107
Amazon EC2 Auto Scaling User Guide
Adding Availability Zones

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Details tab, choose Network, Edit.
4. In Subnets, choose the delete (X) icon for the subnet corresponding to the Availability Zone that you
want to remove from the Auto Scaling group. If there is more than one subnet for that zone, choose
the delete (X) icon for each one.
5. Choose Update.
6. To update the Availability Zones for your load balancer so that it shares the same Availability Zones
as your Auto Scaling group, complete the following steps:

a. On the navigation pane, under LOAD BALANCING, choose Load Balancers.

b. Choose your load balancer.
c. Do one of the following:
• For Application Load Balancers and Network Load Balancers:

1. On the Description tab, for Availability Zones, choose Edit subnets.

2. On the Edit subnets page, for Availability Zones, clear the check box to remove the
subnet for that Availability Zone.
• For Classic Load Balancers in a VPC:

1. On the Instances tab, choose Edit Availability Zones.

2. On the Add and Remove Subnets page, for Available subnets, remove the subnet using
its delete (-) icon. The subnet is moved under Available subnets.
• For Classic Load Balancers in EC2-Classic:

1. On the Instances tab, choose Edit Availability Zones.

2. On the Add and Remove Availability Zones page, clear the Availability Zone.
d. Choose Save.

Limitations
To update which Availability Zones are enabled for your load balancer, you need to be aware of the
following limitations:

• When you enable an Availability Zone for your load balancer, you specify one subnet from that
Availability Zone. Note that you can enable at most one subnet per Availability Zone for your load
balancer.
• For internet-facing load balancers, the subnets that you specify for the load balancer must have at
least eight available IP addresses.
• For Application Load Balancers, you must enable at least two Availability Zones.
• For Network Load Balancers, you cannot disable the enabled Availability Zones, but you can enable
additional ones.
• For Gateway Load Balancers, you cannot change the Availability Zones or subnets that were added
when the load balancer was created.

108
Amazon EC2 Auto Scaling User Guide
AWS CLI examples for working with Elastic Load Balancing

Examples for working with Elastic Load Balancing

with the AWS Command Line Interface (AWS CLI)
Use the AWS CLI to attach and detach load balancers, add Elastic Load Balancing health checks, and
update Availability Zones.

Contents
• Attaching a load balancer target group (p. 109)
• Describing load balancer target groups (p. 109)
• Detaching a load balancer target group (p. 109)
• Attaching a Classic Load Balancer (p. 110)
• Describing Classic Load Balancers (p. 110)
• Detaching a Classic Load Balancer (p. 110)
• Adding Elastic Load Balancing health checks (p. 110)
• Updating Availability Zones (p. 111)

Attaching a load balancer target group

The following create-auto-scaling-group command creates an Auto Scaling group with an attached
target group. Specify the Amazon Resource Name (ARN) of a target group for an Application Load
Balancer, Network Load Balancer, or Gateway Load Balancer.

aws autoscaling create-auto-scaling-group --auto-scaling-group-name my-asg \

--launch-template "LaunchTemplateName=my-launch-template,Version=1" \
--vpc-zone-identifier "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782" \
--target-group-arns "arn:aws:elasticloadbalancing:region:123456789012:targetgroup/my-
targets/1234567890123456" \
--max-size 5 --min-size 1 --desired-capacity 2

The following attach-load-balancer-target-groups command attaches a target group to an existing Auto

Scaling group.

aws autoscaling attach-load-balancer-target-groups --auto-scaling-group-name my-asg \

--target-group-arns "arn:aws:elasticloadbalancing:region:123456789012:targetgroup/my-
targets/1234567890123456"

Describing load balancer target groups

To view the target groups associated with an Auto Scaling group, use the describe-load-balancer-target-
groups command. The following example lists the target groups for my-asg.

aws autoscaling describe-load-balancer-target-groups --auto-scaling-group-name my-asg

For an explanation of the State ﬁeld in the output, see the Understand load balancer status (p. 103)
section in a previous topic.

Detaching a load balancer target group

The following detach-load-balancer-target-groups command detaches a target group from your Auto
Scaling group when you no longer need it.

109
Amazon EC2 Auto Scaling User Guide
AWS CLI examples for working with Elastic Load Balancing

aws autoscaling detach-load-balancer-target-groups --auto-scaling-group-name my-asg \

--target-group-arns "arn:aws:elasticloadbalancing:region:123456789012:targetgroup/my-
targets/1234567890123456"

Attaching a Classic Load Balancer

The following create-auto-scaling-group command creates an Auto Scaling group with an attached
Classic Load Balancer.

aws autoscaling create-auto-scaling-group --auto-scaling-group-name my-asg \

--launch-configuration-name my-launch-config \
--vpc-zone-identifier "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782" \
--load-balancer-names "my-load-balancer" \
--max-size 5 --min-size 1 --desired-capacity 2

The following attach-load-balancers command attaches the speciﬁed Classic Load Balancer to an
existing Auto Scaling group.

aws autoscaling attach-load-balancers --auto-scaling-group-name my-asg \

--load-balancer-names my-lb

Describing Classic Load Balancers

To view the Classic Load Balancers associated with an Auto Scaling group, use the describe-load-
balancers command. The following example lists the Classic Load Balancers for my-asg.

aws autoscaling describe-load-balancers --auto-scaling-group-name my-asg

For an explanation of the State ﬁeld in the output, see Understand load balancer status (p. 103).

Detaching a Classic Load Balancer

The following detach-load-balancers command detaches a Classic Load Balancer from your Auto Scaling
group when you no longer need it.

aws autoscaling detach-load-balancers --auto-scaling-group-name my-asg \

--load-balancer-names my-lb

Adding Elastic Load Balancing health checks

To add Elastic Load Balancing health checks to an Auto Scaling group, run the following update-auto-
scaling-group command and specify ELB as the value for the --health-check-type option.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-lb-asg \

--health-check-type ELB

To update the health check grace period, use the --health-check-grace-period option. New
instances often need time for a brief warm-up before they can pass a health check. If the grace period
doesn't provide enough warm-up time, the instances might not appear ready to serve traﬃc. Amazon
EC2 Auto Scaling might consider those instances unhealthy and replace them. For more information, see
Health check grace period (p. 261).

110
Amazon EC2 Auto Scaling User Guide
AWS CLI examples for working with Elastic Load Balancing

The following update-auto-scaling-group command adds Elastic Load Balancing health checks and
speciﬁes a grace period of 300 seconds.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-lb-asg \

--health-check-type ELB --health-check-grace-period 300

Updating Availability Zones

The commands that you use depend on whether your load balancer is an Application Load Balancer or
Network Load Balancer, a Classic Load Balancer in a VPC, or a Classic Load Balancer in EC2-Classic. You
can update the subnets and Availability Zones for your load balancer only if your load balancer supports
it. For more information, see Limitations (p. 108).

For an Auto Scaling group with an Application Load Balancer or Network Load Balancer

1. Specify the subnets that are used for the Auto Scaling group using the following update-auto-
scaling-group command.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-asg \

--vpc-zone-identifier subnet-41767929 subnet-cb663da2 subnet-8360a9e7

2. Verify that the instances in the new subnets are ready to accept traﬃc from the load balancer using
the following describe-auto-scaling-groups command.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-name my-asg

3. Specify the subnets that are used for your Application Load Balancer or Network Load Balancer
using the following set-subnets command.

aws elbv2 set-subnets --load-balancer-arn my-lb-arn \

--subnets subnet-41767929 subnet-cb663da2 subnet-8360a9e7

For an Auto Scaling group with a Classic Load Balancer in a VPC

1. Specify the subnets that are used for the Auto Scaling group using the following update-auto-
scaling-group command.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-asg \

--vpc-zone-identifier subnet-41767929 subnet-cb663da2

2. Verify that the instances in the new subnets are ready to accept traﬃc from the load balancer using
the following describe-auto-scaling-groups command.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-name my-asg

3. Enable the new subnet for your Classic Load Balancer using the following attach-load-balancer-to-
subnets command.

aws elb attach-load-balancer-to-subnets --load-balancer-name my-lb \

--subnets subnet-cb663da2

To disable a subnet, run the following detach-load-balancer-from-subnets command.

aws elb detach-load-balancer-from-subnets --load-balancer-name my-lb \

111
Amazon EC2 Auto Scaling User Guide
Launching instances in a VPC

--subnets subnet-8360a9e7

For an Auto Scaling group with a Classic Load Balancer in EC2-Classic

1. Specify the Availability Zones that are used for the Auto Scaling group using the following update-
auto-scaling-group command.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-asg \

--availability-zones us-west-2a us-west-2b

2. Verify that the instances in the new Availability Zones are ready to accept traﬃc from the load
balancer using the following describe-auto-scaling-groups command.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-name my-asg

3. Enable the new Availability Zone for your Classic Load Balancer using the following enable-
availability-zones-for-load-balancer command.

aws elb enable-availability-zones-for-load-balancer --load-balancer-name my-lb \

--availability-zones us-west-2b

To disable an Availability Zone, run the following disable-availability-zones-for-load-balancer

command.

aws elb disable-availability-zones-for-load-balancer --load-balancer-name my-lb \

--availability-zones us-west-2c

Launching Auto Scaling instances in a VPC

Amazon Virtual Private Cloud (Amazon VPC) enables you to deﬁne a virtual networking environment
in a private, isolated section of the AWS Cloud. You have complete control over your virtual networking
environment.

Within a virtual private cloud (VPC), you can launch AWS resources such as Auto Scaling groups. An Auto
Scaling group in a VPC works essentially the same way as it does on Amazon EC2 and supports the same
set of features.

A subnet in Amazon VPC is a subdivision within an Availability Zone deﬁned by a segment of the IP
address range of the VPC. Using subnets, you can group your instances based on your security and
operational needs. A subnet resides entirely within the Availability Zone it was created in. You launch
Auto Scaling instances within the subnets.

To enable communication between the internet and the instances in your subnets, you must create
an internet gateway and attach it to your VPC. An internet gateway enables your resources within the
subnets to connect to the internet through the Amazon EC2 network edge. If a subnet's traﬃc is routed
to an internet gateway, the subnet is known as a public subnet. If a subnet's traﬃc is not routed to an
internet gateway, the subnet is known as a private subnet. Use a public subnet for resources that must be
connected to the internet, and a private subnet for resources that need not be connected to the internet.

112
Amazon EC2 Auto Scaling User Guide
Default VPC

For more information about giving internet access to instances in a VPC, see Accessing the internet in the
Amazon VPC User Guide.

Contents
• Default VPC (p. 113)
• Nondefault VPC (p. 113)
• Considerations when choosing VPC subnets (p. 113)
• IP addressing in a VPC (p. 114)
• Network interfaces in a VPC (p. 114)
• Instance placement tenancy (p. 114)
• More resources for learning about VPCs (p. 114)

Default VPC
If you created your AWS account after December 4, 2013 or you are creating your Auto Scaling group
in a new AWS Region, we create a default VPC for you. Your default VPC comes with a default subnet in
each Availability Zone. If you have a default VPC, your Auto Scaling group is created in the default VPC
by default.

If you created your AWS account before December 4, 2013, it may allow you to choose between Amazon
VPC and EC2-Classic in certain Regions. If you have one of these older accounts, you might have Auto
Scaling groups in EC2-Classic in some Regions instead of Amazon VPC. Migrating the classic instances to
a VPC is highly recommended. One of the advantages of using a VPC is the ability to put your instances
in private subnets with no route to the internet.

For information about default VPCs and checking whether your account comes with a default VPC, see
Default VPC and default subnets in the Amazon VPC User Guide.

Nondefault VPC
You can choose to create additional VPCs by going to the Amazon VPC page in the AWS Management
Console and selecting Launch VPC Wizard.

You're presented with the following four options for network architectures:

• Amazon VPC with a single public subnet only

• Amazon VPC with public and private subnets
• Amazon VPC with public and private subnets and hardware VPN access
• Amazon VPC with a private subnet only and hardware VPN access

For more information, see the Amazon VPC User Guide.

Considerations when choosing VPC subnets

Note the following considerations when choosing VPC subnets:

• If you're attaching an Elastic Load Balancing load balancer to your Auto Scaling group, the instances
can be launched into either public or private subnets. However, the load balancer can be created in
public subnets only.
• If you're accessing your Auto Scaling instances directly through SSH, the instances can be launched
into public subnets only.

113
Amazon EC2 Auto Scaling User Guide
IP addressing in a VPC

• If you're accessing no-ingress Auto Scaling instances using AWS Systems Manager Session Manager,
the instances can be launched into either public or private subnets.
• If you're using private subnets, you can allow the Auto Scaling instances to access the internet by using
a public NAT gateway.
• By default, the default subnets in a default VPC are public subnets.

IP addressing in a VPC
When you launch your Auto Scaling instances in a VPC, your instances are automatically assigned a
private IP address from the CIDR range of the subnet in which the instance is launched. This enables your
instances to communicate with other instances in the VPC.

You can conﬁgure a launch template or launch conﬁguration to assign public IP addresses to your
instances. Assigning public IP addresses to your instances enables them to communicate with the
internet or other Amazon Web Services.

When you enable public IP addresses for your instances and launch them into a subnet that is conﬁgured
to automatically assign IPv6 addresses, they receive both IPv4 and IPv6 addresses. Otherwise, they
receive only IPv4 addresses. For more information, see IPv6 addresses in the Amazon EC2 User Guide for
Linux Instances.

For information on specifying CIDR ranges for your VPC or subnet, see the Amazon VPC User Guide.

Network interfaces in a VPC

Each instance in your VPC has a default network interface (the primary network interface). You cannot
detach a primary network interface from an instance. You can create and attach an additional network
interface to any instance in your VPC. The number of network interfaces you can attach varies by
instance type.

When launching an instance using a launch template, you can specify additional network interfaces.
However, launching an Auto Scaling instance with multiple network interfaces automatically creates
each interface in the same subnet as the instance. This is because Amazon EC2 Auto Scaling ignores the
subnets deﬁned in the launch template in favor of what is speciﬁed in the Auto Scaling group. For more
information, see Creating a launch template for an Auto Scaling group.

If you create or attach two or more network interfaces from the same subnet to an instance, you might
encounter networking issues such as asymmetric routing, especially on instances using a variant of
non-Amazon Linux. If you need this type of conﬁguration, you must conﬁgure the secondary network
interface within the OS. For an example, see How can I make my secondary network interface work in my
Ubuntu EC2 instance? in the AWS Knowledge Center.

Instance placement tenancy

By default, all instances in the VPC run as shared tenancy instances. Amazon EC2 Auto Scaling also
supports Dedicated Instances and Dedicated Hosts. However, support for Dedicated Hosts is only
available for Auto Scaling groups that use a launch template. For more information, see Conﬁguring
instance tenancy with a launch conﬁguration (p. 52).

More resources for learning about VPCs

Use the following topics to learn more about VPCs and subnets.

• Private subnets in a VPC

• VPC with public and private subnets (NAT)

114
Amazon EC2 Auto Scaling User Guide
Compute Optimizer recommendations

• NAT gateways
• Public subnets in a VPC
• VPC with a single public subnet
• Subnets for your Application Load Balancer
• Subnets for your load balancer
• General VPC information
• Amazon VPC User Guide
• VPC peering
• Elastic network interfaces
• Migrate from EC2-Classic to a VPC

Getting recommendations for an instance type

from AWS Compute Optimizer
AWS provides Amazon EC2 instance recommendations to help you improve performance, save money,
or both, by using features powered by AWS Compute Optimizer. You can use these recommendations to
decide whether to move to a new instance type.

To make recommendations, Compute Optimizer analyzes your existing instance speciﬁcations and recent
metric history. The compiled data is then used to recommend which Amazon EC2 instance types are best
optimized to handle the existing performance workload. Recommendations are returned along with per-
hour instance pricing.
Note
To get recommendations from Compute Optimizer, you must ﬁrst opt in to Compute Optimizer.
For more information, see Getting started with AWS Compute Optimizer in the AWS Compute
Optimizer User Guide.

Contents
• Limitations (p. 115)
• Findings (p. 115)
• Viewing recommendations (p. 116)
• Considerations for evaluating the recommendations (p. 116)

Limitations
Compute Optimizer generates recommendations for instances in Auto Scaling groups that are conﬁgured
to launch and run M, C, R, T, and X instance types. However, it does not generate recommendations for
-g instance types powered by AWS Graviton2 processors (e.g., C6g), and for -n instance types that have
higher network bandwidth performance (e.g., M5n).

The Auto Scaling groups must also be configured to run a single instance type (i.e., no mixed instance
types), must not have a scaling policy attached to them, and have the same values for desired, minimum,
and maximum capacity (i.e., an Auto Scaling group with a fixed number of instances). Compute
Optimizer generates recommendations for instances in Auto Scaling groups that meet all of these
configuration requirements.

Findings
Compute Optimizer classiﬁes its ﬁndings for Auto Scaling groups as follows:

115
Amazon EC2 Auto Scaling User Guide
Viewing recommendations

• Not optimized – An Auto Scaling group is considered not optimized when Compute Optimizer has
identiﬁed a recommendation that can provide better performance for your workload.
• Optimized – An Auto Scaling group is considered optimized when Compute Optimizer determines
that the group is correctly provisioned to run your workload, based on the chosen instance type. For
optimized resources, Compute Optimizer might sometimes recommend a new generation instance
type.
• None – There are no recommendations for this Auto Scaling group. This might occur if you've been
opted in to Compute Optimizer for less than 12 hours, or when the Auto Scaling group has been
running for less than 30 hours, or when the Auto Scaling group or instance type is not supported by
Compute Optimizer. For more information, see the Limitations (p. 115) section.

Viewing recommendations
After you opt in to Compute Optimizer, you can view the ﬁndings and recommendations that it
generates for your Auto Scaling groups. If you recently opted in, recommendations might not be
available for up to 12 hours.

To view recommendations generated for an Auto Scaling group

1. Open the Compute Optimizer console at https://console.aws.amazon.com/compute-optimizer/.

The Dashboard page opens.

2. Choose View recommendations for all Auto Scaling groups.
3. Select your Auto Scaling group.
4. Choose View detail.

The view changes to display up to three diﬀerent instance recommendations in a preconﬁgured

view, based on default table settings. It also provides recent CloudWatch metric data (average CPU
utilization, average network in, and average network out) for the Auto Scaling group.

Determine whether you want to use one of the recommendations. Decide whether to optimize for
performance improvement, for cost reduction, or for a combination of these two.

To change the instance type in your Auto Scaling group, update the launch template or update the
Auto Scaling group to use a new launch configuration. Existing instances continue to use the previous
configuration. To update the existing instances, terminate them so that they are replaced by your Auto
Scaling group, or allow automatic scaling to gradually replace older instances with newer instances
based on your termination policies (p. 236).
Note
With the maximum instance lifetime and instance refresh features, you can also replace existing
instances in your Auto Scaling group to launch new instances that use the new launch template
or launch configuration. For more information, see Replacing Auto Scaling instances based on
maximum instance lifetime (p. 133) and Replacing Auto Scaling instances based on an instance
refresh (p. 118).

Considerations for evaluating the recommendations

Before moving to a new instance type, consider the following:

• The recommendations don't forecast your usage. Recommendations are based on your historical usage
over the most recent 14-day time period. Be sure to choose an instance type that is expected to meet
your future usage needs.
• Focus on the graphed metrics to determine whether actual usage is lower than instance capacity.
You can also view metric data (average, peak, percentile) in CloudWatch to further evaluate your EC2

116
Amazon EC2 Auto Scaling User Guide
Replacing instances

instance recommendations. For example, notice how CPU percentage metrics change during the day
and whether there are peaks that need to be accommodated. For more information, see Viewing
available metrics in the Amazon CloudWatch User Guide.
• Compute Optimizer might supply recommendations for burstable performance instances, which
are T3, T3a, and T2 instances. If you periodically burst above your baseline, make sure that you can
continue to do so based on the vCPUs of the new instance type. For more information, see CPU credits
and baseline performance for burstable performance instances in the Amazon EC2 User Guide for Linux
Instances.
• If you've purchased a Reserved Instance, your On-Demand Instance might be billed as a Reserved
Instance. Before you change your current instance type, first evaluate the impact on Reserved Instance
utilization and coverage.
• Consider conversions to newer generation instances, where possible.
• When migrating to a different instance family, make sure the current instance type and the new
instance type are compatible, for example, in terms of virtualization, architecture, or network type.
For more information, see Compatibility for resizing instances in the Amazon EC2 User Guide for Linux
Instances.
• Finally, consider the performance risk rating that's provided for each recommendation. Performance
risk indicates the amount of effort you might need to spend in order to validate whether the
recommended instance type meets the performance requirements of your workload. We also
recommend rigorous load and performance testing before and after making any changes.

Additional resources

In addition to the topics on this page, see the following resources:

• Amazon EC2 Instance Types

• AWS Compute Optimizer User Guide

Replacing Auto Scaling instances

Amazon EC2 Auto Scaling oﬀers capabilities that let you replace instances after you update or modify
your Auto Scaling group. Amazon EC2 Auto Scaling also helps you streamline updates by giving you the
option of including them in the same operation that replaces the instances.

This section includes information to help you do the following:

• Start an instance refresh to replace instances in your Auto Scaling group.

• Declare specific updates that describe a desired configuration and update the Auto Scaling group to
the desired configuration.
• Skip replacing already updated instances.
• Use checkpoints to replace instances in phases and perform verifications on your instances at specific
points.
• Receive notifications by email when a checkpoint is reached.
• Limit the lifetime of instances to ensure consistent software versions and instance configurations
across the Auto Scaling group.

Contents
• Replacing Auto Scaling instances based on an instance refresh (p. 118)
• Instance refresh examples that enable skip matching with the AWS Command Line Interface (AWS
CLI) (p. 125)
• Adding checkpoints to an instance refresh (p. 129)

117
Amazon EC2 Auto Scaling User Guide
Replacing instances based on an instance refresh

• Creating EventBridge rules for instance refresh events (p. 132)

• Replacing Auto Scaling instances based on maximum instance lifetime (p. 133)

Replacing Auto Scaling instances based on an

instance refresh
You can use an instance refresh to update the instances in your Auto Scaling group instead of manually
replacing instances a few at a time. This can be useful when a conﬁguration change requires you to
replace instances, and you have a large number of instances in your Auto Scaling group.

An instance refresh can be helpful when you have a new Amazon Machine Image (AMI) or a new
user data script. To use an instance refresh, ﬁrst create a new launch template that speciﬁes the new
AMI or user data script. Then, start an instance refresh to begin updating the instances in the group
immediately.

How it works
The following example steps show how an instance refresh works:

• You create a launch template or a new launch template version with your desired updates. For more
information, see Creating a launch template for an Auto Scaling group (p. 27).
• You configure the minimum healthy percentage, instance warmup, and checkpoints, specify your
desired configuration that includes your launch template, and start an instance refresh. The desired
configuration can optionally specify whether a mixed instances policy (p. 55) is to be applied.
• Amazon EC2 Auto Scaling starts performing a rolling replacement of the instances. It takes a set
of instances out of service, terminates them, and launches a set of instances with the new desired
configuration. Then, it waits until the instances pass your health checks and complete warmup before
it moves on to replacing other instances.
• After a certain percentage of the group is replaced, a checkpoint is reached. Whenever there is a
checkpoint, Amazon EC2 Auto Scaling temporarily stops replacing instances, sends a notification, and
waits for the amount of time you specified before continuing. After you receive the notification, you
can verify that your new instances are working as expected.
• After the instance refresh succeeds, the Auto Scaling group settings are automatically updated with
the configuration that you specified at the start of the operation.

Core concepts and terms

Before you get started, familiarize yourself with the following instance refresh core concepts and terms:

Minimum healthy percentage

As part of starting an instance refresh, you specify the minimum healthy percentage to maintain
at all times. This is the amount of capacity in an Auto Scaling group that must pass your health
checks (p. 259) during an instance refresh so that the operation is allowed to continue. The value
is expressed as a percentage of the desired capacity of the Auto Scaling group (rounded up to
the nearest integer). Setting the minimum healthy percentage to 100 percent limits the rate of
replacement to one instance at a time. In contrast, setting it to 0 percent causes all instances to be
replaced at the same time.
Instance warmup

The instance warmup is the time period from when a new instance comes into service to when it can
receive traﬃc. During an instance refresh, Amazon EC2 Auto Scaling does not immediately move on
to the next replacement after determining that a newly launched instance is healthy. It waits for the

118
Amazon EC2 Auto Scaling User Guide
Replacing instances based on an instance refresh

warm-up period that you specified before it moves on to replacing other instances. This setting can
be helpful when you have configuration scripts that take time to run.
Desired configuration

A desired configuration is the new configuration you want Amazon EC2 Auto Scaling to deploy across
your Auto Scaling group. For example, you can specify the launch template and version for your
instances. During an instance refresh, Amazon EC2 Auto Scaling updates the Auto Scaling group
to the desired configuration. If a scale-out event occurs during an instance refresh, Amazon EC2
Auto Scaling launches new instances with the desired configuration instead of the group's current
settings. After the instance refresh succeeds, Amazon EC2 Auto Scaling updates the settings of the
Auto Scaling group to reflect the new desired configuration that you specified as part of the instance
refresh.
Skip matching

Skip matching means that Amazon EC2 Auto Scaling skips replacing instances that match the
desired configuration. If no desired configuration is specified, then it skips replacing instances that
have the same configuration that is already set on the group. If skip matching is not enabled, any
instance in the Auto Scaling group can be replaced with a new instance, regardless of whether there
are any updates needed.
Checkpoints

A checkpoint is a point in time where the instance refresh pauses for a specified amount of time.
An instance refresh can contain multiple checkpoints. Amazon EC2 Auto Scaling emits events for
each checkpoint, so that you can add an EventBridge rule to send the events to a target such as
Amazon SNS to be notified when a checkpoint is reached. After a checkpoint is reached, you have
the opportunity to validate your deployment. If any problems are identified, you can cancel the
instance refresh and then roll it back by initiating another instance refresh. The ability to deploy
updates in phases is a key benefit of checkpoints. If you don't use checkpoints, rolling replacements
are performed continuously.

Considerations
The following are things to consider when starting an instance refresh, to help ensure that the group
continues to perform as expected.

• While warming up, a newly launched instance is not counted toward the aggregated metrics of the
Auto Scaling group.
• If you added scaling policies to the Auto Scaling group, the scaling activities run in parallel. If you set a
long interval for the instance refresh warm-up period, it takes more time for newly launched instances
to be reflected in the metrics. Therefore, an adequate warm-up period helps to prevent Amazon EC2
Auto Scaling from scaling on stale metric data.
• If you added a lifecycle hook to the Auto Scaling group, the warm-up period does not start until the
lifecycle hook actions are complete and the instance enters the InService state.
• If you enable skip matching but the launch template, the launch template version, and instance types
in the mixed instances policy are not changing, the instance refresh will succeed immediately without
making any replacements. If you made any other changes (for example, changing your Spot allocation
strategy), Amazon EC2 Auto Scaling updates the settings of the Auto Scaling group to reflect the new
desired configuration after the instance refresh succeeds.

Start or cancel an instance refresh (console)

You can create, view, and cancel your instance refreshes with the Amazon EC2 Auto Scaling console. If
this is your ﬁrst time starting an instance refresh, using the console will help you understand the features
and options available.

119
Amazon EC2 Auto Scaling User Guide
Replacing instances based on an instance refresh

Starting an instance refresh in the console (basic procedure)

Use the following procedure if you have not previously deﬁned a mixed instances policy (p. 55) for
your Auto Scaling group. If you have previously deﬁned a mixed instances policy, see Starting an instance
refresh in the console (mixed instances group) (p. 121) to start an instance refresh.

To start an instance refresh

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens up at the bottom of the Auto Scaling groups page.
3. On the Instance refresh tab, in Active instance refresh, choose Start instance refresh.
4. For Minimum healthy percentage, enter the percentage of the Auto Scaling group that must remain
healthy during an instance refresh. The default is 90 percent. Choosing a lower percentage results in
a higher number of instances being terminated and replaced at the same time.
5. For Instance warmup, enter the number of seconds until a newly launched instance is ready to
use. Set this value greater than or equal to the maximum amount of startup time needed for your
application, from when an instance starts to when it can receive traﬃc. The default value is the value
for the health check grace period that's currently set for the Auto Scaling group.
6. (Optional) For Checkpoints, choose Enable checkpoints to replace instances using an incremental or
phased approach to an instance refresh. This provides additional time for veriﬁcation between sets
of replacements. If you choose not to enable checkpoints, the instances are replaced in one nearly
continuous operation.

If you enable checkpoints, see Enable checkpoints (console) (p. 130) for additional steps.
7. Enable or turn oﬀ Skip matching:

• To skip replacing instances that already match your current launch template, keep the Enable skip
matching check box selected.
• If you turn oﬀ skip matching by clearing this check box, all instances can be replaced.

When you enable skip matching, instead of using your current launch template, you can set a new
launch template or a new version of the current launch template in the Desired configuration
section of the Start instance refresh page.
Note
To use the skip matching feature to update an Auto Scaling group that currently uses a
launch configuration, you must select a launch template in Desired configuration. Using
skip matching with a launch configuration is not supported.
8. (Optional) Expand the Desired configuration section to specify any updates you want to make to
your Auto Scaling group.

From this point forward, you can choose to use JSON or YAML syntax to edit parameter values
instead of making selections in the console interface. To do so, choose Use code editor instead of
Use console interface. The following procedure explains how to make selections using the console
interface.

a. For Update launch template:

• If you haven't created a new launch template or a new launch template version for your Auto
Scaling group, you can keep this check box unselected.
• If you have created a new launch template or a new launch template version, select this
check box. When you select this option, Amazon EC2 Auto Scaling shows you the current
launch template and current launch template version, and it lists any other versions that are
available. Choose the launch template and then choose the version.

120
Amazon EC2 Auto Scaling User Guide
Replacing instances based on an instance refresh

After you choose a version, you can see the version information. This is the version of the
launch template that will be used when replacing instances as part of an instance refresh. If
the instance refresh succeeds, this version of the launch template will also be used whenever
new instances launch, such as when the group scales.
b. For Choose a set of instance types and purchase options to override the instance type in the
launch template:

• Keep this check box unselected to use the instance type and purchase option you speciﬁed in
your launch template.
• Select this check box if you want to override the instance type in the launch template
or take advantage of unused EC2 capacity and save money by running Spot Instances.
When you choose this option, you can either manually add each instance type, or choose a
primary instance type and a recommendation option that retrieves any additional matching
instance types for you. If you plan to launch Spot Instances, we recommend adding a few
instance types so that Amazon EC2 Auto Scaling can launch another instance type if there is
insuﬃcient instance capacity in your chosen Availability Zones. For further guidance on how
to handle these settings, see Auto Scaling groups with multiple instance types and purchase
options (p. 55).
Warning
Spot Instances should not be used with applications that are unable to handle a Spot
Instance interruption if the Amazon EC2 Spot service needs to reclaim capacity.

If you select this check box, make sure that the launch template doesn't already request Spot
Instances. You cannot use a launch template that requests Spot Instances to create an Auto
Scaling group that uses multiple instance types and launches Spot and On-Demand Instances.
Note
To configure these options on an Auto Scaling group that currently uses a launch
configuration, you must select a launch template in Update launch template.
Overriding the instance type in your launch configuration is not supported.
9. Review all of your selections to confirm that everything is set up correctly.

At this point, it's a good idea to verify that the differences between the current and proposed
changes won't affect your application in unexpected or unwanted ways. For example, if you
launched your original instances from a paravirtual (PV) AMI, but want to change to a current
generation instance type that is only supported by a hardware virtual machine (HVM) AMI, you need
to use an HVM AMI. For more information, see Compatibility for changing the instance type in the
Amazon EC2 User Guide for Linux Instances.
10. When you are satisfied with your instance refresh selections, choose Start.

Starting an instance refresh in the console (mixed instances group)

Use the following procedure if you have created an Auto Scaling group with a mixed instances
policy (p. 55). If you haven't deﬁned a mixed instances policy for your group yet, see Starting an
instance refresh in the console (basic procedure) (p. 120) to start an instance refresh.

To start an instance refresh

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens up at the bottom of the Auto Scaling groups page.
3. On the Instance refresh tab, in Active instance refresh, choose Start instance refresh.

121
Amazon EC2 Auto Scaling User Guide
Replacing instances based on an instance refresh

4. For Minimum healthy percentage, enter the percentage of the Auto Scaling group that must remain
healthy during an instance refresh. The default value is 90 percent. Choosing a lower percentage will
result in a higher number of instances being terminated and replaced at the same time.
5. For Instance warmup, enter the number of seconds until a newly launched instance is ready to
use. Set this value greater than or equal to the maximum amount of startup time needed for your
application, from when an instance starts to when it can receive traﬃc. The default value is the value
for the health check grace period that's currently set for the Auto Scaling group.
6. (Optional) For Checkpoints, choose Enable checkpoints to replace instances using an incremental or
phased approach to an instance refresh. This provides additional time for veriﬁcation between sets
of replacements. If you choose not to enable checkpoints, the instances are replaced in one nearly
continuous operation.

If you enable checkpoints, see Enable checkpoints (console) (p. 130) for additional steps.
7. Enable or turn oﬀ Skip matching:

• To skip replacing instances that already match your current launch template and any instance type
overrides, keep the Enable skip matching check box selected.
• If you choose to turn oﬀ skip matching by clearing this check box, all instances can be replaced.

When you enable skip matching, instead of using your current launch template, you can set a new
launch template or a new version of the current launch template in the Desired configuration
section of the Start instance refresh page. You can also update your instance type overrides in
Desired configuration.
8. In the Desired configuration section, do the following.

a. For Update launch template:

After you choose a version, you can see the version information. This is the version of the
launch template that will be used when replacing instances as part of an instance refresh. If
the instance refresh succeeds, this version of the launch template will also be used whenever
new instances launch, such as when the group scales.
b. For Use these settings to override the instance type and purchase option deﬁned in the
launch template:

By default, this check box is selected. Amazon EC2 Auto Scaling populates each parameter with
the value that's currently set in the mixed instances policy for the Auto Scaling group. Only
update values for the parameters that you want to change. For guidance on these settings, see
Auto Scaling groups with multiple instance types and purchase options (p. 55).
Warning
We recommend that you do not clear this check box. Only clear it if you want to stop
using a mixed instances policy. After the instance refresh succeeds, Amazon EC2 Auto
Scaling updates your group to match the Desired conﬁguration. If it no longer includes
a mixed instances policy, Amazon EC2 Auto Scaling gradually terminates any Spot

122
Amazon EC2 Auto Scaling User Guide
Replacing instances based on an instance refresh

Instances that are currently running and replaces them with On-Demand Instances.
Or, if your launch template requests Spot Instances, then Amazon EC2 Auto Scaling
gradually terminates any On-Demand Instances that are currently running and replaces
them with Spot Instances.
9. Review all of your selections to conﬁrm that everything is set up correctly.

When you are satisﬁed with your instance refresh selections, choose Start.

To check the status of an instance refresh

1. On the Instance refresh tab, under Instance refresh history, you can determine the status of
your request by looking at the Status column. The operation goes into Pending status while it is
initializing. The status should then quickly change to InProgress. When all instances are updated,
the status changes to Successful.
2. On the Activity tab, under Activity history, when the instance refresh starts, you see entries when
instances are terminated and another set of entries when instances are launched. In the Description
column, you can ﬁnd the instance ID.
3. On the Instance management tab, under Instances, you can verify that your instances launched
successfully. Initially, your instances are in the Pending state. After an instance is ready to receive
traﬃc, its state is InService. The Health status column shows the result of the health checks on
your instances.

To cancel an instance refresh

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to the Auto Scaling group.
3. On the Instance refresh tab, in Active instance refresh, choose Cancel instance refresh.
4. When prompted for conﬁrmation, choose Conﬁrm.

Start or cancel an instance refresh (AWS CLI)

To start an instance refresh

Use the following start-instance-refresh command to start an instance refresh from the AWS CLI. You can
specify any preferences that you want to change in a JSON configuration file. When you reference the
configuration file, provide the file's path and name as shown in the following example.

aws autoscaling start-instance-refresh --cli-input-json file://config.json

Contents of config.json:

{
"AutoScalingGroupName": "my-asg",
"Preferences": {
"InstanceWarmup": 400,
"MinHealthyPercentage": 50

123
Amazon EC2 Auto Scaling User Guide
Replacing instances based on an instance refresh

}
}

Alternatively, you can start the instance refresh without the optional preferences by running the
following command. If preferences are not provided, the default values are used for InstanceWarmup
and MinHealthyPercentage.

aws autoscaling start-instance-refresh --auto-scaling-group-name my-asg

Example output:

{
"InstanceRefreshId": "08b91cf7-8fa6-48af-b6a6-d227f40f1b9b"
}

Note
To specify your desired conﬁguration and enable skip matching with the AWS CLI, see the
additional start-instance-refresh examples in Instance refresh examples that enable skip
matching with the AWS Command Line Interface (AWS CLI) (p. 125).

To check the status of an instance refresh

View the instance refreshes for an Auto Scaling group by using the following describe-instance-refreshes
command.

aws autoscaling describe-instance-refreshes --auto-scaling-group-name my-asg

Example output:

{
"InstanceRefreshes": [
{
"InstanceRefreshId": "08b91cf7-8fa6-48af-b6a6-d227f40f1b9b",
"AutoScalingGroupName": "my-asg",
"Status": "InProgress",
"StartTime": "2020-06-02T18:11:27Z",
"PercentageComplete": 0,
"InstancesToUpdate": 5
},
{
"InstanceRefreshId": "dd7728d0-5bc4-4575-96a3-1b2c52bf8bb1",
"AutoScalingGroupName": "my-asg",
"Status": "Successful",
"StartTime": "2020-06-02T16:43:19Z",
"EndTime": "2020-06-02T16:53:37Z",
"PercentageComplete": 100,
"InstancesToUpdate": 0
}
]
}

To cancel an instance refresh

When you cancel an instance refresh using the cancel-instance-refresh command from the AWS CLI,
specify the name of the Auto Scaling group as shown in the following example.

aws autoscaling cancel-instance-refresh --auto-scaling-group-name my-asg

124
Amazon EC2 Auto Scaling User Guide
AWS CLI examples that enable skip matching

Example output:

{
"InstanceRefreshId": "08b91cf7-8fa6-48af-b6a6-d227f40f1b9b"
}

Limitations
• Instances terminated before launch: When there is only one instance in the Auto Scaling group,
starting an instance refresh can result in an outage. This is because Amazon EC2 Auto Scaling
terminates an instance and then launches a new instance.
• Total duration: The maximum amount of time that an instance refresh can continue to actively replace
instances is 14 days.
• Instances not replaced: If an instance is on standby or protected from scale in, it cannot be replaced.
If Amazon EC2 Auto Scaling encounters an instance that it cannot replace, it will continue to replace
other instances.
• One-hour timeout: When an instance refresh is unable to continue making replacements because
your application doesn't pass health checks or there are instances on standby or protected from scale
in, it keeps retrying for an hour. It also provides a status message to help you resolve the issue. If the
problem persists after an hour, the operation fails. The intention is to give it time to recover if there is
a temporary issue.
• No rollback: You can cancel an instance refresh at any time, but any instances that have already been
replaced are not rolled back to their previous configuration. If an instance refresh fails, any instances
that were already replaced are not rolled back to their previous configuration. To fix a failed instance
refresh, first resolve the underlying issue that caused the update to fail, and then initiate another
instance refresh.

Instance refresh examples that enable skip matching

with the AWS Command Line Interface (AWS CLI)
By default, Amazon EC2 Auto Scaling can replace any instance in an Auto Scaling group during an
instance refresh. By enabling skip matching, you can avoid replacing instances that already have your
desired conﬁguration.

Skip matching makes it more eﬃcient to:

• Migrate from a launch conﬁguration to the default or latest version of a launch template after
launching one or more test instances.
• Migrate from unwanted instance types to instance types that are better suited for your application.
• Roll back changes after one or more instances are replaced as part of a failed or cancelled instance
refresh.

Note
The skip matching feature cannot be used to update an Auto Scaling group that uses a launch
configuration unless a launch template is specified for the desired configuration.

The following AWS CLI examples demonstrate a few scenarios for the use of skip matching.

Examples
• Migrate to the default version of your launch template (p. 126)
• Migrate to the latest version of your launch template (p. 126)

125
Amazon EC2 Auto Scaling User Guide
AWS CLI examples that enable skip matching

• Skip matching and mixed instances groups (p. 127)

• Migrate to the default version of your launch template (p. 127)
• Migrate to the latest version of your launch template (p. 127)
• Migrate away from unwanted instance types (p. 128)

Migrate to the default version of your launch template

The following example shows a start-instance-refresh command that updates an Auto Scaling group to
the default version of your launch template. If there are any instances that are already using the default
version of the speciﬁed launch template, they are not replaced.

aws autoscaling start-instance-refresh --cli-input-json file://config.json

Contents of config.json.

{
"AutoScalingGroupName": "my-asg",
"DesiredConfiguration": {
"LaunchTemplate": {
"LaunchTemplateId": "lt-068f72b729example",
"Version": "$Default"
}
},
"Preferences": {
"SkipMatching": true
}
}

If successful, this command returns a JSON response that contains the instance refresh ID.

Migrate to the latest version of your launch template

The following example shows a start-instance-refresh command that updates an Auto Scaling group to
the latest version of your launch template. If there are any instances that are already using the latest
version of the speciﬁed launch template, they are not replaced.

aws autoscaling start-instance-refresh --cli-input-json file://config.json

Contents of config.json.

{
"AutoScalingGroupName": "my-asg",
"DesiredConfiguration": {
"LaunchTemplate": {
"LaunchTemplateId": "lt-068f72b729example",
"Version": "$Latest"
}
},
"Preferences": {
"SkipMatching": true
}
}

If successful, this command returns a JSON response that contains the instance refresh ID.

126
Amazon EC2 Auto Scaling User Guide
AWS CLI examples that enable skip matching

Skip matching and mixed instances groups

To update a mixed instances group, you must specify settings for a mixed instances policy in your desired
conﬁguration. For any mixed instances policy parameters not provided in the desired conﬁguration,
Amazon EC2 Auto Scaling resets the parameter value to a default value.

Migrate to the default version of your launch template

The following example shows a start-instance-refresh command that updates a mixed instances group to
the default version of your launch template. If there are any instances that are already using the default
version of the speciﬁed launch template, they are not replaced.

aws autoscaling start-instance-refresh --cli-input-json file://config.json

Contents of config.json.

{
"AutoScalingGroupName":"my-asg",
"DesiredConfiguration":{
"MixedInstancesPolicy":{
"LaunchTemplate":{
"LaunchTemplateSpecification":{
"LaunchTemplateId":"lt-068f72b729example",
"Version":"$Default"
},
"Overrides":[

... existing instance types ...

]
},
"InstancesDistribution":{
"OnDemandPercentageAboveBaseCapacity":50,
"SpotAllocationStrategy":"capacity-optimized"
}
}
},
"Preferences":{
"SkipMatching":true
}
}

If successful, this command returns a JSON response that contains the instance refresh ID.

Migrate to the latest version of your launch template

The following example shows a start-instance-refresh command that updates a mixed instances group
to the latest version of your launch template. If there are any instances that are already using the latest
version of the speciﬁed launch template, they are not replaced.

aws autoscaling start-instance-refresh --cli-input-json file://config.json

Contents of config.json.

{
"AutoScalingGroupName":"my-asg",
"DesiredConfiguration":{
"MixedInstancesPolicy":{

127
Amazon EC2 Auto Scaling User Guide
AWS CLI examples that enable skip matching

"LaunchTemplate":{
"LaunchTemplateSpecification":{
"LaunchTemplateId":"lt-068f72b729example",
"Version":"$Latest"
},
"Overrides":[

... existing instance types ...

]
},
"InstancesDistribution":{
"OnDemandPercentageAboveBaseCapacity":50,
"SpotAllocationStrategy":"capacity-optimized"
}
}
},
"Preferences":{
"SkipMatching":true
}
}

If successful, this command returns a JSON response that contains the instance refresh ID.

Migrate away from unwanted instance types

When you have a mixed instances group, you typically have a set of launch template overrides (instance
types) that are used to provision instances. The instance types are contained in an Overrides section.
To tell Amazon EC2 Auto Scaling that you want to replace instances that use a speciﬁc instance type,
your desired conﬁguration must specify the Overrides section without the unwanted instance type.
When an instance type in your group doesn’t match one of the instance types in the Overrides section,
the instances are replaced as part of the instance refresh. Note that an instance refresh does not choose
the instance pools from which to provision the new instances; instead, the allocation strategies do that.

The following example shows a start-instance-refresh command that updates a mixed instances group by
replacing any instances that don't match an instance type speciﬁed in the desired conﬁguration.

aws autoscaling start-instance-refresh --cli-input-json file://config.json

Contents of config.json.

{
"AutoScalingGroupName":"my-asg",
"DesiredConfiguration":{
"MixedInstancesPolicy":{
"LaunchTemplate":{
"LaunchTemplateSpecification":{

... existing launch template and version ...

},
"Overrides":[
{
"InstanceType":"c5.large"
},
{
"InstanceType":"c5a.large"
},
{
"InstanceType":"m5.large"
},

128
Amazon EC2 Auto Scaling User Guide
Adding checkpoints to an instance refresh

{
"InstanceType":"m5a.large"
}
]
},
"InstancesDistribution":{
"OnDemandPercentageAboveBaseCapacity":50,
"SpotAllocationStrategy":"capacity-optimized"
}
}
},
"Preferences":{
"SkipMatching":true
}
}

If successful, this command returns a JSON response that contains the instance refresh ID.

Adding checkpoints to an instance refresh

When using an instance refresh, you have the option to replace instances in phases, so that you can
perform veriﬁcations on your instances as you go. To do a phased replacement, you add checkpoints,
which are points in time where the instance refresh pauses. Using checkpoints gives you greater control
over how you choose to update your Auto Scaling group. It helps you to conﬁrm that your application
will function in a reliable, predictable manner.

Amazon EC2 Auto Scaling emits events for each checkpoint. If you add an EventBridge rule to send the
events to a target such as Amazon SNS, you can be notiﬁed when you can run the required veriﬁcations.
For more information, see Creating EventBridge rules for instance refresh events (p. 132).

Contents
• Considerations (p. 129)
• Enable checkpoints (console) (p. 130)
• Enable checkpoints (AWS CLI) (p. 130)

Considerations
Keep the following considerations in mind when using checkpoints:

• A checkpoint is reached when the number of instances replaced reaches the percentage threshold that
is deﬁned for the checkpoint. The percentage of instances replaced can be equal to or higher than the
percentage threshold, but not lower.
• After a checkpoint is reached, the overall percentage complete doesn't display the latest status until
after the instances ﬁnish warming up.

For example, assume that your Auto Scaling group has 10 instances. Your checkpoint percentages are
[20,50] with a checkpoint delay of 15 minutes and a minimum healthy percentage of 80 percent.
Your group makes the following replacements:
• 0:00: Two old instances are replaced with new ones.
• 0:10: Two new instances finish warming up.
• 0:25: Two old instances are replaced with new ones. (To maintain the minimum healthy percentage,
only two instances are replaced.)
• 0:35: Two new instances finish warming up.
• 0:35: One old instance is replaced with a new one.
• 0:45: One new instance finishes warming up.

129
Amazon EC2 Auto Scaling User Guide
Adding checkpoints to an instance refresh

At 0:35, the operation stops launching new instances. The percentage complete doesn't accurately
reflect the number of completed replacements yet (50 percent), because the new instance isn't done
warming up. After the new instance completes its warm-up period at 0:45, the percentage complete
shows 50 percent.
• Because checkpoints are based on percentages, the number of instances to replace changes with the
size of the group. When a scale-out activity occurs and the size of the group increases, an in-progress
operation could reach a checkpoint again. If that happens, Amazon EC2 Auto Scaling sends another
notification and repeats the wait time between checkpoints before continuing.
• It's possible to skip a checkpoint under certain circumstances. For example, suppose that your Auto
Scaling group has two instances and your checkpoint percentages are [10,40,100]. After the first
instance is replaced, Amazon EC2 Auto Scaling calculates that 50 percent of the group was replaced.
Because 50 percent is higher than the first two checkpoints, it skips the first checkpoint (10) and sends
a notification for the second checkpoint (40).
• Canceling the operation stops any further replacements from being made. If you cancel the operation
or it fails before reaching the last checkpoint, any instances that were already replaced are not rolled
back to their previous configuration.
• For a partial refresh, when you rerun the operation, Amazon EC2 Auto Scaling doesn't restart from
the point of the last checkpoint, nor does it stop when only the old instances are replaced. However, it
targets old instances for replacement first, before targeting new instances.

Enable checkpoints (console)

You can enable checkpoints before starting an instance refresh to replace instances using an incremental
or phased approach. This provides additional time for veriﬁcation.

To start an instance refresh that uses checkpoints

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens up at the bottom of the Auto Scaling groups page.
3. On the Instance refresh tab, in Active instance refresh, choose Start instance refresh.
4. On the Start instance refresh page, enter the values for Minimum healthy percentage and
Instance warmup.
5. Select the Enable checkpoints check box.

This displays a box where you can define the percentage threshold for the first checkpoint.
6. For Proceed until ____ % of the group is refreshed, enter a number (1–100). This sets the
percentage for the first checkpoint.
7. To add another checkpoint, choose Add checkpoint and then define the percentage for the next
checkpoint.
8. To specify how long Amazon EC2 Auto Scaling waits after a checkpoint is reached, update the fields
in Wait for 1 hour between checkpoints. The time unit can be hours, minutes, or seconds.
9. If you are finished with your instance refresh selections, choose Start.

Enable checkpoints (AWS CLI)

To start an instance refresh with checkpoints enabled using the AWS CLI, you need a configuration file
that defines the following parameters:

• CheckpointPercentages: Speciﬁes threshold values for the percentage of instances to be replaced.

These threshold values provide the checkpoints. When the percentage of instances that are replaced

130
Amazon EC2 Auto Scaling User Guide
Adding checkpoints to an instance refresh

and warmed up reaches one of the specified thresholds, the operation waits for a specified period of
time. You specify the number of seconds to wait in CheckpointDelay. When the specified period of
time has passed, the instance refresh continues until it reaches the next checkpoint (if applicable).
• CheckpointDelay: Specifies the amount of time, in seconds, to wait after a checkpoint is reached
before continuing. Choose a time period that provides enough time to perform your verifications.

The last value shown in the CheckpointPercentages array describes the percentage of the Auto
Scaling group that needs to be successfully replaced. The operation transitions to Successful after this
percentage is successfully replaced and each instance is warmed up and ready to serve traﬃc again.

To create multiple checkpoints

To create multiple checkpoints, use the following example start-instance-refresh command. This
example conﬁgures an instance refresh that initially refreshes one percent of the Auto Scaling group.
After waiting 10 minutes, it then refreshes the next 19 percent and waits another 10 minutes. Finally, it
refreshes the rest of the group before concluding the operation.

aws autoscaling start-instance-refresh --cli-input-json file://config.json

Contents of config.json:

{
"AutoScalingGroupName": "my-asg",
"Preferences": {
"InstanceWarmup": 400,
"MinHealthyPercentage": 80,
"CheckpointPercentages": [1,20,100],
"CheckpointDelay": 600
}
}

To create a single checkpoint

To create a single checkpoint, use the following example start-instance-refresh command. This example
conﬁgures an instance refresh that initially refreshes 20 percent of the Auto Scaling group. After waiting
10 minutes, it then refreshes the rest of the group before concluding the operation.

aws autoscaling start-instance-refresh --cli-input-json file://config.json

Contents of config.json:

{
"AutoScalingGroupName": "my-asg",
"Preferences": {
"InstanceWarmup": 400,
"MinHealthyPercentage": 80,
"CheckpointPercentages": [20,100],
"CheckpointDelay": 600
}
}

To partially refresh the Auto Scaling group

To replace only a portion of your Auto Scaling group and then stop completely, use the following
example start-instance-refresh command. This example conﬁgures an instance refresh that initially
refreshes one percent of the Auto Scaling group. After waiting 10 minutes, it then refreshes the next 19
percent before concluding the operation.

131
Amazon EC2 Auto Scaling User Guide
Creating EventBridge rules for instance refresh events

aws autoscaling start-instance-refresh --cli-input-json file://config.json

Contents of config.json:

{
"AutoScalingGroupName": "my-asg",
"Preferences": {
"InstanceWarmup": 400,
"MinHealthyPercentage": 80,
"CheckpointPercentages": [1,20],
"CheckpointDelay": 600
}
}

Creating EventBridge rules for instance refresh events

This section shows you how to create an Amazon EventBridge rule that notifies you whenever a
checkpoint is reached during an instance refresh. The procedure for setting up email notifications
through Amazon SNS is included. To use Amazon SNS to send email notifications, you must first create a
topic and then subscribe your email addresses to the topic.

For more information about working with EventBridge, see Using Amazon EC2 Auto Scaling with
EventBridge (p. 285).

Create an Amazon SNS topic

An SNS topic is a logical access point, a communication channel that your Auto Scaling group uses to
send the notiﬁcations. You create a topic by specifying a name for your topic.

When you create a topic name, the name must meet the following requirements:

• Between 1 and 256 characters long

• Contain uppercase and lowercase ASCII letters, numbers, underscores, or hyphens

For more information, see Creating an Amazon SNS topic in the Amazon Simple Notiﬁcation Service
Developer Guide.

Subscribe to the Amazon SNS topic

To receive the notiﬁcations that your Auto Scaling group sends to the topic, you must subscribe an
endpoint to the topic. In this procedure, for Endpoint, specify the email address where you want to
receive the notiﬁcations from Amazon EC2 Auto Scaling.

For more information, see Subscribing to an Amazon SNS topic in the Amazon Simple Notiﬁcation Service
Developer Guide.

Conﬁrm your Amazon SNS subscription

Amazon SNS sends a conﬁrmation email to the email address you speciﬁed in the previous step.

Make sure that you open the email from AWS Notiﬁcations and choose the link to conﬁrm the
subscription before you continue with the next step.

You will receive an acknowledgment message from AWS. Amazon SNS is now configured to receive
notifications and send the notification as an email to the email address that you specified.

132
Amazon EC2 Auto Scaling User Guide
Replacing instances based on maximum instance lifetime

Route events to your Amazon SNS topic

Create a rule that matches selected events and routes them to your Amazon SNS topic to notify
subscribed email addresses.

To create a rule that routes instance refresh events to your Amazon SNS topic

1. Open the Amazon EventBridge console at https://console.aws.amazon.com/events/.

2. In the navigation pane, under Events, choose Rules.
3. In the Rules section, choose Create rule.
4. Enter a name and description for the rule.
5. For Deﬁne pattern, do the following:

a. Choose Event Pattern.

b. For Event matching pattern, choose Pre-defined by service.
c. For Service provider, choose Amazon Web Services.
d. For Service Name, choose Auto Scaling.
e. For Event type, choose Instance Refresh.
f. By default, the rule matches any instance refresh event. To create a rule that notifies you
whenever a checkpoint is reached during an instance refresh, choose Specific instance event(s)
and select EC2 Auto Scaling Instance Refresh Checkpoint Reached.
g. By default, the rule matches any Auto Scaling group in the Region. To make the rule match a
specific Auto Scaling group, choose Specific group name(s) and select one or more Auto Scaling
groups.
6. For Select event bus, choose AWS default event bus. When an AWS service in your account emits an
event, it always goes to your account's default event bus.
7. For Target, choose SNS topic.
8. For Topic, select the Amazon SNS topic that you created.
9. For Configure input, choose the input for the email notification.
10. Choose Create.

Replacing Auto Scaling instances based on maximum

instance lifetime
The maximum instance lifetime speciﬁes the maximum amount of time (in seconds) that an instance can
be in service before it is terminated and replaced. A common use case might be a requirement to replace
your instances on a schedule because of internal security policies or external compliance controls.

You must specify a value of at least 86,400 seconds (one day). To clear a previously set value, specify a
new value of 0. This setting applies to all current and future instances in your Auto Scaling group.

Setting this value too low can cause instances to be replaced faster than desired. In general, Amazon
EC2 Auto Scaling replaces instances one at a time, with a pause between replacements. However, if
the maximum instance lifetime that you specify doesn't provide enough time to replace each instance
individually, Amazon EC2 Auto Scaling must replace more than one instance at a time. Several instances
might be replaced at once, by up to 10 percent of the current capacity of your Auto Scaling group.

To manage the rate of replacement, you can do the following:

• Set the maximum instance lifetime limit to a longer period of time. This spaces out the replacements,
which is helpful for groups that have a large number of instances to replace.

133
Amazon EC2 Auto Scaling User Guide
Replacing instances based on maximum instance lifetime

• Add extra time between certain replacements by using instance protection. This temporarily prevents
individual instances in your Auto Scaling group from being replaced. When you're ready to replace
these instances, remove instance protection from each individual instance. For more information, see
Using instance scale-in protection (p. 246).

Note
Whenever an old instance is replaced and a new instance launches, the new instance uses the
launch template or launch configuration that is currently associated with the Auto Scaling
group. If your launch template or launch configuration specifies the AMI ID of a different version
of your application, this version of your application will be deployed automatically.

Set the maximum instance lifetime

When you create an Auto Scaling group in the console, you cannot set the maximum instance lifetime.
However, after the group is created, you can edit it to set the maximum instance lifetime.

To set the maximum instance lifetime for a group (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to the Auto Scaling group.

A split pane opens up at the bottom of the Auto Scaling groups page, showing information about
the group you selected.
3. On the Details tab, choose Advanced conﬁgurations, Edit.
4. For Maximum instance lifetime, enter the maximum number of seconds that an instance can be in
service.
5. Choose Update.

On the Activity tab, under Activity history, you can view the replacement of instances in the group
throughout its history.

To set the maximum instance lifetime for a group (AWS CLI)

You can also use the AWS CLI to set the maximum instance lifetime for new or existing Auto Scaling
groups.

For new Auto Scaling groups, use the create-auto-scaling-group command.

aws autoscaling create-auto-scaling-group --cli-input-json file://~/config.json

The following is an example config.json ﬁle that shows a maximum instance lifetime of 2592000
seconds (30 days).

{
"AutoScalingGroupName": "my-asg",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "$Latest"
},
"MinSize": 1,
"MaxSize": 5,
"MaxInstanceLifetime": 2592000,
"VPCZoneIdentifier": "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782",
"Tags": []
}

134
Amazon EC2 Auto Scaling User Guide
Replacing instances based on maximum instance lifetime

For existing Auto Scaling groups, use the update-auto-scaling-group command.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-existing-asg --max-

instance-lifetime 2592000

To verify the maximum instance lifetime for an Auto Scaling group

Use the describe-auto-scaling-groups command.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-name my-asg

The following is an example response.

{
"AutoScalingGroups": [
{
"AutoScalingGroupName": "my-asg",
"AutoScalingGroupARN": "arn",
"LaunchTemplate": {
"LaunchTemplateId": "lt-0b97f1e282EXAMPLE",
"LaunchTemplateName": "my-launch-template",
"Version": "$Latest"
},
"MinSize": 1,
"MaxSize": 5,
"DesiredCapacity": 1,
"DefaultCooldown": 300,
"AvailabilityZones": [
"us-west-2a",
"us-west-2b",
"us-west-2c"
],
"LoadBalancerNames": [],
"TargetGroupARNs": [],
"HealthCheckType": "EC2",
"HealthCheckGracePeriod": 0,
"Instances": [
{
"InstanceId": "i-04d180b9d5fc578fc",
"InstanceType": "t2.small",
"AvailabilityZone": "us-west-2b",
"LifecycleState": "Pending",
"HealthStatus": "Healthy",
"LaunchTemplate": {
"LaunchTemplateId": "lt-0b97f1e282EXAMPLE",
"LaunchTemplateName": "my-launch-template",
"Version": "7"
},
"ProtectedFromScaleIn": false
}
],
"CreatedTime": "2019-11-14T22:56:15.487Z",
"SuspendedProcesses": [],
"VPCZoneIdentifier": "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782",
"EnabledMetrics": [],
"Tags": [],
"TerminationPolicies": [
"Default"
],
"NewInstancesProtectedFromScaleIn": false,
"ServiceLinkedRoleARN": "arn",
"MaxInstanceLifetime": 2592000
}

135
Amazon EC2 Auto Scaling User Guide
Deleting your Auto Scaling infrastructure

]
}

Limitations
• Maximum lifetime not guaranteed to be exact for every instance: Instances are not guaranteed to
be replaced only at the end of their maximum duration. In some situations, Amazon EC2 Auto Scaling
might need to start replacing instances immediately after you update the maximum instance lifetime
parameter. The reason for this behavior is to avoid replacing all instances at the same time.
• Instances terminated before launch: When there is only one instance in the Auto Scaling group,
the maximum instance lifetime feature can result in an outage because Amazon EC2 Auto Scaling
terminates an instance and then launches a new instance.

Deleting your Auto Scaling infrastructure

To completely delete your scaling infrastructure, complete the following tasks.

Tasks
• Delete your Auto Scaling group (p. 136)
• (Optional) Delete the launch conﬁguration (p. 137)
• (Optional) Delete the launch template (p. 137)
• (Optional) Delete the load balancer and target groups (p. 138)
• (Optional) Delete CloudWatch alarms (p. 138)

Delete your Auto Scaling group

When you delete an Auto Scaling group, its desired, minimum, and maximum values are set to 0. As a
result, the instances are terminated. Deleting an instance also deletes any associated logs or data, and
any volumes on the instance. If you do not want to terminate one or more instances, you can detach
them before you delete the Auto Scaling group. If the group has scaling policies, deleting the group
deletes the policies, the underlying alarm actions, and any alarm that no longer has an associated action.

To delete your Auto Scaling group (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group and choose Delete.
3. When prompted for conﬁrmation, choose Delete.

A loading icon in the Name column indicates that the Auto Scaling group is being deleted. The
Desired, Min, and Max columns show 0 instances for the Auto Scaling group. It takes a few minutes
to terminate the instance and delete the group. Refresh the list to see the current state.

To delete your Auto Scaling group (AWS CLI)

Use the following delete-auto-scaling-group command to delete the Auto Scaling group.

aws autoscaling delete-auto-scaling-group --auto-scaling-group-name my-asg

If the group has instances or scaling activities in progress, use the delete-auto-scaling-group command
with the --force-delete option. This will also terminate the Amazon EC2 instances.

136
Amazon EC2 Auto Scaling User Guide
(Optional) Delete the launch conﬁguration

aws autoscaling delete-auto-scaling-group --auto-scaling-group-name my-asg --force-delete

(Optional) Delete the launch conﬁguration

You can skip this step to keep the launch conﬁguration for future use.

To delete the launch conﬁguration (console)

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation pane, under AUTO SCALING, choose Launch Configurations.
3. On the Launch configurations page, choose your launch configuration and choose Actions, Delete
launch configuration.
4. When prompted for confirmation, choose Yes, Delete.

To delete the launch conﬁguration (AWS CLI)

Use the following delete-launch-conﬁguration command.

aws autoscaling delete-launch-configuration --launch-configuration-name my-launch-config

(Optional) Delete the launch template

You can delete your launch template or just one version of your launch template. When you delete a
launch template, all its versions are deleted.

You can skip this step to keep the launch template for future use.

To delete your launch template (console)

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation pane, under INSTANCES, choose Launch Templates.
3. Select your launch template and then do one of the following:

• Choose Actions, Delete template. When prompted for conﬁrmation, choose Delete launch
template.
• Choose Actions, Delete template version. Select the version to delete and choose Delete launch
template version.

To delete the launch template (AWS CLI)

Use the following delete-launch-template command to delete your template and all its versions.

aws ec2 delete-launch-template --launch-template-id lt-068f72b72934aff71

Alternatively, you can use the delete-launch-template-versions command to delete a speciﬁc version of a
launch template.

aws ec2 delete-launch-template-versions --launch-template-id lt-068f72b72934aff71 --

versions 1

137
Amazon EC2 Auto Scaling User Guide
(Optional) Delete the load balancer and target groups

(Optional) Delete the load balancer and target groups

Skip this step if your Auto Scaling group is not associated with an Elastic Load Balancing load balancer,
or if you want to keep the load balancer for future use.

To delete your load balancer (console)

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation pane, under LOAD BALANCING, choose Load Balancers.
3. Choose the load balancer and choose Actions, Delete.
4. When prompted for conﬁrmation, choose Yes, Delete.

To delete your target group (console)

1. On the navigation pane, under LOAD BALANCING, choose Target Groups.

2. Choose the target group and choose Actions, Delete.
3. When prompted for conﬁrmation, choose Yes.

To delete the load balancer associated with the Auto Scaling group (AWS CLI)

For Application Load Balancers and Network Load Balancers, use the following delete-load-balancer and
delete-target-group commands.

aws elbv2 delete-load-balancer --load-balancer-arn my-load-balancer-arn

aws elbv2 delete-target-group --target-group-arn my-target-group-arn

For Classic Load Balancers, use the following delete-load-balancer command.

aws elb delete-load-balancer --load-balancer-name my-load-balancer

(Optional) Delete CloudWatch alarms

To delete any CloudWatch alarms associated with your Auto Scaling group, complete the following steps.

You can skip this step if your Auto Scaling group is not associated with any CloudWatch alarms, or if you
want to keep the alarms for future use.
Note
Deleting an Auto Scaling group automatically deletes the CloudWatch alarms that Amazon EC2
Auto Scaling manages for a target tracking scaling policy.

To delete the CloudWatch alarms (console)

1. Open the CloudWatch console at https://console.aws.amazon.com/cloudwatch/.

2. On the navigation pane, choose Alarms.
3. Choose the alarms and choose Action, Delete.
4. When prompted for conﬁrmation, choose Delete.

To delete the CloudWatch alarms (AWS CLI)

Use the delete-alarms command. You can delete one or more alarms at a time. For example, use the
following command to delete the Step-Scaling-AlarmHigh-AddCapacity and Step-Scaling-
AlarmLow-RemoveCapacity alarms.

138
Amazon EC2 Auto Scaling User Guide
(Optional) Delete CloudWatch alarms

aws cloudwatch delete-alarms --alarm-name Step-Scaling-AlarmHigh-AddCapacity Step-Scaling-

AlarmLow-RemoveCapacity

139
Amazon EC2 Auto Scaling User Guide
Scaling options

Scaling the size of your Auto Scaling

group
Scaling is the ability to increase or decrease the compute capacity of your application. Scaling starts with
an event, or scaling action, which instructs an Auto Scaling group to either launch or terminate Amazon
EC2 instances.

Amazon EC2 Auto Scaling provides a number of ways to adjust scaling to best meet the needs of your
applications. As a result, it's important that you have a good understanding of your application. Keep the
following considerations in mind:

• What role should Amazon EC2 Auto Scaling play in your application's architecture? It's common to
think about automatic scaling primarily as a way to increase and decrease capacity, but it's also useful
for maintaining a steady number of servers.
• What cost constraints are important to you? Because Amazon EC2 Auto Scaling uses EC2 instances, you
only pay for the resources that you use. Knowing your cost constraints helps you decide when to scale
your applications, and by how much.
• What metrics are important to your application? Amazon CloudWatch supports a number of diﬀerent
metrics that you can use with your Auto Scaling group.

Contents
• Scaling options (p. 140)
• Setting capacity limits on your Auto Scaling group (p. 141)
• Maintaining a ﬁxed number of instances in your Auto Scaling group (p. 142)
• Manual scaling for Amazon EC2 Auto Scaling (p. 142)
• Dynamic scaling for Amazon EC2 Auto Scaling (p. 152)
• Predictive scaling for Amazon EC2 Auto Scaling (p. 182)
• Scheduled scaling for Amazon EC2 Auto Scaling (p. 199)
• Amazon EC2 Auto Scaling lifecycle hooks (p. 204)
• Warm pools for Amazon EC2 Auto Scaling (p. 220)
• Controlling which Auto Scaling instances terminate during scale in (p. 236)
• Temporarily removing instances from your Auto Scaling group (p. 248)
• Suspending and resuming a process for an Auto Scaling group (p. 253)

Scaling options
Amazon EC2 Auto Scaling provides several ways for you to scale your Auto Scaling group.

Maintain current instance levels at all times

You can configure your Auto Scaling group to maintain a specified number of running instances at all
times. To maintain the current instance levels, Amazon EC2 Auto Scaling performs a periodic health
check on running instances within an Auto Scaling group. When Amazon EC2 Auto Scaling finds an
unhealthy instance, it terminates that instance and launches a new one. For more information, see
Maintaining a fixed number of instances in your Auto Scaling group (p. 142).

Scale manually

140
Amazon EC2 Auto Scaling User Guide
Setting capacity limits

Manual scaling is the most basic way to scale your resources, where you specify only the change in the
maximum, minimum, or desired capacity of your Auto Scaling group. Amazon EC2 Auto Scaling manages
the process of creating or terminating instances to maintain the updated capacity. For more information,
see Manual scaling for Amazon EC2 Auto Scaling (p. 142).

Scale based on a schedule

Scaling by schedule means that scaling actions are performed automatically as a function of time and
date. This is useful when you know exactly when to increase or decrease the number of instances in your
group, simply because the need arises on a predictable schedule. For more information, see Scheduled
scaling for Amazon EC2 Auto Scaling (p. 199).

Scale based on demand

A more advanced way to scale your resources, using dynamic scaling, lets you deﬁne a scaling policy that
dynamically resizes your Auto Scaling group to meet changes in demand. For example, let's say that you
have a web application that currently runs on two instances and you want the CPU utilization of the Auto
Scaling group to stay at around 50 percent when the load on the application changes. This method is
useful for scaling in response to changing conditions, when you don't know when those conditions will
change. You can set up Amazon EC2 Auto Scaling to respond for you. For more information, see Dynamic
scaling for Amazon EC2 Auto Scaling (p. 152).

Use predictive scaling

You can also combine predictive scaling and dynamic scaling (proactive and reactive approaches,
respectively) to scale your Amazon EC2 capacity faster. For more information, see Predictive scaling for
Amazon EC2 Auto Scaling (p. 182).

Setting capacity limits on your Auto Scaling group

Capacity limits place restrictions on the size of your Auto Scaling group. You set limits separately for
the minimum and maximum size. The group's desired capacity is resizeable between the minimum and
maximum size limits. The desired capacity must be greater than or equal to the minimum size of the
group and less than or equal to the maximum size of the group.

An Auto Scaling group will start by launching as many instances as are speciﬁed for desired capacity. If
there are no scaling policies or scheduled actions attached to the Auto Scaling group, Amazon EC2 Auto
Scaling maintains the desired amount of instances, performing periodic health checks on the instances in
the group. Unhealthy instances will be terminated and replaced with new ones.

If you choose to turn on auto scaling, the maximum limit lets Amazon EC2 Auto Scaling scale out the
number of instances as needed to handle an increase in demand. The minimum limit helps ensure that
you always have a certain number of instances running at all times.

The minimum and maximum size limits also apply when you manually scale your Auto Scaling group,
such as when you want to turn oﬀ auto scaling and have the group run at a ﬁxed size, either temporarily
or permanently. In this case, you can manage the size of the Auto Scaling group by updating its desired
capacity as needed.

To manage these settings in the console

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation pane, under AUTO SCALING, choose Auto Scaling Groups.
3. On the Auto Scaling groups page, select the check box next to the Auto Scaling group whose
settings you want to manage.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.

141
Amazon EC2 Auto Scaling User Guide
Maintaining a ﬁxed number of instances

4. In the lower pane, in the Details tab, view or change the current settings for minimum, maximum,
and desired capacity.

Above the Details pane contains overview information about the Auto Scaling group, including the
current number of instances in the group, the minimum, maximum, and desired capacity, and a status
column. If the Auto Scaling group uses instance weighting, then the information includes the number of
capacity units contributed to the desired capacity. To add or remove columns from the list, choose the
settings icon at the top of the page. Then, for Auto Scaling groups attributes, turn each column on or
oﬀ, and choose Conﬁrm changes.

To verify the size of your Auto Scaling group after making changes

The Instances column shows the number of instances that are currently running. While an instance is
being launched or terminated, the Status column displays a status of Updating capacity, as shown in the
following image.

Wait for a few minutes, and then refresh the view to see the latest status. After a scaling activity
completes, notice that the Instances column shows a new value.

You can also view the number of instances and the status of the instances that are currently running
from the Instance management tab under Instances.

Maintaining a ﬁxed number of instances in your

Auto Scaling group
Amazon EC2 Auto Scaling lets you set up an Auto Scaling group to maintain a ﬁxed size. You can then
choose whether to adjust the desired capacity of the group or manually add or remove Amazon EC2
instances from the group to handle traﬃc changes to your application.

If a ﬁxed number of instances is needed, this can be achieved by setting the same value for minimum,
maximum, and desired capacity. After you have created your Auto Scaling group, the group starts by
launching enough instances to meet its desired capacity. If there are no other scaling conditions attached
to the Auto Scaling group, the group maintains this number of running instances at all times.

Your Auto Scaling group continues to maintain a ﬁxed number of instances even if an instance becomes
unhealthy. Amazon EC2 Auto Scaling monitors the health of each Auto Scaling instance. When it ﬁnds
that an instance has become unhealthy, it terminates that instance and launches a new one. Instances
can fail a health check because of a variety of reasons. For more information, see Health checks for Auto
Scaling instances (p. 259).

Manual scaling for Amazon EC2 Auto Scaling

At any time, you can change the size of an existing Auto Scaling group manually. You can either update
the desired capacity of the Auto Scaling group, or update the instances that are attached to the Auto
Scaling group. Manually scaling your group can be useful when automatic scaling is not needed or when
you need to hold capacity at a ﬁxed number of instances.

142
Amazon EC2 Auto Scaling User Guide
Changing the size of your Auto Scaling group (console)

Changing the size of your Auto Scaling group

(console)
When you change the desired capacity of your Auto Scaling group, Amazon EC2 Auto Scaling manages
the process of launching or terminating instances to maintain the new group size.

The following example assumes that you've created an Auto Scaling group with a minimum size of 1 and
a maximum size of 5. Therefore, the group currently has one running instance.

To change the size of your Auto Scaling group

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

The desired capacity must be less than or equal to the maximum size of the group. If your new value
for Desired capacity is greater than Maximum capacity, you must update Maximum capacity.
5. When you are ﬁnished, choose Update.

Now, verify that your Auto Scaling group has launched one additional instance.

To verify that the size of your Auto Scaling group has changed

1. On the Activity tab, in Activity history, the Status column shows the current status of your instance.
Use the refresh button until you see the status of your instance change to Successful. This indicates
that your Auto Scaling group has successfully launched a new instance.
Note
If the instance fails to launch, you can ﬁnd troubleshooting tips in Troubleshooting Amazon
EC2 Auto Scaling (p. 329).
2. On the Instance management tab, in Instances, the Lifecycle column shows the state of your
instances. It takes a short time for an instance to launch. After the instance starts, its state changes
to InService. You can see that your Auto Scaling group has launched 1 new instance, and it is in
the InService state.

Changing the size of your Auto Scaling group (AWS

CLI)
When you change the size of your Auto Scaling group, Amazon EC2 Auto Scaling manages the process
of launching or terminating instances to maintain the new group size. The default behavior is not to
wait for the default cooldown period to complete, but you can override the default and wait for the
cooldown period to complete. For more information, see Scaling cooldowns for Amazon EC2 Auto
Scaling (p. 168).

The following example assumes that you've created an Auto Scaling group with a minimum size of 1 and
a maximum size of 5. Therefore, the group currently has one running instance.

To change the size of your Auto Scaling group

143
Amazon EC2 Auto Scaling User Guide
Changing the size of your Auto Scaling group (AWS CLI)

Use the set-desired-capacity command to change the size of your Auto Scaling group, as shown in the
following example.

aws autoscaling set-desired-capacity --auto-scaling-group-name my-asg \

--desired-capacity 2

If you choose to honor the default cooldown period for your Auto Scaling group, you must specify the –-
honor-cooldown option as shown in the following example.

aws autoscaling set-desired-capacity --auto-scaling-group-name my-asg \

--desired-capacity 2 --honor-cooldown

To verify the size of your Auto Scaling group

Use the describe-auto-scaling-groups command to conﬁrm that the size of your Auto Scaling group has
changed, as in the following example.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-name my-asg

The following is example output, with details about the group and instances launched.

{
"AutoScalingGroups": [
{
"AutoScalingGroupARN": "arn",
"ServiceLinkedRoleARN": "arn",
"TargetGroupARNs": [],
"SuspendedProcesses": [],
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"Tags": [],
"EnabledMetrics": [],
"LoadBalancerNames": [],
"AutoScalingGroupName": "my-asg",
"DefaultCooldown": 300,
"MinSize": 1,
"Instances": [
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-05b4f7d5be44822a6",
"HealthStatus": "Healthy",
"LifecycleState": "Pending"
},
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-0c20ac468fa3049e8",
"HealthStatus": "Healthy",

144
Amazon EC2 Auto Scaling User Guide
Attach EC2 instances to your Auto Scaling group

"LifecycleState": "InService"
}
],
"MaxSize": 5,
"VPCZoneIdentifier": "subnet-c87f2be0",
"HealthCheckGracePeriod": 300,
"TerminationPolicies": [
"Default"
],
"CreatedTime": "2019-03-18T23:30:42.611Z",
"AvailabilityZones": [
"us-west-2a"
],
"HealthCheckType": "EC2",
"NewInstancesProtectedFromScaleIn": false,
"DesiredCapacity": 2
}
]
}

Notice that DesiredCapacity shows the new value. Your Auto Scaling group has launched an
additional instance.

Attach EC2 instances to your Auto Scaling group

Amazon EC2 Auto Scaling provides you with the option of attaching one or more EC2 instances to your
existing Auto Scaling group. After an instance is attached, it is considered part of the Auto Scaling group.

For an instance to be attached, it must meet the following criteria:

• The instance is in the running state with Amazon EC2.

• The AMI used to launch the instance must still exist.
• The instance is not a member of another Auto Scaling group.
• The instance is launched into one of the Availability Zones deﬁned in your Auto Scaling group.
• If the Auto Scaling group has an attached load balancer target group, the instance and the load
balancer must both be in the same VPC. If the Auto Scaling group has an attached Classic Load
Balancer, the instance and the load balancer must both be in EC2-Classic or the same VPC.

When you attach instances, the desired capacity of the group increases by the number of instances being
attached. If the number of instances being attached plus the desired capacity exceeds the maximum size
of the group, the request fails.

If you attach an instance to an Auto Scaling group that has an attached load balancer target group or
Classic Load Balancer, the instance is registered with the load balancer.

The examples use an Auto Scaling group with the following conﬁguration:

• Auto Scaling group name = my-asg

• Minimum size = 1
• Maximum size = 5
• Desired capacity = 2
• Availability Zone = us-west-2a

Attaching an instance (console)

You can attach an existing instance to an existing Auto Scaling group, or to a new Auto Scaling group as
you create it.

145
Amazon EC2 Auto Scaling User Guide
Attach EC2 instances to your Auto Scaling group

To attach an instance to a new Auto Scaling group

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. On the navigation pane, under INSTANCES, choose Instances, and then select an instance.
3. Choose Actions, Instance settings, Attach to Auto Scaling Group.
4. On the Attach to Auto Scaling group page, for Auto Scaling Group, enter a name for the group,
and then choose Attach.

The new Auto Scaling group is created using a new launch configuration with the same name that
you specified for the Auto Scaling group. The launch configuration gets its settings (for example,
security group and IAM role) from the instance that you attached. The Auto Scaling group gets
settings (for example, Availability Zone and subnet) from the instance that you attached, and has a
desired capacity and maximum size of 1.
5. (Optional) To edit the settings for the Auto Scaling group, on the navigation pane, under AUTO
SCALING, choose Auto Scaling Groups. Select the check box next to the new Auto Scaling group,
choose the Edit button that is above the list of groups, change the settings as needed, and then
choose Update.

To attach an instance to an existing Auto Scaling group

1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.

2. (Optional) On the navigation pane, under AUTO SCALING, choose Auto Scaling Groups. Select the
Auto Scaling group and verify that the maximum size of the Auto Scaling group is large enough that
you can add another instance. Otherwise, on the Details tab, increase the maximum capacity.
3. On the navigation pane, under INSTANCES, choose Instances, and then select an instance.
4. Choose Actions, Instance settings, Attach to Auto Scaling Group.
5. On the Attach to Auto Scaling group page, for Auto Scaling Group, select the Auto Scaling group,
and then choose Attach.
6. If the instance doesn't meet the criteria, you get an error message with the details. For example, the
instance might not be in the same Availability Zone as the Auto Scaling group. Choose Close and try
again with an instance that meets the criteria.

Attaching an instance (AWS CLI)

To attach an instance to an Auto Scaling group

1. Describe a speciﬁc Auto Scaling group using the following describe-auto-scaling-groups command.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-names my-asg

The following example response shows that the desired capacity is 2 and that the group has two
running instances.

146
Amazon EC2 Auto Scaling User Guide
Attach EC2 instances to your Auto Scaling group

},
"Tags": [],
"EnabledMetrics": [],
"LoadBalancerNames": [],
"AutoScalingGroupName": "my-asg",
"DefaultCooldown": 300,
"MinSize": 1,
"Instances": [
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-05b4f7d5be44822a6",
"HealthStatus": "Healthy",
"LifecycleState": "Pending"
},
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-0c20ac468fa3049e8",
"HealthStatus": "Healthy",
"LifecycleState": "InService"
}
],
"MaxSize": 5,
"VPCZoneIdentifier": "subnet-c87f2be0",
"HealthCheckGracePeriod": 300,
"TerminationPolicies": [
"Default"
],
"CreatedTime": "2019-03-18T23:30:42.611Z",
"AvailabilityZones": [
"us-west-2a"
],
"HealthCheckType": "EC2",
"NewInstancesProtectedFromScaleIn": false,
"DesiredCapacity": 2
}
]
}

2. Attach an instance to the Auto Scaling group using the following attach-instances command.

aws autoscaling attach-instances --instance-ids i-0787762faf1c28619 --auto-scaling-

group-name my-asg

3. To verify that the instance is attached, use the following describe-auto-scaling-groups command.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-names my-asg

The following example response shows that the desired capacity has increased by 1 instance (to a
new capacity of 3), and that there is a new instance, i-0787762faf1c28619.

147
Amazon EC2 Auto Scaling User Guide
Attach EC2 instances to your Auto Scaling group

"AutoScalingGroups": [
{
"AutoScalingGroupARN": "arn",
"ServiceLinkedRoleARN": "arn",
"TargetGroupARNs": [],
"SuspendedProcesses": [],
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"Tags": [],
"EnabledMetrics": [],
"LoadBalancerNames": [],
"AutoScalingGroupName": "my-asg",
"DefaultCooldown": 300,
"MinSize": 1,
"Instances": [
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-05b4f7d5be44822a6",
"HealthStatus": "Healthy",
"LifecycleState": "Pending"
},
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-0c20ac468fa3049e8",
"HealthStatus": "Healthy",
"LifecycleState": "InService"
},
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-0787762faf1c28619",
"HealthStatus": "Healthy",
"LifecycleState": "InService"
}
],
"MaxSize": 5,
"VPCZoneIdentifier": "subnet-c87f2be0",
"HealthCheckGracePeriod": 300,
"TerminationPolicies": [
"Default"
],
"CreatedTime": "2019-03-18T23:30:42.611Z",
"AvailabilityZones": [
"us-west-2a"
],
"HealthCheckType": "EC2",

148
Amazon EC2 Auto Scaling User Guide
Detach EC2 instances from your Auto Scaling group

"NewInstancesProtectedFromScaleIn": false,
"DesiredCapacity": 3
}
]
}

Detach EC2 instances from your Auto Scaling group

You can remove (detach) an instance that is in the InService state from an Auto Scaling group. After
the instance is detached, you can manage it independently from the rest of the Auto Scaling group. By
detaching an instance, you can:

• Move an instance out of one Auto Scaling group and attach it to a diﬀerent group. For more
information, see Attach EC2 instances to your Auto Scaling group (p. 145).
• Test an Auto Scaling group by creating it using existing instances running your application. You can
then detach these instances from the Auto Scaling group when your tests are complete.

When you detach instances, you have the option of decrementing the desired capacity for the Auto
Scaling group by the number of instances that you are detaching. If you choose not to decrement the
capacity, Amazon EC2 Auto Scaling launches new instances to replace the ones that you detach. If you
decrement the capacity but detach multiple instances from the same Availability Zone, Amazon EC2 Auto
Scaling can rebalance the Availability Zones unless you suspend the AZRebalance process. For more
information, see Suspending and resuming a process for an Auto Scaling group (p. 253).

If the number of instances that you are detaching decreases the size of the Auto Scaling group below its
minimum capacity, you must decrement the minimum capacity for the group before you can detach the
instances.

If you detach an instance from an Auto Scaling group that has an attached load balancer target group
or Classic Load Balancer, the instance is deregistered from the load balancer. If connection draining is
enabled for your load balancer, Amazon EC2 Auto Scaling waits for in-ﬂight requests to complete.

The examples use an Auto Scaling group with the following conﬁguration:

• Auto Scaling group name = my-asg

• Minimum size = 1
• Maximum size = 5
• Desired capacity = 4
• Availability Zone = us-west-2a

Detaching instances (console)

Use the following procedure to detach an instance from your Auto Scaling group.

To detach an instance from an existing Auto Scaling group

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

149
Amazon EC2 Auto Scaling User Guide
Detach EC2 instances from your Auto Scaling group

Detaching instances (AWS CLI)

Use the following procedure to detach an instance from your Auto Scaling group.

To detach an instance from an existing Auto Scaling group

1. List the current instances using the following describe-auto-scaling-instances command.

aws autoscaling describe-auto-scaling-instances

The following example response shows that the group has four running instances.

{
"AutoScalingInstances": [
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-05b4f7d5be44822a6",
"AutoScalingGroupName": "my-asg",
"HealthStatus": "HEALTHY",
"LifecycleState": "InService"
},
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-0c20ac468fa3049e8",
"AutoScalingGroupName": "my-asg",
"HealthStatus": "HEALTHY",
"LifecycleState": "InService"
},
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-0787762faf1c28619",
"AutoScalingGroupName": "my-asg",
"HealthStatus": "HEALTHY",
"LifecycleState": "InService"
},
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-0f280a4c58d319a8a",
"AutoScalingGroupName": "my-asg",

150
Amazon EC2 Auto Scaling User Guide
Detach EC2 instances from your Auto Scaling group

"HealthStatus": "HEALTHY",
"LifecycleState": "InService"
}
]
}

2. Detach an instance and decrement the desired capacity using the following detach-instances
command.

aws autoscaling detach-instances --instance-ids i-05b4f7d5be44822a6 \

--auto-scaling-group-name my-asg --should-decrement-desired-capacity

3. Verify that the instance is detached using the following describe-auto-scaling-instances command.

aws autoscaling describe-auto-scaling-instances

The following example response shows that there are now three running instances.

{
"AutoScalingInstances": [
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-0c20ac468fa3049e8",
"AutoScalingGroupName": "my-asg",
"HealthStatus": "HEALTHY",
"LifecycleState": "InService"
},
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-0787762faf1c28619",
"AutoScalingGroupName": "my-asg",
"HealthStatus": "HEALTHY",
"LifecycleState": "InService"
},
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-0f280a4c58d319a8a",
"AutoScalingGroupName": "my-asg",
"HealthStatus": "HEALTHY",
"LifecycleState": "InService"
}
]
}

151
Amazon EC2 Auto Scaling User Guide
Dynamic scaling

Dynamic scaling for Amazon EC2 Auto Scaling

When you conﬁgure dynamic scaling, you deﬁne how to scale the capacity of your Auto Scaling group in
response to changing demand.

For example, let's say that you have a web application that currently runs on two instances, and you
want the CPU utilization of the Auto Scaling group to stay at around 50 percent when the load on
the application changes. This gives you extra capacity to handle traﬃc spikes without maintaining an
excessive number of idle resources.

You can conﬁgure your Auto Scaling group to scale dynamically to meet this need by creating a target
tracking, step, or simple scaling policy. Amazon EC2 Auto Scaling can then scale out your group (add
more instances) to deal with high demand at peak times, and scale in your group (run fewer instances) to
reduce costs during periods of low utilization.

Contents
• How dynamic scaling policies work (p. 152)
• Dynamic scaling policy types (p. 153)
• Multiple dynamic scaling policies (p. 153)
• Target tracking scaling policies for Amazon EC2 Auto Scaling (p. 154)
• Step and simple scaling policies for Amazon EC2 Auto Scaling (p. 159)
• Scaling cooldowns for Amazon EC2 Auto Scaling (p. 168)
• Scaling based on Amazon SQS (p. 172)
• Verifying a scaling activity for an Auto Scaling group (p. 176)
• Disabling a scaling policy for an Auto Scaling group (p. 177)
• Deleting a scaling policy (p. 179)
• Example scaling policies for the AWS Command Line Interface (AWS CLI) (p. 181)

How dynamic scaling policies work

A dynamic scaling policy instructs Amazon EC2 Auto Scaling to track a specific CloudWatch metric, and
it defines what action to take when the associated CloudWatch alarm is in ALARM. The metrics that
are used to trigger an alarm are an aggregation of metrics coming from all of the instances in the Auto
Scaling group. (For example, let's say you have an Auto Scaling group with two instances where one
instance is at 60 percent CPU and the other is at 40 percent CPU. On average, they are at 50 percent
CPU.) When the policy is in effect, Amazon EC2 Auto Scaling adjusts the group's desired capacity up or
down when the alarm is triggered.

When a dynamic scaling policy is invoked, if the capacity calculation produces a number outside of
the minimum and maximum size range of the group, Amazon EC2 Auto Scaling ensures that the new
capacity never goes outside of the minimum and maximum size limits. Capacity is measured in one of
two ways: using the same units that you chose when you set the desired capacity in terms of instances,
or using capacity units (if instance weighting (p. 72) is applied).

• Example 1: An Auto Scaling group has a maximum capacity of 3, a current capacity of 2, and a dynamic
scaling policy that adds 3 instances. When invoking this policy, Amazon EC2 Auto Scaling adds only 1
instance to the group to prevent the group from exceeding its maximum size.
• Example 2: An Auto Scaling group has a minimum capacity of 2, a current capacity of 3, and a dynamic
scaling policy that removes 2 instances. When invoking this policy, Amazon EC2 Auto Scaling removes
only 1 instance from the group to prevent the group from becoming less than its minimum size.

152
Amazon EC2 Auto Scaling User Guide
Dynamic scaling policy types

When the desired capacity reaches the maximum size limit, scaling out stops. If demand drops and
capacity decreases, Amazon EC2 Auto Scaling can scale out again.

The exception is when you use instance weighting. In this case, Amazon EC2 Auto Scaling can scale out
above the maximum size limit, but only by up to your maximum instance weight. Its intention is to get
as close to the new desired capacity as possible but still adhere to the allocation strategies that are
speciﬁed for the group. The allocation strategies determine which instance types to launch. The weights
determine how many capacity units each instance contributes to the desired capacity of the group based
on its instance type.

• Example 3: An Auto Scaling group has a maximum capacity of 12, a current capacity of 10, and a
dynamic scaling policy that adds 5 capacity units. Instance types have one of three weights assigned: 1,
4, or 6. When invoking the policy, Amazon EC2 Auto Scaling chooses to launch an instance type with a
weight of 6 based on the allocation strategy. The result of this scale-out event is a group with a desired
capacity of 12 and a current capacity of 16.

Dynamic scaling policy types

Amazon EC2 Auto Scaling supports the following types of dynamic scaling policies:

• Target tracking scaling—Increase or decrease the current capacity of the group based on a target
value for a speciﬁc metric. This is similar to the way that your thermostat maintains the temperature of
your home—you select a temperature and the thermostat does the rest.
• Step scaling—Increase or decrease the current capacity of the group based on a set of scaling
adjustments, known as step adjustments, that vary based on the size of the alarm breach.
• Simple scaling—Increase or decrease the current capacity of the group based on a single scaling
adjustment.

If you are scaling based on a utilization metric that increases or decreases proportionally to the number
of instances in an Auto Scaling group, we recommend that you use target tracking scaling policies.
Otherwise, we recommend that you use step scaling policies.

Multiple dynamic scaling policies

In most cases, a target tracking scaling policy is suﬃcient to conﬁgure your Auto Scaling group to scale
out and scale in automatically. A target tracking scaling policy allows you to select a desired outcome
and have the Auto Scaling group add and remove instances as needed to achieve that outcome.

For an advanced scaling configuration, your Auto Scaling group can have more than one scaling policy.
For example, you can define one or more target tracking scaling policies, one or more step scaling
policies, or both. This provides greater flexibility to cover multiple scenarios.

To illustrate how multiple dynamic scaling policies work together, consider an application that uses
an Auto Scaling group and an Amazon SQS queue to send requests to a single EC2 instance. To help
ensure that the application performs at optimum levels, there are two policies that control when the
Auto Scaling group should scale out. One is a target tracking policy that uses a custom metric to add and
remove capacity based on the number of SQS messages in the queue. The other is a step scaling policy
that uses the Amazon CloudWatch CPUUtilization metric to add capacity when the instance exceeds
90 percent utilization for a speciﬁed length of time.

When there are multiple policies in force at the same time, there's a chance that each policy could
instruct the Auto Scaling group to scale out (or in) at the same time. For example, it's possible that the
CPUUtilization metric spikes and triggers the CloudWatch alarm at the same time that the SQS
custom metric spikes and triggers the custom metric alarm.

153
Amazon EC2 Auto Scaling User Guide
Target tracking scaling policies

When these situations occur, Amazon EC2 Auto Scaling chooses the policy that provides the largest
capacity for both scale out and scale in. Suppose, for example, that the policy for CPUUtilization
launches one instance, while the policy for the SQS queue launches two instances. If the scale-out
criteria for both policies are met at the same time, Amazon EC2 Auto Scaling gives precedence to the
SQS queue policy. This results in the Auto Scaling group launching two instances.

The approach of giving precedence to the policy that provides the largest capacity applies even when the
policies use diﬀerent criteria for scaling in. For example, if one policy terminates three instances, another
policy decreases the number of instances by 25 percent, and the group has eight instances at the time
of scale in, Amazon EC2 Auto Scaling gives precedence to the policy that provides the largest number of
instances for the group. This results in the Auto Scaling group terminating two instances (25 percent of 8
= 2). The intention is to prevent Amazon EC2 Auto Scaling from removing too many instances.

We recommend caution, however, when using target tracking scaling policies with step scaling policies
because conﬂicts between these policies can cause undesirable behavior. For example, if the step scaling
policy initiates a scale-in activity before the target tracking policy is ready to scale in, the scale-in activity
will not be blocked. After the scale-in activity completes, the target tracking policy could instruct the
group to scale out again.

Target tracking scaling policies for Amazon EC2 Auto

Scaling
With target tracking scaling policies, you select a scaling metric and set a target value. Amazon EC2 Auto
Scaling creates and manages the CloudWatch alarms that trigger the scaling policy and calculates the
scaling adjustment based on the metric and the target value. The scaling policy adds or removes capacity
as required to keep the metric at, or close to, the speciﬁed target value. In addition to keeping the metric
close to the target value, a target tracking scaling policy also adjusts to changes in the metric due to a
changing load pattern.

For example, you can use target tracking scaling to:

• Conﬁgure a target tracking scaling policy to keep the average aggregate CPU utilization of your Auto
Scaling group at 40 percent.
• Conﬁgure a target tracking scaling policy to keep the request count per target of your Application
Load Balancer target group at 1000 for your Auto Scaling group.

Depending on your application needs, you might find that one of these popular scaling metrics works
best for you when using target tracking, or you might find that a combination of these metrics or a
different metric meets your needs better.

Contents
• Considerations (p. 155)
• Choosing metrics (p. 155)
• Monitoring Amazon EC2 metrics (p. 156)
• Instance warm-up (p. 156)
• Create a target tracking scaling policy (console) (p. 157)
• Create a target tracking scaling policy (AWS CLI) (p. 158)
• Step 1: Create an Auto Scaling group (p. 158)
• Step 2: Create a target tracking scaling policy (p. 158)

154
Amazon EC2 Auto Scaling User Guide
Target tracking scaling policies

Considerations
Before you create a target tracking scaling policy for your Auto Scaling group, you should understand the
following characteristics and behaviors of target tracking scaling policies:

• A target tracking scaling policy assumes that it should scale out your Auto Scaling group when the
specified metric is above the target value. You cannot use a target tracking scaling policy to scale out
your Auto Scaling group when the specified metric is below the target value.
• You might see gaps between the target value and the actual metric data points. This is because we
act conservatively by rounding up or down when determining how many instances to add or remove.
This prevents us from adding an insufficient number of instances or removing too many instances.
However, for smaller Auto Scaling groups with fewer instances, the utilization of the group might
seem far from the target value. For example, let's say that you set a target value of 50 percent for CPU
utilization and your Auto Scaling group then exceeds the target. We might determine that adding 1.5
instances will decrease the CPU utilization to close to 50 percent. Because it is not possible to add
1.5 instances, we round up and add two instances. This might decrease the CPU utilization to a value
below 50 percent, but it ensures that your application has enough resources to support it. Similarly,
if we determine that removing 1.5 instances increases your CPU utilization to above 50 percent, we
remove just one instance.
• For larger Auto Scaling groups with more instances, the utilization is spread over a larger number of
instances, in which case adding or removing instances causes less of a gap between the target value
and the actual metric data points.
• To ensure application availability, the Auto Scaling group scales out proportionally to the metric as fast
as it can, but scales in more gradually.
• You can have multiple target tracking scaling policies for an Auto Scaling group, provided that each
of them uses a different metric. The intention of Amazon EC2 Auto Scaling is to always prioritize
availability, so its behavior differs depending on whether the target tracking policies are ready for
scale out or scale in. It will scale out the Auto Scaling group if any of the target tracking policies are
ready for scale out, but will scale in only if all of the target tracking policies (with the scale-in portion
enabled) are ready to scale in. For more information, see Multiple dynamic scaling policies (p. 153).
• You can disable the scale-in portion of a target tracking scaling policy. This feature provides you with
the flexibility to scale in your Auto Scaling group using a different method. For example, you can use a
different policy type for scale in while using a target tracking scaling policy for scale out.
• Do not edit or delete the CloudWatch alarms that are configured for the target tracking scaling policy.
CloudWatch alarms that are associated with your target tracking scaling policies are managed by AWS
and deleted automatically when no longer needed.

Choosing metrics
In a target tracking scaling policy, you can use predeﬁned or customized metrics.

The following predeﬁned metrics are available:

• ASGAverageCPUUtilization—Average CPU utilization of the Auto Scaling group.

• ASGAverageNetworkIn—Average number of bytes received on all network interfaces by the Auto
Scaling group.
• ASGAverageNetworkOut—Average number of bytes sent out on all network interfaces by the Auto
Scaling group.
• ALBRequestCountPerTarget—Average Application Load Balancer request count per target for your
Auto Scaling group.

You can choose other available Amazon CloudWatch metrics or your own metrics in CloudWatch by
specifying a customized metric. You must use the AWS CLI or an SDK to create a target tracking policy
with a customized metric.

155
Amazon EC2 Auto Scaling User Guide
Target tracking scaling policies

Keep the following in mind when choosing a metric:

• Not all metrics work for target tracking. This can be important when you are specifying a customized
metric. The metric must be a valid utilization metric and describe how busy an instance is. The metric
value must increase or decrease proportionally to the number of instances in the Auto Scaling group.
That's so the metric data can be used to proportionally scale out or in the number of instances.
For example, the CPU utilization of an Auto Scaling group works (that is, the Amazon EC2 metric
CPUUtilization with the metric dimension AutoScalingGroupName), if the load on the Auto
Scaling group is distributed across the instances.
• The following metrics do not work for target tracking:
• The number of requests received by the load balancer fronting the Auto Scaling group (that is,
the Elastic Load Balancing metric RequestCount). The number of requests received by the load
balancer doesn't change based on the utilization of the Auto Scaling group.
• Load balancer request latency (that is, the Elastic Load Balancing metric Latency). Request latency
can increase based on increasing utilization, but doesn't necessarily change proportionally.
• The CloudWatch Amazon SQS queue metric ApproximateNumberOfMessagesVisible. The
number of messages in a queue might not change proportionally to the size of the Auto Scaling
group that processes messages from the queue. However, a customized metric that measures the
number of messages in the queue per EC2 instance in the Auto Scaling group can work. For more
information, see Scaling based on Amazon SQS (p. 172).
• A target tracking scaling policy does not scale in your Auto Scaling group when the speciﬁed metric
has no data, unless you use the ALBRequestCountPerTarget metric. This works because the
ALBRequestCountPerTarget metric emits zeros for periods with no associated data, and the target
tracking policy requires metric data to interpret a low utilization trend. To have your Auto Scaling
group scale in to 0 instances when no requests are routed to the Application Load Balancer target
group, the group's minimum capacity must be set to 0.
• To use the ALBRequestCountPerTarget metric, you must specify the ResourceLabel parameter
to identify the load balancer target group that is associated with the metric.

Monitoring Amazon EC2 metrics

To ensure a faster response to changes in the metric value, we recommend that you scale on metrics with
a 1-minute frequency. Scaling on metrics with a 5-minute frequency can result in slower response times
and scaling on stale metric data.

To get this level of data for Amazon EC2 metrics, you must speciﬁcally enable detailed monitoring. By
default, Amazon EC2 instances are enabled for basic monitoring, which means metric data for instances
is available at 5-minute frequency. For more information, see Conﬁguring monitoring for Auto Scaling
instances (p. 276).

Instance warm-up
When you create a target tracking scaling policy, you can specify the number of seconds that it takes for
a newly launched instance to warm up. Until its speciﬁed warm-up time has expired, an instance is not
counted toward the aggregated metrics of the Auto Scaling group.

While scaling out, we do not consider instances that are warming up as part of the current capacity of
the group so that the metrics are not aﬀected by higher resource usage at startup. This ensures that we
don't add more instances than you need.

While scaling in, we consider instances that are terminating as part of the current capacity of the group.
Therefore, we don't remove more instances from the Auto Scaling group than necessary.

A scale-in activity can't start while a scale-out activity is in progress.

156
Amazon EC2 Auto Scaling User Guide
Target tracking scaling policies

Create a target tracking scaling policy (console)

You can choose to conﬁgure a target tracking scaling policy on an Auto Scaling group as you create it or
after the Auto Scaling group is created.

To create an Auto Scaling group with a target tracking scaling policy

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Choose Create Auto Scaling group.
3. In Steps 1, 2, and 3, choose the options as desired and proceed to Step 4: Configure group size and
scaling policies.
4. Under Group size, specify the range that you want to scale between by updating the minimum
capacity and maximum capacity. These two settings allow your Auto Scaling group to scale
dynamically. Amazon EC2 Auto Scaling scales your group in the range of values specified by the
minimum capacity and maximum capacity.
5. Under Scaling policies, choose Target tracking scaling policy.
6. To define a policy, do the following:

a. Specify a name for the policy.

b. For Metric type, choose a metric.

If you chose Application Load Balancer request count per target, choose a target group in
Target group.
c. Specify a Target value for the metric.
d. (Optional) Specify an instance warm-up value for Instances need. This allows you to control the
time until a newly launched instance can contribute to the CloudWatch metrics.
e. (Optional) Select Disable scale in to create only a scale-out policy. This allows you to create a
separate scale-in policy of a diﬀerent type if wanted.
7. Proceed to create the Auto Scaling group. Your scaling policy will be created after the Auto Scaling
group has been created.

To create a target tracking scaling policy for an existing Auto Scaling group

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. Verify that the minimum capacity and maximum capacity are appropriately set. For example, if
your group is already at its maximum size, specify a new maximum in order to scale out. Amazon
EC2 Auto Scaling does not scale your group below the minimum capacity or above the maximum
capacity. To update your group, on the Details tab, change the current settings for minimum and
maximum capacity.
4. On the Automatic scaling tab, in Dynamic scaling policies, choose Create dynamic scaling policy.
5. To deﬁne a policy, do the following:

a. For Policy type, leave the default of Target tracking scaling.

b. Specify a name for the policy.
c. For Metric type, choose a metric. You can choose only one metric type. To use more than one
metric, create multiple policies.

If you chose Application Load Balancer request count per target, choose a target group in
Target group.

157
Amazon EC2 Auto Scaling User Guide
Target tracking scaling policies

d. Specify a Target value for the metric.

e. (Optional) Specify an instance warm-up value for Instances need. This allows you to control the
time until a newly launched instance can contribute to the CloudWatch metrics.
f. (Optional) Select Disable scale in to create only a scale-out policy. This allows you to create a
separate scale-in policy of a diﬀerent type if wanted.
6. Choose Create.

Create a target tracking scaling policy (AWS CLI)

Use the AWS CLI as follows to conﬁgure target tracking scaling policies for your Auto Scaling group.

Tasks
• Step 1: Create an Auto Scaling group (p. 158)
• Step 2: Create a target tracking scaling policy (p. 158)

Step 1: Create an Auto Scaling group

Use the create-auto-scaling-group command to create an Auto Scaling group named my-asg using the
launch configuration my-launch-config. If you don't have a launch configuration that you'd like to
use, you can create one by calling create-launch-configuration.

aws autoscaling create-auto-scaling-group --auto-scaling-group-name my-asg \

--launch-configuration-name my-launch-config \
--vpc-zone-identifier "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782" \
--max-size 5 --min-size 1

Step 2: Create a target tracking scaling policy

After you have created the Auto Scaling group, you can create a target tracking scaling policy that
instructs Amazon EC2 Auto Scaling to increase and decrease the number of running EC2 instances in the
group dynamically when the load on the application changes.

Example: target tracking conﬁguration ﬁle

The following is an example target tracking configuration that keeps the average CPU utilization at 40
percent. Save this configuration in a file named config.json.

{
"TargetValue": 40.0,
"PredefinedMetricSpecification":
{
"PredefinedMetricType": "ASGAverageCPUUtilization"
}
}

For more information, see PredeﬁnedMetricSpeciﬁcation in the Amazon EC2 Auto Scaling API Reference.

Alternatively, you can customize the metric used for scaling by creating a customized metric specification
and adding values for each parameter from CloudWatch. The following is an example target tracking
configuration that keeps the average utilization of the specified metric at 40 percent.

{
"TargetValue":40.0,
"CustomizedMetricSpecification":{
"MetricName":"MyUtilizationMetric",

158
Amazon EC2 Auto Scaling User Guide
Step and simple scaling policies

"Namespace":"MyNamespace",
"Dimensions":[
{
"Name":"MyOptionalMetricDimensionName",
"Value":"MyOptionalMetricDimensionValue"
}
],
"Statistic":"Average",
"Unit":"Percent"
}
}

For more information, see CustomizedMetricSpeciﬁcation in the Amazon EC2 Auto Scaling API Reference.

Example: cpu40-target-tracking-scaling-policy

Use the put-scaling-policy command, along with the config.json ﬁle that you created previously, to
create a scaling policy named cpu40-target-tracking-scaling-policy that keeps the average
CPU utilization of the Auto Scaling group at 40 percent.

aws autoscaling put-scaling-policy --policy-name cpu40-target-tracking-scaling-policy \

--auto-scaling-group-name my-asg --policy-type TargetTrackingScaling \
--target-tracking-configuration file://config.json

If successful, this command returns the ARNs and names of the two CloudWatch alarms created on your
behalf.

{
"PolicyARN": "arn:aws:autoscaling:region:account-id:scalingPolicy:228f02c2-c665-4bfd-
aaac-8b04080bea3c:autoScalingGroupName/my-asg:policyName/cpu40-target-tracking-scaling-
policy",
"Alarms": [
{
"AlarmARN": "arn:aws:cloudwatch:region:account-id:alarm:TargetTracking-my-asg-
AlarmHigh-fc0e4183-23ac-497e-9992-691c9980c38e",
"AlarmName": "TargetTracking-my-asg-AlarmHigh-
fc0e4183-23ac-497e-9992-691c9980c38e"
},
{
"AlarmARN": "arn:aws:cloudwatch:region:account-id:alarm:TargetTracking-my-asg-
AlarmLow-61a39305-ed0c-47af-bd9e-471a352ee1a2",
"AlarmName": "TargetTracking-my-asg-AlarmLow-61a39305-ed0c-47af-
bd9e-471a352ee1a2"
}
]
}

Step and simple scaling policies for Amazon EC2 Auto

Scaling
With step scaling and simple scaling, you choose scaling metrics and threshold values for the
CloudWatch alarms that invoke the scaling process. You also deﬁne how your Auto Scaling group should
be scaled when a threshold is in breach for a speciﬁed number of evaluation periods.

We strongly recommend that you use a target tracking scaling policy to scale on a metric like average
CPU utilization or the RequestCountPerTarget metric from the Application Load Balancer.
Metrics that decrease when capacity increases and increase when capacity decreases can be used to
proportionally scale out or in the number of instances using target tracking. This helps ensure that
Amazon EC2 Auto Scaling follows the demand curve for your applications closely. For more information,

159
Amazon EC2 Auto Scaling User Guide
Step and simple scaling policies

see Target tracking scaling policies (p. 154). You still have the option to use step scaling as an
additional policy for a more advanced conﬁguration. For example, you can conﬁgure a more aggressive
response when demand reaches a certain level.

Contents
• Diﬀerences between step scaling policies and simple scaling policies (p. 160)
• Step adjustments for step scaling (p. 160)
• Scaling adjustment types (p. 162)
• Instance warm-up (p. 163)
• Create a CloudWatch alarm (console) (p. 163)
• Create step scaling policies (console) (p. 165)
• Create scaling policies and CloudWatch alarms (AWS CLI) (p. 166)
• Step 1: Create an Auto Scaling group (p. 166)
• Step 2: Create scaling policies (p. 166)
• Step scaling policies (p. 166)
• Simple scaling policies (p. 167)
• Step 3: Create CloudWatch alarms (p. 168)

Diﬀerences between step scaling policies and simple scaling

policies
Step scaling policies and simple scaling policies are two of the dynamic scaling options available for
you to use. Both require you to create CloudWatch alarms for the scaling policies. Both require you to
specify the high and low thresholds for the alarms. Both require you to deﬁne whether to add or remove
instances, and how many, or set the group to an exact size.

The main diﬀerence between the policy types is the step adjustments that you get with step scaling
policies. When step adjustments are applied, and they increase or decrease the current capacity of your
Auto Scaling group, the adjustments vary based on the size of the alarm breach.

In most cases, step scaling policies are a better choice than simple scaling policies, even if you have only
a single scaling adjustment.

The main issue with simple scaling is that after a scaling activity is started, the policy must wait for the
scaling activity or health check replacement to complete and the cooldown period (p. 168) to expire
before responding to additional alarms. Cooldown periods help to prevent the initiation of additional
scaling activities before the eﬀects of previous activities are visible.

In contrast, with step scaling the policy can continue to respond to additional alarms, even while a
scaling activity or health check replacement is in progress. Therefore, all alarms that are breached are
evaluated by Amazon EC2 Auto Scaling as it receives the alarm messages.

Amazon EC2 Auto Scaling originally supported only simple scaling policies. If you created your scaling
policy before target tracking and step policies were introduced, your policy is treated as a simple scaling
policy.

Step adjustments for step scaling

When you create a step scaling policy, you specify one or more step adjustments that automatically
scale the number of instances dynamically based on the size of the alarm breach. Each step adjustment
speciﬁes the following:

• A lower bound for the metric value

160
Amazon EC2 Auto Scaling User Guide
Step and simple scaling policies

• An upper bound for the metric value

• The amount by which to scale, based on the scaling adjustment type

CloudWatch aggregates metric data points based on the statistic for the metric that is associated with
your CloudWatch alarm. When the alarm is breached, the appropriate scaling policy is triggered. Amazon
EC2 Auto Scaling applies the aggregation type to the most recent metric data points from CloudWatch
(as opposed to the raw metric data). It compares this aggregated metric value against the upper and
lower bounds deﬁned by the step adjustments to determine which step adjustment to perform.

You specify the upper and lower bounds relative to the breach threshold. For example, let's say that you
have an Auto Scaling group that has both a current capacity and a desired capacity of 10. You have a
CloudWatch alarm with a breach threshold of 50 percent and scale-out and scale-in policies. You have a
set of step adjustments with an adjustment type of PercentChangeInCapacity (or Percent of group
in the console) for each policy:

Example: Step adjustments for scale-out policy

Lower bound Upper bound Adjustment

0 10 0

10 20 10

20 null 30

Example: Step adjustments for scale-in policy

Lower bound Upper bound Adjustment

-10 0 0

-20 -10 -10

null -20 -30

This creates the following scaling conﬁguration.

Metric value

-infinity 30% 40% 60% 70% infinity

-----------------------------------------------------------------------
-30% | -10% | Unchanged | +10% | +30%
-----------------------------------------------------------------------

The following points summarize the behavior of the scaling conﬁguration in relation to the desired and
current capacity of the group:

• The desired and current capacity is maintained while the aggregated metric value is greater than 40
and less than 60.
• If the metric value gets to 60, the desired capacity of the group increases by 1 instance, to 11
instances, based on the second step adjustment of the scale-out policy (add 10 percent of 10
instances). After the new instance is running and its speciﬁed warm-up time has expired, the current
capacity of the group increases to 11 instances. If the metric value rises to 70 even after this increase
in capacity, the desired capacity of the group increases by another 3 instances, to 14 instances. This
is based on the third step adjustment of the scale-out policy (add 30 percent of 11 instances, 3.3
instances, rounded down to 3 instances).

161
Amazon EC2 Auto Scaling User Guide
Step and simple scaling policies

• If the metric value gets to 40, the desired capacity of the group decreases by 1 instance, to 13
instances, based on the second step adjustment of the scale-in policy (remove 10 percent of 14
instances, 1.4 instances, rounded down to 1 instance). If the metric value falls to 30 even after this
decrease in capacity, the desired capacity of the group decreases by another 3 instances, to 10
instances. This is based on the third step adjustment of the scale-in policy (remove 30 percent of 13
instances, 3.9 instances, rounded down to 3 instances).

When you specify the step adjustments for your scaling policy, note the following:

• If you are using the AWS Management Console, you specify the upper and lower bounds as absolute
values. If you are using the AWS CLI or an SDK, you specify the upper and lower bounds relative to the
breach threshold.
• The ranges of your step adjustments can't overlap or have a gap.
• Only one step adjustment can have a null lower bound (negative inﬁnity). If one step adjustment has a
negative lower bound, then there must be a step adjustment with a null lower bound.
• Only one step adjustment can have a null upper bound (positive inﬁnity). If one step adjustment has a
positive upper bound, then there must be a step adjustment with a null upper bound.
• The upper and lower bound can't be null in the same step adjustment.
• If the metric value is above the breach threshold, the lower bound is inclusive and the upper bound is
exclusive. If the metric value is below the breach threshold, the lower bound is exclusive and the upper
bound is inclusive.

Scaling adjustment types

You can deﬁne a scaling policy that performs the optimal scaling action, based on the scaling adjustment
type that you choose. You can specify the adjustment type as a percentage of the current capacity of
your Auto Scaling group, or in capacity units. Normally a capacity unit means one instance, unless you
are using the instance weighting feature.

Amazon EC2 Auto Scaling supports the following adjustment types for step scaling and simple scaling:

• ChangeInCapacity — Increment or decrement the current capacity of the group by the specified
value. A positive value increases the capacity and a negative adjustment value decreases the capacity.
For example: If the current capacity of the group is 3 and the adjustment is 5, then when this policy is
performed, we add 5 capacity units to the capacity for a total of 8 capacity units.
• ExactCapacity — Change the current capacity of the group to the specified value. Specify a
positive value with this adjustment type. For example: If the current capacity of the group is 3 and the
adjustment is 5, then when this policy is performed, we change the capacity to 5 capacity units.
• PercentChangeInCapacity — Increment or decrement the current capacity of the group by the
specified percentage. A positive value increases the capacity and a negative value decreases the
capacity. For example: If the current capacity is 10 and the adjustment is 10 percent, then when this
policy is performed, we add 1 capacity unit to the capacity for a total of 11 capacity units.
Note
If the resulting value is not an integer, it is rounded as follows:
• Values greater than 1 are rounded down. For example, 12.7 is rounded to 12.
• Values between 0 and 1 are rounded to 1. For example, .67 is rounded to 1.
• Values between 0 and -1 are rounded to -1. For example, -.58 is rounded to -1.
• Values less than -1 are rounded up. For example, -6.67 is rounded to -6.

With PercentChangeInCapacity, you can also specify the minimum number of instances to scale
using the MinAdjustmentMagnitude parameter. For example, suppose that you create a policy that

162
Amazon EC2 Auto Scaling User Guide
Step and simple scaling policies

adds 25 percent and you specify a minimum increment of 2 instances. If you have an Auto Scaling group
with 4 instances and the scaling policy is executed, 25 percent of 4 is 1 instance. However, because you
speciﬁed a minimum increment of 2, there are 2 instances added.

When instance weighting (p. 72) is used, the eﬀect of setting the MinAdjustmentMagnitude
parameter to a non-zero value changes. The value is in capacity units. To set the minimum number of
instances to scale, set this parameter to a value that is at least as large as your largest instance weight.

If you are using instance weighting, keep in mind that the current capacity of your Auto Scaling group
can exceed the desired capacity as needed. If your absolute number to decrement, or the amount that
the percentage says to decrement, is less than the diﬀerence between current and desired capacity, no
scaling action is taken. You must take these behaviors into account when you look at the outcome of a
scaling policy when an alarm is triggered. For example, suppose that the desired capacity is 30 and the
current capacity is 32. When the alarm is triggered, if the scaling policy decrements the desired capacity
by 1, then no scaling action is taken.

Instance warm-up
If you are creating a step policy, you can specify the number of seconds that it takes for a newly launched
instance to warm up. Until its speciﬁed warm-up time has expired, an instance is not counted toward the
aggregated metrics of the Auto Scaling group.

Using the example in the Step Adjustments section, suppose that the metric gets to 60, and then it gets
to 62 while the new instance is still warming up. The current capacity is still 10 instances, so 1 instance
is added (10 percent of 10 instances). However, the desired capacity of the group is already 11 instances,
so the scaling policy does not increase the desired capacity further. If the metric gets to 70 while the
new instance is still warming up, we should add 3 instances (30 percent of 10 instances). However, the
desired capacity of the group is already 11, so we add only 2 instances, for a new desired capacity of 13
instances.

While scaling out, we do not consider instances that are warming up as part of the current capacity of
the group. Therefore, multiple alarm breaches that fall in the range of the same step adjustment result
in a single scaling activity. This ensures that we don't add more instances than you need.

While scaling in, we consider instances that are terminating as part of the current capacity of the group.
Therefore, we don't remove more instances from the Auto Scaling group than necessary.

A scale-in activity can't start while a scale-out activity is in progress.

Create a CloudWatch alarm (console)

You can use the following procedure to create two CloudWatch alarms, one for scaling out (alarm
high) and the other for scaling in (alarm low). When the specified threshold of an alarm is reached, for
example, because the traffic has increased, the alarm goes into the ALARM state. This state change sends
a notification to the scaling policy associated with the alarm. The policy then instructs Amazon EC2
Auto Scaling how to respond to the notification, such as by adding or removing a specified number of
instances.

To create a CloudWatch alarm that monitors CPU utilization

1. Open the CloudWatch console at https://console.aws.amazon.com/cloudwatch/.

2. If necessary, change the region. From the navigation bar, select the region where your Auto Scaling
group resides.
3. In the navigation pane, choose Alarms and then choose Create alarm.
4. Choose Select metric.

163
Amazon EC2 Auto Scaling User Guide
Step and simple scaling policies

5. On the All metrics tab, choose EC2, By Auto Scaling Group, and enter the Auto Scaling group's
name in the search ﬁeld. Then, select CPUUtilization and choose Select metric. The Specify
metric and conditions page appears, showing a graph and other information about the metric.
6. For Period, choose the evaluation period for the alarm, for example, 1 minute. When evaluating the
alarm, each period is aggregated into one data point.
Note
A shorter period creates a more sensitive alarm.
7. Under Conditions, do the following:

• For Threshold type, choose Static.

• For Whenever CPUUtilization is, specify whether you want the value of the metric to be
greater than, greater than or equal to, less than, or less than or equal to the threshold to trigger
the alarm. Then, under than, enter the threshold value that you want to trigger the alarm.
Important
For an alarm to use with a scale-out policy (alarm high), make sure you do not choose
less than or less than or equal to the threshold. For an alarm to use with a scale-in policy
(alarm low), make sure you do not choose greater than or greater than or equal to the
threshold.
8. Under Additional conﬁguration, do the following:

• For Datapoints to alarm, enter the number of data points (evaluation periods) during which
the metric value must meet the threshold conditions to trigger the alarm. For example, two
consecutive periods of 5 minutes would take 10 minutes to trigger the alarm.
• For Missing data treatment, choose Treat missing data as bad (breaching threshold). For
more information, see Configuring how CloudWatch alarms treat missing data in the Amazon
CloudWatch User Guide.
9. Choose Next.
10. (Optional) Under Notification, you can choose or create the Amazon SNS topic you want to use to
receive notifications. Otherwise, you can remove the notification now and add one later as needed.
11. Choose Next.
12. Enter a name (for example, Step-Scaling-AlarmHigh-AddCapacity) and, optionally, a
description for the alarm, and then choose Next.
13. Choose Create alarm.

Example: CloudWatch alarm that triggers whenever CPU breaches the 80 percent threshold

164
Amazon EC2 Auto Scaling User Guide
Step and simple scaling policies

Create step scaling policies (console)

The following procedure shows you how to use the Amazon EC2 Auto Scaling console to create two step
scaling policies: a scale-out policy that increases the capacity of the group by 30 percent, and a scale-in
policy that decreases the capacity of the group to two instances.

While you are conﬁguring your scaling policies, you can create the alarms at the same time. Alternatively,
you can use alarms that you created from the CloudWatch console, as described in the previous section.

To create a step scaling policy for scale out

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. Verify that the minimum and maximum size limits are appropriately set. For example, if your group
is already at its maximum size, you need to specify a new maximum in order to scale out. Amazon
EC2 Auto Scaling does not scale your group below the minimum capacity or above the maximum
capacity. To update your group, on the Details tab, change the current settings for minimum and
maximum capacity.
4. On the Automatic scaling tab, in Dynamic scaling policies, choose Create dynamic scaling policy.
5. To deﬁne a policy for scale out (increase capacity), do the following:

a. For Policy type, choose Step scaling.

b. Specify a name for the policy.
c. For CloudWatch alarm, choose your alarm. If you haven't already created an alarm, choose
Create a CloudWatch alarm and complete Step 4 (p. 163) through Step 13 (p. 164) to create
an alarm that monitors CPU utilization. Set the alarm threshold to greater than or equal to 80
percent.
d. Specify the change in the current group size that this policy will make when executed using
Take the action. You can add a speciﬁc number of instances or a percentage of the existing
group size, or set the group to an exact size.

For example, choose Add, enter 30 in the next field, and then choose percent of group. By
default, the lower bound for this step adjustment is the alarm threshold and the upper bound is
positive (+) infinity.
e. To add another step, choose Add step and then define the amount by which to scale and the
lower and upper bounds of the step relative to the alarm threshold.
f. To set a minimum number of instances to scale, update the number field in Add capacity units
in increments of at least 1 capacity units.
g. Specify an instance warm-up value for Instances need, which allows you to control the amount
of time until a newly launched instance can contribute to the CloudWatch metrics.
6. Choose Create.

To create a step scaling policy for scale in

1. Choose Create dynamic scaling policy to continue where you left oﬀ after creating a policy for scale
out.
2. To deﬁne a policy for scale in (decrease capacity), do the following:

a. For Policy type, choose Step scaling.

b. Specify a name for the policy.

165
Amazon EC2 Auto Scaling User Guide
Step and simple scaling policies

c. For CloudWatch alarm, choose your alarm. If you haven't already created an alarm, choose
Create a CloudWatch alarm and complete Step 4 (p. 163) through Step 13 (p. 164) to create
an alarm that monitors CPU utilization. Set the alarm threshold to less than or equal to 40
percent.
d. Specify the change in the current group size that this policy will make when executed using
Take the action. You can remove a speciﬁc number of instances or a percentage of the existing
group size, or set the group to an exact size.

For example, choose Remove, enter 2 in the next field, and then choose capacity units. By
default, the upper bound for this step adjustment is the alarm threshold and the lower bound is
negative (-) infinity.
e. To add another step, choose Add step and then define the amount by which to scale and the
lower and upper bounds of the step relative to the alarm threshold.
3. Choose Create.

Create scaling policies and CloudWatch alarms (AWS CLI)

Use the AWS CLI as follows to conﬁgure step or simple scaling policies for your Auto Scaling group.

Tasks
• Step 1: Create an Auto Scaling group (p. 166)
• Step 2: Create scaling policies (p. 166)
• Step 3: Create CloudWatch alarms (p. 168)

Step 1: Create an Auto Scaling group

Use the following create-auto-scaling-group command to create an Auto Scaling group named my-asg
using the launch configuration my-launch-config. If you don't have a launch configuration that you'd
like to use, you can create one by calling create-launch-configuration.

aws autoscaling create-auto-scaling-group --auto-scaling-group-name my-asg \

--launch-configuration-name my-launch-config \
--vpc-zone-identifier "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782" \
--max-size 5 --min-size 1

Step 2: Create scaling policies

You can create step or simple scaling policies that tell the Auto Scaling group what to do when the load
on the application changes.

Step scaling policies

Example: my-step-scale-out-policy

Use the following put-scaling-policy command to create a step scaling policy named my-step-scale-
out-policy, with an adjustment type of PercentChangeInCapacity that increases the capacity
of the group based on the following step adjustments (assuming a CloudWatch alarm threshold of 60
percent):

• Increase the instance count by 10 percent when the value of the metric is greater than or equal to 70
percent but less than 80 percent
• Increase the instance count by 20 percent when the value of the metric is greater than or equal to 80
percent but less than 90 percent

166
Amazon EC2 Auto Scaling User Guide
Step and simple scaling policies

• Increase the instance count by 30 percent when the value of the metric is greater than or equal to 90
percent

aws autoscaling put-scaling-policy \

--auto-scaling-group-name my-asg \
--policy-name my-step-scale-out-policy \
--policy-type StepScaling \
--adjustment-type PercentChangeInCapacity \
--metric-aggregation-type Average \
--step-adjustments
MetricIntervalLowerBound=10.0,MetricIntervalUpperBound=20.0,ScalingAdjustment=10 \

MetricIntervalLowerBound=20.0,MetricIntervalUpperBound=30.0,ScalingAdjustment=20 \
MetricIntervalLowerBound=30.0,ScalingAdjustment=30 \
--min-adjustment-magnitude 1

Record the policy's Amazon Resource Name (ARN). You need it to create a CloudWatch alarm for the
policy.

{
"PolicyARN": "arn:aws:autoscaling:region:123456789012:scalingPolicy:4ee9e543-86b5-4121-
b53b-aa4c23b5bbcc:autoScalingGroupName/my-asg:policyName/my-step-scale-in-policy
}

Example: my-step-scale-in-policy

Use the following put-scaling-policy command to create a step scaling policy named my-step-scale-
in-policy, with an adjustment type of ChangeInCapacity that decreases the capacity of the group
by 2 instances.

aws autoscaling put-scaling-policy \

--auto-scaling-group-name my-asg \
--policy-name my-step-scale-in-policy \
--policy-type StepScaling \
--adjustment-type ChangeInCapacity \
--step-adjustments MetricIntervalUpperBound=0.0,ScalingAdjustment=-2

Record the policy's Amazon Resource Name (ARN). You need it to create a CloudWatch alarm for the
policy.

{
"PolicyARN": "arn:aws:autoscaling:region:123456789012:scalingPolicy:ac542982-
cbeb-4294-891c-a5a941dfa787:autoScalingGroupName/my-asg:policyName/my-step-scale-out-policy
}

Simple scaling policies

Alternatively, you can create simple scaling policies by using the following CLI commands instead of the
preceding CLI commands. Keep in mind that a cooldown period will be in place due to the use of simple
scaling policies.

Example: my-simple-scale-out-policy

Use the following put-scaling-policy command to create a simple scaling policy named my-simple-
scale-out-policy, with an adjustment type of PercentChangeInCapacity that increases the
capacity of the group by 30 percent.

aws autoscaling put-scaling-policy --policy-name my-simple-scale-out-policy \

167
Amazon EC2 Auto Scaling User Guide
Scaling cooldowns

--auto-scaling-group-name my-asg --scaling-adjustment 30 \

--adjustment-type PercentChangeInCapacity

Record the policy's Amazon Resource Name (ARN). You need it to create a CloudWatch alarm for the
policy.

Example: my-simple-scale-in-policy

Use the following put-scaling-policy command to create a simple scaling policy named my-simple-
scale-in-policy, with an adjustment type of ChangeInCapacity that decreases the capacity of the
group by one instance.

aws autoscaling put-scaling-policy --policy-name my-simple-scale-in-policy \

--auto-scaling-group-name my-asg --scaling-adjustment -1 \
--adjustment-type ChangeInCapacity --cooldown 180

Record the policy's Amazon Resource Name (ARN). You need it to create a CloudWatch alarm for the
policy.

Step 3: Create CloudWatch alarms

In step 2, you created scaling policies that provided instructions to the Auto Scaling group about how
to scale in and scale out when the conditions that you specify change. In this step, you create alarms by
identifying the metrics to watch, deﬁning the conditions for scaling, and then associating the alarms
with the scaling policies.

Example: AddCapacity

Use the following CloudWatch put-metric-alarm command to create an alarm that increases the size
of the Auto Scaling group based on an average CPU threshold value of 60 percent for at least two
consecutive evaluation periods of two minutes. To use your own custom metric, specify its name in --
metric-name and its namespace in --namespace.

aws cloudwatch put-metric-alarm --alarm-name Step-Scaling-AlarmHigh-AddCapacity \

--metric-name CPUUtilization --namespace AWS/EC2 --statistic Average \
--period 120 --evaluation-periods 2 --threshold 60 \
--comparison-operator GreaterThanOrEqualToThreshold \
--dimensions "Name=AutoScalingGroupName,Value=my-asg" \
--alarm-actions PolicyARN

Example: RemoveCapacity

Use the following CloudWatch put-metric-alarm command to create an alarm that decreases the size of
the Auto Scaling group based on average CPU threshold value of 40 percent for at least two consecutive
evaluation periods of two minutes. To use your own custom metric, specify its name in --metric-name
and its namespace in --namespace.

aws cloudwatch put-metric-alarm --alarm-name Step-Scaling-AlarmLow-RemoveCapacity \

--metric-name CPUUtilization --namespace AWS/EC2 --statistic Average \
--period 120 --evaluation-periods 2 --threshold 40 \
--comparison-operator LessThanOrEqualToThreshold \
--dimensions "Name=AutoScalingGroupName,Value=my-asg" \
--alarm-actions PolicyARN

Scaling cooldowns for Amazon EC2 Auto Scaling

A scaling cooldown helps you prevent your Auto Scaling group from launching or terminating additional
instances before the eﬀects of previous activities are visible.

168
Amazon EC2 Auto Scaling User Guide
Scaling cooldowns

When you use simple scaling, after the Auto Scaling group scales using a simple scaling policy, it waits
for a cooldown period to complete before any further scaling activities initiated by simple scaling policies
can start. An adequate cooldown period helps to prevent the initiation of an additional scaling activity
based on stale metrics. By default, all simple scaling policies use the default cooldown period associated
with your Auto Scaling group, but you can configure a different cooldown period for certain policies,
as described in the following sections. For more information about simple scaling, see Step and simple
scaling policies (p. 159).
Important
In most cases, a target tracking scaling policy or a step scaling policy is more optimal for scaling
performance than waiting for a fixed period of time to pass after there is a scaling activity. For
a scaling policy that changes the size of your Auto Scaling group proportionally as the value of
the scaling metric decreases or increases, we recommend target tracking (p. 154) over either
simple scaling or step scaling.

During a cooldown period, when a scheduled action starts at the scheduled time, or when scaling
activities due to target tracking or step scaling policies start, they can trigger a scaling activity
immediately without waiting for the cooldown period to expire. If an instance becomes unhealthy,
Amazon EC2 Auto Scaling also does not wait for the cooldown period to complete before replacing the
unhealthy instance.

When you manually scale your Auto Scaling group, the default is not to wait for the cooldown period to
complete, but you can override this behavior and honor the cooldown period when you call the API.

Contents
• Default cooldown period (p. 169)
• Scaling-speciﬁc cooldown period (p. 170)
• Example simple scaling cooldown scenario (p. 170)
• Cooldowns and multiple instances (p. 171)
• Cooldowns and lifecycle hooks (p. 171)

Default cooldown period

A default cooldown period automatically applies to any scaling activities for simple scaling policies,
and you can optionally request to have it apply to your manual scaling activities. You can conﬁgure the
length of time based on your instance startup time or other application needs.

When you use the AWS Management Console to update an Auto Scaling group, or when you use the
AWS CLI or an SDK to create or update an Auto Scaling group, you can set the optional default cooldown
parameter. If a value for the default cooldown period is not provided, its default value is 300 seconds.

To modify a default cooldown period (console)

169
Amazon EC2 Auto Scaling User Guide
Scaling cooldowns

Create the Auto Scaling group in the usual way. After creating the Auto Scaling group, edit the group to
specify the default cooldown period.

To modify a default cooldown period (AWS CLI)

Use one of the following commands:

• create-auto-scaling-group
• update-auto-scaling-group

Scaling-speciﬁc cooldown period

In addition to specifying the default cooldown period for your Auto Scaling group, you can create
cooldowns that apply to a speciﬁc simple scaling policy. A scaling-speciﬁc cooldown period overrides the
default cooldown period.

One common use for a scaling-speciﬁc cooldown period is with a scale-in policy. Because this policy
terminates instances, Amazon EC2 Auto Scaling needs less time to determine whether to terminate
additional instances. Terminating instances should be a much quicker operation than launching
instances. The default cooldown period of 300 seconds is therefore too long. In this case, a scaling-
speciﬁc cooldown period with a lower value of 180 seconds for your scale-in policy can help you reduce
costs by allowing the group to scale in faster.

To specify a scaling-speciﬁc cooldown period, use the optional cooldown parameter when you create or
update a simple scaling policy. For more information, see Step and simple scaling policies (p. 159).

Example simple scaling cooldown scenario

Consider the following scenario: you have a web application running in AWS. This web application
consists of three basic tiers: web, application, and database. To make sure that the application always has
the resources to meet traﬃc demands, you create two Auto Scaling groups: one for your web tier and
one for your application tier.

To help ensure that the group for the application tier has the appropriate number of EC2 instances, you
create a simple scaling policy to scale out whenever the value for the CloudWatch metric associated with
the scaling policy exceeds a specified threshold for consecutive specified periods. When the CloudWatch
alarm triggers the scaling policy, the Auto Scaling group launches and configures another instance.

These instances use a conﬁguration script to install and conﬁgure software before the instance is put
into service. As a result, it takes around two or three minutes from the time the instance launches until
it's fully in service. The actual time depends on several factors, such as the size of the instance and
whether there are startup scripts to complete.

Now a spike in traffic occurs, causing the CloudWatch alarm to fire. When it does, the Auto Scaling group
launches an instance to help with the increase in demand. However, there's a problem: the instance takes
a couple of minutes to launch. During that time, the CloudWatch alarm could continue to fire every
minute for any standard resolution alarm, causing the Auto Scaling group to launch another instance
each time the alarm fires.

170
Amazon EC2 Auto Scaling User Guide
Scaling cooldowns

However, with a cooldown period in place, the Auto Scaling group launches an instance and then
blocks scaling activities due to simple scaling policies until the specified time elapses. (The default
is 300 seconds.) This gives newly launched instances time to start handling application traffic. After
the cooldown period expires, any scaling activities that are triggered after the cooldown period can
resume. If the CloudWatch alarm fires again, the Auto Scaling group launches another instance, and the
cooldown period takes effect again. However, if the additional instance was enough to bring the metric
value back down, the group remains at its current size.

Cooldowns and multiple instances

The preceding section provides examples that show how cooldown periods aﬀect Auto Scaling groups
when a single instance launches or terminates. However, it is common for Auto Scaling groups to launch
more than one instance at a time. For example, you might choose to have the Auto Scaling group launch
three instances when a speciﬁc metric threshold is met.

With multiple instances, the cooldown period (either the default cooldown or the scaling-specific
cooldown) takes effect starting when the last instance finishes launching or terminating.

Cooldowns and lifecycle hooks

You have the option to add lifecycle hooks to your Auto Scaling groups. These hooks enable you to
control how instances launch and terminate within an Auto Scaling group so that you can perform
custom actions on an instance before it is put into service or before it is terminated. When a lifecycle
action occurs, and an instance enters the wait state, scaling activities due to simple scaling policies are
paused. For more information, see Amazon EC2 Auto Scaling lifecycle hooks (p. 204).

Lifecycle hooks can affect the start time of any cooldown periods configured for the Auto Scaling group.
For example, consider an Auto Scaling group that has a lifecycle hook that supports a custom action at
instance launch. When the application experiences an increase in demand due to a simple scaling policy,
the group launches an instance to add capacity. Because there is a lifecycle hook, the instance is put into
the Pending:Wait state, which means that it is not available to handle traffic yet. When the instance
enters the wait state, scaling activities due to simple scaling policies are paused. When the instance
enters the InService state, the cooldown period starts. When the cooldown period expires, any scaling
activities that are triggered after the cooldown period can resume.

Not all cooldowns are applied after the execution of lifecycle hooks

Usually, when an instance is terminating, the cooldown period does not begin until after the instance
moves out of the Terminating:Wait state (after the lifecycle hook execution is complete).

However, with Elastic Load Balancing, the Auto Scaling group starts the cooldown period when the
terminating instance ﬁnishes connection draining (deregistration delay) by the load balancer and does

171
Amazon EC2 Auto Scaling User Guide
Scaling based on Amazon SQS

not wait for the lifecycle hook. This is helpful for groups that have simple scaling policies for both scale
in and scale out. The intention of a cooldown period is to allow the next scaling activity to occur as soon
as the effects of the previous activities are visible. If an instance is terminating and then demand for your
application suddenly increases, any scaling activities due to simple scaling policies that are paused can
resume after connection draining and a cooldown period finishes. Otherwise, waiting to complete all
three activities—connection draining, a lifecycle hook, and a cooldown period— significantly increases
the amount of time that the Auto Scaling group needs to pause scaling.

Scaling based on Amazon SQS

This section shows you how to scale your Auto Scaling group in response to changes in system load in an
Amazon Simple Queue Service (Amazon SQS) queue. To learn more about how you can use Amazon SQS,
see the Amazon Simple Queue Service Developer Guide.

There are some scenarios where you might think about scaling in response to activity in an Amazon
SQS queue. For example, suppose that you have a web app that lets users upload images and use them
online. In this scenario, each image requires resizing and encoding before it can be published. The app
runs on EC2 instances in an Auto Scaling group, and it's conﬁgured to handle your typical upload rates.
Unhealthy instances are terminated and replaced to maintain current instance levels at all times. The
app places the raw bitmap data of the images in an SQS queue for processing. It processes the images
and then publishes the processed images where they can be viewed by users. The architecture for this
scenario works well if the number of image uploads doesn't vary over time. But if the number of uploads
changes over time, you might consider using dynamic scaling to scale the capacity of your Auto Scaling
group.

Using target tracking with the right metric

If you use a target tracking scaling policy based on a custom Amazon SQS queue metric, dynamic
scaling can adjust to the demand curve of your application more eﬀectively. For more information about
choosing metrics for target tracking, see Choosing metrics (p. 155).

The issue with using a CloudWatch Amazon SQS metric like ApproximateNumberOfMessagesVisible
for target tracking is that the number of messages in the queue might not change proportionally to the
size of the Auto Scaling group that processes messages from the queue. That's because the number of
messages in your SQS queue does not solely deﬁne the number of instances needed. The number of
instances in your Auto Scaling group can be driven by multiple factors, including how long it takes to
process a message and the acceptable amount of latency (queue delay).

The solution is to use a backlog per instance metric with the target value being the acceptable backlog per
instance to maintain. You can calculate these numbers as follows:

• Backlog per instance: To calculate your backlog per instance, start with the
ApproximateNumberOfMessages queue attribute to determine the length of the SQS queue
(number of messages available for retrieval from the queue). Divide that number by the ﬂeet's running
capacity, which for an Auto Scaling group is the number of instances in the InService state, to get
the backlog per instance.
• Acceptable backlog per instance: To calculate your target value, ﬁrst determine what your application
can accept in terms of latency. Then, take the acceptable latency value and divide it by the average
time that an EC2 instance takes to process a message.

To illustrate with an example, let's say that the current ApproximateNumberOfMessages is 1500
and the fleet's running capacity is 10. If the average processing time is 0.1 seconds for each message
and the longest acceptable latency is 10 seconds, then the acceptable backlog per instance is 10 / 0.1,
which equals 100. This means that 100 is the target value for your target tracking policy. If the backlog
per instance is currently at 150 (1500 / 10), your fleet scales out, and it scales out by five instances to
maintain proportion to the target value.

172
Amazon EC2 Auto Scaling User Guide
Scaling based on Amazon SQS

The following procedures demonstrate how to publish the custom metric and create the target tracking
scaling policy that conﬁgures your Auto Scaling group to scale based on these calculations.

There are three main parts to this conﬁguration:

• An Auto Scaling group to manage EC2 instances for the purposes of processing messages from an SQS
queue.
• A custom metric to send to Amazon CloudWatch that measures the number of messages in the queue
per EC2 instance in the Auto Scaling group.
• A target tracking policy that conﬁgures your Auto Scaling group to scale based on the custom metric
and a set target value. CloudWatch alarms invoke the scaling policy.

The following diagram illustrates the architecture of this conﬁguration.

Limitations and prerequisites

To use this conﬁguration, you need to be aware of the following limitations:

• You must use the AWS CLI or an SDK to publish your custom metric to CloudWatch. You can then
monitor your metric with the AWS Management Console.
• After publishing your custom metric, you must use the AWS CLI or an SDK to create a target tracking
scaling policy with a customized metric speciﬁcation.

The following sections direct you to use the AWS CLI for the tasks you need to perform. For example,
to get metric data that reﬂects the present use of the queue, you use the SQS get-queue-attributes
command. Make sure that you have the CLI installed and conﬁgured.

Before you begin, you must have an Amazon SQS queue to use. The following sections assume that
you already have a queue (standard or FIFO), an Auto Scaling group, and EC2 instances running the
application that uses the queue. For more information about Amazon SQS, see the Amazon Simple
Queue Service Developer Guide.

Conﬁgure scaling based on Amazon SQS

Tasks
• Step 1: Create a CloudWatch custom metric (p. 174)

173
Amazon EC2 Auto Scaling User Guide
Scaling based on Amazon SQS

• Step 2: Create a target tracking scaling policy (p. 174)

• Step 3: Test your scaling policy (p. 175)

Step 1: Create a CloudWatch custom metric

A custom metric is deﬁned using a metric name and namespace of your choosing. Namespaces for
custom metrics cannot start with AWS/. For more information about publishing custom metrics, see the
Publish custom metrics topic in the Amazon CloudWatch User Guide.

Follow this procedure to create the custom metric by ﬁrst reading information from your AWS account.
Then, calculate the backlog per instance metric, as recommended in an earlier section. Lastly, publish this
number to CloudWatch at a 1-minute granularity. Whenever possible, we strongly recommend that you
scale on metrics with a 1-minute granularity to ensure a faster response to changes in system load.

To create a CloudWatch custom metric

1. Use the SQS get-queue-attributes command to get the number of messages waiting in the queue
(ApproximateNumberOfMessages).

aws sqs get-queue-attributes --queue-url https://sqs.region.amazonaws.com/123456789/

MyQueue \
--attribute-names ApproximateNumberOfMessages

2. Use the describe-auto-scaling-groups command to get the running capacity of the group, which is
the number of instances in the InService lifecycle state. This command returns the instances of an
Auto Scaling group along with their lifecycle state.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-names my-asg

3. Calculate the backlog per instance by dividing the approximate number of messages available for
retrieval from the queue by the ﬂeet's running capacity.
4. Publish the results at a 1-minute granularity as a CloudWatch custom metric.

Here is an example CLI put-metric-data command.

aws cloudwatch put-metric-data --metric-name MyBacklogPerInstance --

namespace MyNamespace \
--unit None --value 20 --
dimensions MyOptionalMetricDimensionName=MyOptionalMetricDimensionValue

After your application is emitting the desired metric, the data is sent to CloudWatch. The metric is
visible in the CloudWatch console. You can access it by logging into the AWS Management Console
and navigating to the CloudWatch page. Then, view the metric by navigating to the metrics page or by
searching for it using the search box. For information about viewing metrics, see View available metrics
in the Amazon CloudWatch User Guide.

Step 2: Create a target tracking scaling policy

After publishing your custom metric, create a target tracking scaling policy with a customized metric
speciﬁcation.

To create a target tracking scaling policy

1. Use the following command to specify a target value for your scaling policy in a config.json ﬁle
in your home directory.

174
Amazon EC2 Auto Scaling User Guide
Scaling based on Amazon SQS

For the TargetValue, calculate the acceptable backlog per instance metric and enter it here. To
calculate this number, decide on a normal latency value and divide it by the average time that it
takes to process a message.

$ cat ~/config.json
{
"TargetValue":100,
"CustomizedMetricSpecification":{
"MetricName":"MyBacklogPerInstance",
"Namespace":"MyNamespace",
"Dimensions":[
{
"Name":"MyOptionalMetricDimensionName",
"Value":"MyOptionalMetricDimensionValue"
}
],
"Statistic":"Average",
"Unit":"None"
}
}

2. Use the put-scaling-policy command, along with the config.json ﬁle that you created in the
previous step, to create your scaling policy.

aws autoscaling put-scaling-policy --policy-name sqs100-target-tracking-scaling-policy

\
--auto-scaling-group-name my-asg --policy-type TargetTrackingScaling \
--target-tracking-configuration file://~/config.json

This creates two alarms: one for scaling out and one for scaling in. It also returns the Amazon
Resource Name (ARN) of the policy that is registered with CloudWatch, which CloudWatch uses to
invoke scaling whenever the metric is in breach.

Step 3: Test your scaling policy

After your setup is complete, verify that your scaling policy is working. You can test it by increasing the
number of messages in your SQS queue and then verifying that your Auto Scaling group has launched
an additional EC2 instance. You can also test it by decreasing the number of messages in your SQS queue
and then verifying that the Auto Scaling group has terminated an EC2 instance.

To test the scale-out function

1. Follow the steps in Tutorial: Sending a message to an Amazon SQS queue to add messages to your
queue. Make sure that you have increased the number of messages in the queue so that the backlog
per instance metric exceeds the target value.

It can take a few minutes for your changes to trigger the CloudWatch alarm.
2. Use the describe-auto-scaling-groups command to verify that the group has launched an instance.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-name my-asg

To test the scale-in function

1. Follow the steps in Tutorial: Sending a message to an Amazon SQS queue to remove messages from
the queue. Make sure that you have decreased the number of messages in the queue so that the
backlog per instance metric is below the target value.

175
Amazon EC2 Auto Scaling User Guide
Verifying a scaling activity

It can take a few minutes for your changes to trigger the CloudWatch alarm.
2. Use the describe-auto-scaling-groups command to verify that the group has terminated an instance.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-name my-asg

Amazon SQS and instance scale-in protection

Messages that have not been processed at the time an instance is terminated are returned to the SQS
queue where they can be processed by another instance that is still running. For applications where long
running tasks are performed, you can optionally use instance scale-in protection to have control over
which queue workers are terminated when your Auto Scaling group scales in.

The following pseudocode shows one way to protect long-running, queue-driven worker processes from
scale-in termination.

while (true)
{
SetInstanceProtection(False);
Work = GetNextWorkUnit();
SetInstanceProtection(True);
ProcessWorkUnit(Work);
SetInstanceProtection(False);
}

For more information, see Using instance scale-in protection (p. 246).

Verifying a scaling activity for an Auto Scaling group

In the Amazon EC2 Auto Scaling section of the Amazon EC2 console, the Activity history for an Auto
Scaling group lets you view the current status of a scaling activity that is currently in progress. When the
scaling activity is ﬁnished, you can see whether it succeeds or not. This is particularly useful when you are
creating Auto Scaling groups or you are adding scaling conditions to existing groups.

When you add a target tracking, step, or simple scaling policy to your Auto Scaling group, Amazon
EC2 Auto Scaling immediately starts evaluating the policy against the metric. The metric alarm goes
to ALARM state when the metric breaches the threshold for a specified number of evaluation periods.
This means that a scaling policy could result in a scaling activity soon after it's created. After Amazon
EC2 Auto Scaling adjusts the desired capacity in response to a scaling policy, you can verify the scaling
activity in your account. If you want to receive email notification from Amazon EC2 Auto Scaling
informing you about a scaling activity, follow the instructions in Getting Amazon SNS notifications when
your Auto Scaling group scales (p. 281).

To view the scaling activities for an Auto Scaling group (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to the Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Activity tab, under Activity history, the Status column shows whether your Auto Scaling
group has successfully launched or terminated instances, or whether the scaling activity is still in
progress.

176
Amazon EC2 Auto Scaling User Guide
Disabling a scaling policy

If you have a lot of scaling activities, you can choose the > icon at the top edge of the activity history
to see the next page of scaling activities. You can also choose the gear icon and increase the amount
of results shown per page.
4. On the Instance management tab, under Instances, the Lifecycle column contains the state of your
instances. After the instance starts and any lifecycle hooks have ﬁnished, its lifecycle state changes
to InService.

The Health status column shows the result of the EC2 instance health check on your instance.

To view the scaling activities for an Auto Scaling group (AWS CLI)

Use the following describe-scaling-activities command.

aws autoscaling describe-scaling-activities --auto-scaling-group-name my-asg

The following is example output.

Scaling activities are ordered by start time. Activities still in progress are described ﬁrst.

{
"Activities": [
{
"ActivityId": "5e3a1f47-2309-415c-bfd8-35aa06300799",
"AutoScalingGroupName": "my-asg",
"Description": "Terminating EC2 instance: i-06c4794c2499af1df",
"Cause": "At 2020-02-11T18:34:10Z a monitor alarm TargetTracking-my-asg-AlarmLow-
b9376cab-18a7-4385-920c-dfa3f7783f82 in state ALARM triggered policy my-target-tracking-
policy changing the desired capacity from 3 to 2. At 2020-02-11T18:34:31Z an instance
was taken out of service in response to a difference between desired and actual capacity,
shrinking the capacity from 3 to 2. At 2020-02-11T18:34:31Z instance i-06c4794c2499af1df
was selected for termination.",
"StartTime": "2020-02-11T18:34:31.268Z",
"EndTime": "2020-02-11T18:34:53Z",
"StatusCode": "Successful",
"Progress": 100,
"Details": "{\"Subnet ID\":\"subnet-5ea0c127\",\"Availability Zone\":\"us-west-2a
\"...}",
"AutoScalingGroupARN": "arn:aws:autoscaling:us-
west-2:123456789012:autoScalingGroup:283179a2-
f3ce-423d-93f6-66bb518232f7:autoScalingGroupName/my-asg"
},
...
]
}

For information about the types of errors that you may encounter and how to handle them, see
Troubleshooting Amazon EC2 Auto Scaling (p. 329).

Disabling a scaling policy for an Auto Scaling group

This topic describes how to temporarily disable a scaling policy so it won't initiate changes to the number
of instances the Auto Scaling group contains. When you disable a scaling policy, the conﬁguration details
are preserved, so you can quickly re-enable the policy. This is easier than temporarily deleting a policy
when you don't need it, and recreating it later.

When a scaling policy is disabled, the Auto Scaling group does not scale out or scale in for the metric
alarms that are breached while the scaling policy is disabled. However, any scaling activities still in
progress are not stopped.

177
Amazon EC2 Auto Scaling User Guide
Disabling a scaling policy

Note that disabled scaling policies still count toward your quotas on the number of scaling policies that
you can add to an Auto Scaling group.

To disable a scaling policy (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to the Auto Scaling group.

When you are ready to re-enable the scaling policy, repeat these steps and then choose Actions, Enable.
After you re-enable a scaling policy, your Auto Scaling group may immediately initiate a scaling action if
there are any alarms currently in ALARM state.

To disable a scaling policy (AWS CLI)

Use the put-scaling-policy command with the --no-enabled option as follows. Specify all options in
the command as you would specify them when creating the policy.

aws autoscaling put-scaling-policy --auto-scaling-group-name my-asg \

--policy-name my-scaling-policy --policy-type TargetTrackingScaling \
--estimated-instance-warmup 360 \
--target-tracking-configuration '{ "TargetValue": 70, "PredefinedMetricSpecification":
{ "PredefinedMetricType": "ASGAverageCPUUtilization" } }' \
--no-enabled

To re-enable a scaling policy (AWS CLI)

Use the put-scaling-policy command with the --enabled option as follows. Specify all options in the
command as you would specify them when creating the policy.

aws autoscaling put-scaling-policy --auto-scaling-group-name my-asg \

To describe a scaling policy (AWS CLI)

Use the describe-policies command to verify the enabled status of a scaling policy.

aws autoscaling describe-policies --auto-scaling-group-name my-asg \

--policy-names my-scaling-policy

The following is example output.

{
"ScalingPolicies": [
{
"AutoScalingGroupName": "my-asg",
"PolicyName": "my-scaling-policy",
"PolicyARN": "arn:aws:autoscaling:us-
west-2:123456789012:scalingPolicy:1d52783a-b03b-4710-
bb0e-549fd64378cc:autoScalingGroupName/my-asg:policyName/my-scaling-policy",

178
Amazon EC2 Auto Scaling User Guide
Deleting a scaling policy

"PolicyType": "TargetTrackingScaling",
"StepAdjustments": [],
"Alarms": [
{
"AlarmName": "TargetTracking-my-asg-AlarmHigh-9ca53fdd-7cf5-4223-938a-
ae1199204502",
"AlarmARN": "arn:aws:cloudwatch:us-
west-2:123456789012:alarm:TargetTracking-my-asg-AlarmHigh-9ca53fdd-7cf5-4223-938a-
ae1199204502"
},
{
"AlarmName": "TargetTracking-my-asg-AlarmLow-7010c83d-d55a-4a7a-
abe0-1cf8b9de6d6c",
"AlarmARN": "arn:aws:cloudwatch:us-
west-2:123456789012:alarm:TargetTracking-my-asg-AlarmLow-7010c83d-d55a-4a7a-
abe0-1cf8b9de6d6c"
}
],
"TargetTrackingConfiguration": {
"PredefinedMetricSpecification": {
"PredefinedMetricType": "ASGAverageCPUUtilization"
},
"TargetValue": 70.0,
"DisableScaleIn": false
},
"Enabled": true
}
]
}

Deleting a scaling policy

After you no longer need a scaling policy, you can delete it. Depending on the type of scaling policy, you
might also need to delete the CloudWatch alarms. Deleting a target tracking scaling policy also deletes
any associated CloudWatch alarms. Deleting a step scaling policy or a simple scaling policy deletes
the underlying alarm action, but it does not delete the CloudWatch alarm, even if it no longer has an
associated action.

To delete a scaling policy (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to the Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Automatic scaling tab, under Dynamic scaling policies, select the check box in the top right
corner of the desired scaling policy.
4. Scroll to the top of the Dynamic scaling policies section, and choose Actions, Delete.
5. When prompted for conﬁrmation, choose Yes, Delete.
6. (Optional) If you deleted a step scaling policy or a simple scaling policy, do the following to delete
the CloudWatch alarm that was associated with the policy. You can skip these substeps to keep the
alarm for future use.

a. Open the CloudWatch console at https://console.aws.amazon.com/cloudwatch/.

b. On the navigation pane, choose Alarms.
c. Choose the alarm (for example, Step-Scaling-AlarmHigh-AddCapacity) and choose
Action, Delete.
d. When prompted for conﬁrmation, choose Delete.

179
Amazon EC2 Auto Scaling User Guide
Deleting a scaling policy

To get the scaling policies for an Auto Scaling group (AWS CLI)

Before you delete a scaling policy, use the following describe-policies command to see what scaling
policies were created for the Auto Scaling group. You can use the output when deleting the policy and
the CloudWatch alarms.

aws autoscaling describe-policies --auto-scaling-group-name my-asg

You can ﬁlter the results by the type of scaling policy using the --query parameter. This syntax for
query works on Linux or macOS. On Windows, change the single quotes to double quotes.

aws autoscaling describe-policies --auto-scaling-group-name my-asg

--query 'ScalingPolicies[?PolicyType==`TargetTrackingScaling`]'

The following is example output.

[
{
"AutoScalingGroupName": "my-asg",
"PolicyName": "cpu40-target-tracking-scaling-policy",
"PolicyARN": "PolicyARN",
"PolicyType": "TargetTrackingScaling",
"StepAdjustments": [],
"Alarms": [
{
"AlarmARN": "arn:aws:cloudwatch:region:account-id:alarm:TargetTracking-my-
asg-AlarmHigh-fc0e4183-23ac-497e-9992-691c9980c38e",
"AlarmName": "TargetTracking-my-asg-AlarmHigh-
fc0e4183-23ac-497e-9992-691c9980c38e"
},
{
"AlarmARN": "arn:aws:cloudwatch:region:account-id:alarm:TargetTracking-my-
asg-AlarmLow-61a39305-ed0c-47af-bd9e-471a352ee1a2",
"AlarmName": "TargetTracking-my-asg-AlarmLow-61a39305-ed0c-47af-
bd9e-471a352ee1a2"
}
],
"TargetTrackingConfiguration": {
"PredefinedMetricSpecification": {
"PredefinedMetricType": "ASGAverageCPUUtilization"
},
"TargetValue": 40.0,
"DisableScaleIn": false
},
"Enabled": true
}
]

To delete your scaling policy (AWS CLI)

Use the following delete-policy command.

aws autoscaling delete-policy --auto-scaling-group-name my-asg \

--policy-name cpu40-target-tracking-scaling-policy

To delete your CloudWatch alarm (AWS CLI)

For step and simple scaling policies, use the delete-alarms command to delete the CloudWatch alarm
that was associated with the policy. You can skip this step to keep the alarm for future use. You can
delete one or more alarms at a time. For example, use the following command to delete the Step-
Scaling-AlarmHigh-AddCapacity and Step-Scaling-AlarmLow-RemoveCapacity alarms.

180
Amazon EC2 Auto Scaling User Guide
AWS CLI examples for scaling policies

aws cloudwatch delete-alarms --alarm-name Step-Scaling-AlarmHigh-AddCapacity Step-Scaling-

AlarmLow-RemoveCapacity

Example scaling policies for the AWS Command Line

Interface (AWS CLI)
You can create scaling policies for Amazon EC2 Auto Scaling through the AWS Management Console,
AWS CLI, or SDKs.

The following examples show how you can create scaling policies for Amazon EC2 Auto Scaling with the
AWS CLI put-scaling-policy command. For introductory exercises for creating scaling policies from the
AWS CLI, see Target tracking scaling policies (p. 154) and Step and simple scaling policies (p. 159).

Example 1: To apply a target tracking scaling policy with a predeﬁned metric speciﬁcation

aws autoscaling put-scaling-policy --policy-name cpu40-target-tracking-scaling-policy \

--auto-scaling-group-name my-asg --policy-type TargetTrackingScaling \
--target-tracking-configuration file://config.json
{
"TargetValue": 40.0,
"PredefinedMetricSpecification": {
"PredefinedMetricType": "ASGAverageCPUUtilization"
}
}

Example 2: To apply a target tracking scaling policy with a customized metric speciﬁcation

aws autoscaling put-scaling-policy --policy-name sqs100-target-tracking-scaling-policy \

--auto-scaling-group-name my-asg --policy-type TargetTrackingScaling \
--target-tracking-configuration file://config.json
{
"TargetValue": 100.0,
"CustomizedMetricSpecification": {
"MetricName": "MyBacklogPerInstance",
"Namespace": "MyNamespace",
"Dimensions": [{
"Name": "MyOptionalMetricDimensionName",
"Value": "MyOptionalMetricDimensionValue"
}],
"Statistic": "Average",
"Unit": "None"
}
}

Example 3: To apply a target tracking scaling policy for scale out only

aws autoscaling put-scaling-policy --policy-name alb1000-target-tracking-scaling-policy \

--auto-scaling-group-name my-asg --policy-type TargetTrackingScaling \
--target-tracking-configuration file://config.json
{
"TargetValue": 1000.0,
"PredefinedMetricSpecification": {
"PredefinedMetricType": "ALBRequestCountPerTarget",
"ResourceLabel": "app/my-alb/778d41231b141a0f/targetgroup/my-alb-target-
group/943f017f100becff"
},
"DisableScaleIn": true
}

181
Amazon EC2 Auto Scaling User Guide
Predictive scaling

Example 4: To apply a step scaling policy for scale out

aws autoscaling put-scaling-policy \

MetricIntervalLowerBound=20.0,MetricIntervalUpperBound=30.0,ScalingAdjustment=20 \
MetricIntervalLowerBound=30.0,ScalingAdjustment=30 \
--min-adjustment-magnitude 1

Record the policy's Amazon Resource Name (ARN). You need the ARN when you create the CloudWatch
alarm.

Example 5: To apply a step scaling policy for scale in

aws autoscaling put-scaling-policy \

Record the policy's Amazon Resource Name (ARN). You need the ARN when you create the CloudWatch
alarm.

Example 6: To apply a simple scaling policy for scale out

aws autoscaling put-scaling-policy --policy-name my-simple-scale-out-policy \

--auto-scaling-group-name my-asg --scaling-adjustment 30 \
--adjustment-type PercentChangeInCapacity --min-adjustment-magnitude 2

Record the policy's Amazon Resource Name (ARN). You need the ARN when you create the CloudWatch
alarm.

Example 7: To apply a simple scaling policy for scale in

aws autoscaling put-scaling-policy --policy-name my-simple-scale-in-policy \

--auto-scaling-group-name my-asg --scaling-adjustment -1 \
--adjustment-type ChangeInCapacity --cooldown 180

Record the policy's Amazon Resource Name (ARN). You need the ARN when you create the CloudWatch
alarm.

Predictive scaling for Amazon EC2 Auto Scaling

Use predictive scaling to increase the number of EC2 instances in your Auto Scaling group in advance of
daily and weekly patterns in traﬃc ﬂows.

Predictive scaling is well suited for situations where you have:

• Cyclical traﬃc, such as high use of resources during regular business hours and low use of resources
during evenings and weekends

182
Amazon EC2 Auto Scaling User Guide
How predictive scaling works

• Recurring on-and-oﬀ workload patterns, such as batch processing, testing, or periodic data analysis
• Applications that take a long time to initialize, causing a noticeable latency impact on application
performance during scale-out events

In general, if you have regular patterns of traﬃc increases and applications that take a long time to
initialize, you should consider using predictive scaling. Predictive scaling can help you scale faster by
launching capacity in advance of forecasted load, compared to using only dynamic scaling, which is
reactive in nature. Predictive scaling can also potentially save you money on your EC2 bill by helping you
avoid the need to overprovision capacity.

For example, consider an application that has high usage during business hours and low usage overnight.
At the start of each business day, predictive scaling can add capacity before the first influx of traffic.
This helps your application maintain high availability and performance when going from a period of
lower utilization to a period of higher utilization. You don't have to wait for dynamic scaling to react to
changing traffic. You also don't have to spend time reviewing your application's load patterns and trying
to schedule the right amount of capacity using scheduled scaling.

Use the AWS Management Console, the AWS CLI, or one of the SDKs to add a predictive scaling policy to
any Auto Scaling group.

Contents
• How predictive scaling works (p. 183)
• Best practices (p. 184)
• Create a predictive scaling policy (console) (p. 184)
• Create a predictive scaling policy (AWS CLI) (p. 185)
• Limitations (p. 187)
• Exploring your data and forecast (p. 188)
• Overriding forecast values using scheduled actions (p. 189)
• Advanced predictive scaling policy conﬁgurations using custom metrics (p. 192)

How predictive scaling works

Predictive scaling uses machine learning to predict capacity requirements based on historical data from
CloudWatch. The machine learning algorithm consumes the available historical data and calculates
capacity that best ﬁts the historical load pattern, and then continuously learns based on new data to
make future forecasts more accurate.

To use predictive scaling, you ﬁrst create a scaling policy with a pair of metrics and a target utilization.
Forecast creation starts immediately after you create your policy if there is at least 24 hours of historical
data. Predictive scaling ﬁnds patterns in CloudWatch metric data from the previous 14 days to create
an hourly forecast for the next 48 hours. Forecast data is updated daily based on the most recent
CloudWatch metric data.

You can conﬁgure predictive scaling in forecast only mode so that you can evaluate the forecast before
predictive scaling starts actively scaling capacity. You can then view the forecast and recent metric data
from CloudWatch in graph form from the Amazon EC2 Auto Scaling console. You can also access forecast
data by using the AWS CLI or one of the SDKs.

When you are ready to start scaling with predictive scaling, switch the policy from forecast only mode
to forecast and scale mode. After you switch to forecast and scale mode, your Auto Scaling group starts
scaling based on the forecast.

Using the forecast, Amazon EC2 Auto Scaling scales the number of instances at the beginning of each
hour:

183
Amazon EC2 Auto Scaling User Guide
Best practices

• If actual capacity is less than the predicted capacity, Amazon EC2 Auto Scaling scales out your Auto
Scaling group so that its desired capacity is equal to the predicted capacity.
• If actual capacity is greater than the predicted capacity, Amazon EC2 Auto Scaling doesn't scale in
capacity.
• The values that you set for the minimum and maximum capacity of the Auto Scaling group are
adhered to if the predicted capacity is outside of this range.

Best practices
• Confirm whether predictive scaling is suitable for your workload. A workload is a good fit for predictive
scaling if it exhibits recurring load patterns that are specific to the day of the week or the time of day.
To check this, configure predictive scaling policies in forecast only mode.
• Evaluate the forecast and its accuracy before allowing predictive scaling to actively scale your
application. Predictive scaling needs at least 24 hours of historical data to start forecasting. However,
forecasts are more effective if historical data spans the full two weeks. If you update your application
by creating a new Auto Scaling group and deleting the old one, then your new Auto Scaling group
needs 24 hours of historical load data before predictive scaling can start generating forecasts again. In
this case, you might have to wait a few days for a more accurate forecast.
• Create multiple predictive scaling policies in forecast only mode to test the potential effects of
different metrics. You can create multiple predictive scaling policies for each Auto Scaling group, but
only one of the policies can be used for active scaling.
• If you choose a custom metric pair, you can define a different combination of load metric and scaling
metric. To avoid issues, make sure that the load metric you choose represents the full load on your
application.
• Use predictive scaling with dynamic scaling. Dynamic scaling is used to automatically scale capacity in
response to real-time changes in resource utilization. Using it with predictive scaling helps you follow
the demand curve for your application closely, scaling in during periods of low traffic and scaling out
when traffic is higher than expected. When multiple scaling policies are active, each policy determines
the desired capacity independently, and the desired capacity is set to the maximum of those. For
example, if 10 instances are required to stay at the target utilization in a target tracking scaling policy,
and 8 instances are required to stay at the target utilization in a predictive scaling policy, then the
group's desired capacity is set to 10.

Create a predictive scaling policy (console)

You can conﬁgure predictive scaling policies on an Auto Scaling group after the group is created.

To create a predictive scaling policy

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Automatic scaling tab, in Scaling policies, choose Create predictive scaling policy.
4. To deﬁne a policy, do the following:

a. Enter a name for the policy.

b. Turn on Scale based on forecast to give Amazon EC2 Auto Scaling permission to start scaling
right away.

To keep the policy in forecast only mode, keep Scale based on forecast turned oﬀ.

184
Amazon EC2 Auto Scaling User Guide
Create a predictive scaling policy (AWS CLI)

c. For Metrics, choose your metrics from the list of options. Options include CPU, Network In,
Network Out, Application Load Balancer request count, and Custom metric pair.

If you chose Application Load Balancer request count per target, then choose a target group
in Target group. Application Load Balancer request count per target is only supported if you
have attached an Application Load Balancer target group to your Auto Scaling group.

If you chose Custom metric pair, choose individual metrics from the drop-down lists for Load
metric and Scaling metric.
5. For Target utilization, enter the target value that Amazon EC2 Auto Scaling should maintain.
Amazon EC2 Auto Scaling scales out your capacity until the average utilization is at the target
utilization, or until it reaches the maximum number of instances you speciﬁed.

If your scaling metric is... Then the target utilization represents...

CPU The percentage of CPU that each instance should ideally use.

Network In The average number of bytes per minute that each instance
should ideally receive.

Network Out The average number of bytes per minute that each instance
should ideally send out.

Application Load Balancer The average number of requests per minute that each instance
request count per target should ideally receive.

6. (Optional) For Pre-launch instances, choose how far in advance you want your instances launched
before the forecast calls for the load to increase.
7. (Optional) For Max capacity behavior, choose whether to allow Amazon EC2 Auto Scaling to
scale out higher than the group's maximum capacity when predicted capacity exceeds the defined
maximum. Turning on this setting allows scale out to occur during periods when your traffic is
forecasted to be at its highest.
8. (Optional) For Buffer maximum capacity above the forecasted capacity, choose how much
additional capacity to use when the predicted capacity is close to or exceeds the maximum capacity.
The value is specified as a percentage relative to the predicted capacity. For example, if the buffer
is 10, this means a 10 percent buffer, so if the predicted capacity is 50 and the maximum capacity is
40, then the effective maximum capacity is 55.

If set to 0, Amazon EC2 Auto Scaling may scale capacity higher than the maximum capacity to equal
but not exceed predicted capacity.
9. Choose Create predictive scaling policy.

Create a predictive scaling policy (AWS CLI)

Use the AWS CLI as follows to conﬁgure predictive scaling policies for your Auto Scaling group. For
more information about the CloudWatch metrics you can specify for a predictive scaling policy, see
PredictiveScalingMetricSpeciﬁcation in the Amazon EC2 Auto Scaling API Reference.

Example 1: A predictive scaling policy that creates forecasts but

doesn't scale
The following example policy shows a complete policy configuration that uses CPU utilization metrics
for predictive scaling with a target utilization of 40. ForecastOnly mode is used by default, unless you
explicitly specify which mode to use. Save this configuration in a file named config.json.

185
Amazon EC2 Auto Scaling User Guide
Create a predictive scaling policy (AWS CLI)

{
"MetricSpecifications": [
{
"TargetValue": 40,
"PredefinedMetricPairSpecification": {
"PredefinedMetricType": "ASGCPUUtilization"
}
}
]
}

To create this policy, run the put-scaling-policy command with the configuration file specified, as
demonstrated in the following example.

aws autoscaling put-scaling-policy --policy-name cpu40-predictive-scaling-policy \

--auto-scaling-group-name my-asg --policy-type PredictiveScaling \
--predictive-scaling-configuration file://config.json

If successful, this command returns the policy's Amazon Resource Name (ARN).

{
"PolicyARN": "arn:aws:autoscaling:region:account-id:scalingPolicy:2f4f5048-d8a8-4d14-
b13a-d1905620f345:autoScalingGroupName/my-asg:policyName/cpu40-predictive-scaling-policy",
"Alarms": []
}

Example 2: A predictive scaling policy that forecasts and scales

For a policy that allows Amazon EC2 Auto Scaling to forecast and scale, add the property Mode with a
value of ForecastAndScale. The following example shows a policy conﬁguration that uses Application
Load Balancer request count metrics. The target utilization is 1000, and predictive scaling is set to
ForecastAndScale mode.

{
"MetricSpecifications": [
{
"TargetValue": 1000,
"PredefinedMetricPairSpecification": {
"PredefinedMetricType": "ALBRequestCount",
"ResourceLabel": "app/my-alb/778d41231b141a0f/targetgroup/my-alb-target-
group/943f017f100becff"
}
}
],
"Mode": "ForecastAndScale"
}

To create this policy, run the put-scaling-policy command with the configuration file specified, as
demonstrated in the following example.

aws autoscaling put-scaling-policy --policy-name alb1000-predictive-scaling-policy \

--auto-scaling-group-name my-asg --policy-type PredictiveScaling \
--predictive-scaling-configuration file://config.json

If successful, this command returns the policy's Amazon Resource Name (ARN).

186
Amazon EC2 Auto Scaling User Guide
Limitations

"PolicyARN": "arn:aws:autoscaling:region:account-
id:scalingPolicy:19556d63-7914-4997-8c81-d27ca5241386:autoScalingGroupName/my-
asg:policyName/alb1000-predictive-scaling-policy",
"Alarms": []
}

Example 3: A predictive scaling policy that can scale higher than

maximum capacity
The following example shows how to create a policy that can scale higher than the group's maximum
size limit when you need it to handle a higher than normal load. By default, Amazon EC2 Auto Scaling
doesn't scale your EC2 capacity higher than your deﬁned maximum capacity. However, it might be
helpful to let it scale higher with slightly more capacity to avoid performance or availability issues.

To provide room for Amazon EC2 Auto Scaling to provision additional capacity when the
capacity is predicted to be at or very close to your group's maximum size, specify the
MaxCapacityBreachBehavior and MaxCapacityBuffer properties, as shown in the following
example. You must specify MaxCapacityBreachBehavior with a value of IncreaseMaxCapacity.
The maximum number of instances that your group can have depends on the value of
MaxCapacityBuffer.

{
"MetricSpecifications": [
{
"TargetValue": 70,
"PredefinedMetricPairSpecification": {
"PredefinedMetricType": "ASGCPUUtilization"
}
}
],
"MaxCapacityBreachBehavior": "IncreaseMaxCapacity",
"MaxCapacityBuffer": 10
}

In this example, the policy is configured to use a 10 percent buffer ("MaxCapacityBuffer": 10), so
if the predicted capacity is 50 and the maximum capacity is 40, then the effective maximum capacity is
55. A policy that can scale capacity higher than the maximum capacity to equal but not exceed predicted
capacity would have a buffer of 0 ("MaxCapacityBuffer": 0).

To create this policy, run the put-scaling-policy command with the configuration file specified, as
demonstrated in the following example.

aws autoscaling put-scaling-policy --policy-name cpu70-predictive-scaling-policy \

--auto-scaling-group-name my-asg --policy-type PredictiveScaling \
--predictive-scaling-configuration file://config.json

If successful, this command returns the policy's Amazon Resource Name (ARN).

{
"PolicyARN": "arn:aws:autoscaling:region:account-id:scalingPolicy:d02ef525-8651-4314-
bf14-888331ebd04f:autoScalingGroupName/my-asg:policyName/cpu70-predictive-scaling-policy",
"Alarms": []
}

Limitations
Predictive scaling requires 24 hours of metric history before it can generate forecasts.

187
Amazon EC2 Auto Scaling User Guide
Exploring your data and forecast

You currently cannot use predictive scaling with Auto Scaling groups that have a mixed instances policy.

Exploring your data and forecast

After the forecast is created, you can view charts showing historical data from the last eight weeks and
the forecast for the next two days. To ﬁnd detailed information about a forecast and its history, open the
Auto Scaling group from the Amazon EC2 Auto Scaling console and choose the Automatic scaling tab in
the lower pane. The graphs become available shortly after the policy is created.

Each graph displays forecast values against actual values and a particular type of data. The Load graph
shows load forecast and actual values for the load metric you choose. The Capacity graph shows
the number of instances that are forecasted based on your target utilization and the actual number
of instances launched. Various colors show actual metric data points and past and future forecast
values. The orange line shows the actual metric data points. The green line shows the forecast that was
generated for the future forecast period. The blue line shows the forecast for past periods.

You can adjust the time range for past data by choosing your preferred value in the top right of the
graph: 2 days, 1 week, 2 weeks, 4 weeks, 6 weeks, or 8 weeks. Each point on the graph represents one
hour of data. When hovering over a data point, the tooltip shows the value for a particular point in time,
in UTC.

To enlarge the graph pane, choose the expand icon in the top right of the graph. To revert back to the
default view, choose the icon again.

188
Amazon EC2 Auto Scaling User Guide
Overriding the forecast

You can also use the AWS CLI command get-predictive-scaling-forecast to get forecast data. The data
returned by this call can help you identify time periods when you might want to override the forecast.
For more information, see Overriding forecast values using scheduled actions (p. 189).
Note
We recommend that you enable Auto Scaling group metrics. If these metrics are not enabled,
actual capacity data will be missing from the capacity forecast graph. There is no cost for
enabling these metrics.
To enable Auto Scaling group metrics, open the Auto Scaling group in the Amazon EC2 console,
and from the Monitoring tab, select the Auto Scaling group metrics collection, Enable check
box. For more information, see Enable Auto Scaling group metrics (console) (p. 271).
Important
If the Auto Scaling group is new, allow 24 hours for Amazon EC2 Auto Scaling to create the ﬁrst
forecast.

Overriding forecast values using scheduled actions

Sometimes, you might have additional information about your future application requirements that
the forecast calculation is unable to take into account. For example, forecast calculations might
underestimate the capacity needed for an upcoming marketing event. You can use scheduled actions
to temporarily override the forecast during future time periods. The scheduled actions can run on a
recurring basis, or at a speciﬁc date and time when there are one-time demand ﬂuctuations.

For example, you can create a scheduled action with a higher minimum capacity than what is forecasted.
At runtime, Amazon EC2 Auto Scaling updates the minimum capacity of your Auto Scaling group.
Because predictive scaling optimizes for capacity, a scheduled action with a minimum capacity that is
higher than the forecast values is honored. This prevents capacity from being less than expected. To stop
overriding the forecast, use a second scheduled action to return the minimum capacity to its original
setting.

The following procedure outlines the steps for overriding the forecast during future time periods.

Contents
• Step 1: (Optional) Analyze time series data (p. 189)
• Step 2: Create two scheduled actions (p. 191)

Step 1: (Optional) Analyze time series data

Start by analyzing the forecast time series data. This is an optional step, but it is helpful if you want to
understand the details of the forecast.

1. Retrieve the forecast

After the forecast is created, you can query for a speciﬁc time period in the forecast. The goal of the
query is to get a complete view of the time series data for a speciﬁc time period.

Your query can include up to two days of future forecast data. If you have been using predictive
scaling for a while, you can also access your past forecast data. However, the maximum time
duration between the start and end time is 30 days.

To get the forecast using the get-predictive-scaling-forecast AWS CLI command, provide the
following parameters in the command:

• Enter the name of the Auto Scaling group in the --auto-scaling-group-name parameter.
• Enter the name of the policy in the --policy-name parameter.
• Enter the start time in the --start-time parameter to return only forecast data for after or at
the speciﬁed time.

189
Amazon EC2 Auto Scaling User Guide
Overriding the forecast

• Enter the end time in the --end-time parameter to return only forecast data for before the
speciﬁed time.

aws autoscaling get-predictive-scaling-forecast --auto-scaling-group-name my-asg \

--policy-name cpu40-predictive-scaling-policy \
--start-time "2021-05-19T17:00:00Z" \
--end-time "2021-05-19T23:00:00Z"

If successful, the command returns data similar to the following example.

{
"LoadForecast": [
{
"Timestamps": [
"2021-05-19T17:00:00+00:00",
"2021-05-19T18:00:00+00:00",
"2021-05-19T19:00:00+00:00",
"2021-05-19T20:00:00+00:00",
"2021-05-19T21:00:00+00:00",
"2021-05-19T22:00:00+00:00",
"2021-05-19T23:00:00+00:00"
],
"Values": [
153.0655799339254,
128.8288551285919,
107.1179447150675,
197.3601844551528,
626.4039934516954,
596.9441277518481,
677.9675713779869
],
"MetricSpecification": {
"TargetValue": 40.0,
"PredefinedMetricPairSpecification": {
"PredefinedMetricType": "ASGCPUUtilization"
}
}
}
],
"CapacityForecast": {
"Timestamps": [
"2021-05-19T17:00:00+00:00",
"2021-05-19T18:00:00+00:00",
"2021-05-19T19:00:00+00:00",
"2021-05-19T20:00:00+00:00",
"2021-05-19T21:00:00+00:00",
"2021-05-19T22:00:00+00:00",
"2021-05-19T23:00:00+00:00"
],
"Values": [
2.0,
2.0,
2.0,
2.0,
4.0,
4.0,
4.0
]
},
"UpdateTime": "2021-05-19T01:52:50.118000+00:00"
}

190
Amazon EC2 Auto Scaling User Guide
Overriding the forecast

The response includes two forecasts: LoadForecast and CapacityForecast. LoadForecast

shows the hourly load forecast. CapacityForecast shows forecast values for the capacity that is
needed on an hourly basis to handle the forecasted load while maintaining a TargetValue of 40.0
(40% average CPU utilization).
2. Identify the target time period

Identify the hour or hours when the one-time demand ﬂuctuation should take place. Remember that
dates and times shown in the forecast are in UTC.

Step 2: Create two scheduled actions

Next, create two scheduled actions for a speciﬁc time period when your application will have a higher
than forecasted load. For example, if you have a marketing event that will drive traﬃc to your site for
a limited period of time, you can schedule a one-time action to update the minimum capacity when it
starts. Then, schedule another action to return the minimum capacity to the original setting when the
event ends.

To create two scheduled actions for one-time events (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

a. Enter a Name for the scheduled action.

b. For Min, enter the new minimum capacity for your Auto Scaling group. The Min must be less
than or equal to the maximum size of the group. If your value for Min is greater than group's
maximum size, you must update Max.
c. For Recurrence, choose Once.
d. For Time zone, choose a time zone. If no time zone is chosen, ETC/UTC is used by default.
e. Deﬁne a Speciﬁc start time.
5. Choose Create.

The console displays the scheduled actions for the Auto Scaling group.
6. Conﬁgure a second scheduled action to return the minimum capacity to the original setting at the
end of the event. Predictive scaling can scale capacity only when the value you set for Min is lower
than the forecast values.

To create two scheduled actions for one-time events (AWS CLI)

To use the AWS CLI to create the scheduled actions, use the put-scheduled-update-group-action
command.

For example, let's deﬁne a schedule that maintains a minimum capacity of three instances on May 19 at
5:00 PM for eight hours. The following commands show how to implement this scenario.

The ﬁrst put-scheduled-update-group-action command instructs Amazon EC2 Auto Scaling to update
the minimum capacity of the speciﬁed Auto Scaling group at 5:00 PM UTC on May 19, 2021.

aws autoscaling put-scheduled-update-group-action --scheduled-action-name my-event-start \

191
Amazon EC2 Auto Scaling User Guide
Using custom metrics

--auto-scaling-group-name my-asg --start-time "2021-05-19T17:00:00Z" --minimum-

capacity 3

The second command instructs Amazon EC2 Auto Scaling to set the group's minimum capacity to one at
1:00 AM UTC on May 20, 2021.

aws autoscaling put-scheduled-update-group-action --scheduled-action-name my-event-end \

--auto-scaling-group-name my-asg --start-time "2021-05-20T01:00:00Z" --minimum-
capacity 1

After you add these scheduled actions to the Auto Scaling group, Amazon EC2 Auto Scaling does the
following:

• At 5:00 PM UTC on May 19, 2021, the ﬁrst scheduled action runs. If the group currently has fewer than
three instances, the group scales out to three instances. During this time and for the next eight hours,
Amazon EC2 Auto Scaling can continue to scale out if the predicted capacity is higher than the actual
capacity or if there is a dynamic scaling policy in eﬀect.
• At 1:00 AM UTC on May 20, 2021, the second scheduled action runs. This returns the minimum
capacity to its original setting at the end of the event.

Scaling based on recurring schedules

To override the forecast for the same time period every week, create two scheduled actions and provide
the time and date logic using a cron expression.

The cron expression format consists of ﬁve ﬁelds separated by spaces: [Minute] [Hour] [Day_of_Month]
[Month_of_Year] [Day_of_Week]. Fields can contain any allowed values, including special characters.

For example, the following cron expression runs the action every Tuesday at 6:30 AM. The asterisk is used
as a wildcard to match all values for a ﬁeld.

30 6 * * 2

See also
For more information about how to create, list, edit, and delete scheduled actions, see Scheduled scaling
for Amazon EC2 Auto Scaling (p. 199).

Advanced predictive scaling policy conﬁgurations

using custom metrics
In a predictive scaling policy, you can use predefined or custom metrics. The custom metrics you specify
can include other metrics available in CloudWatch and new metrics that you publish to CloudWatch.
Custom metrics are useful when the predefined metrics (CPU, network I/O, and Application Load
Balancer request count) do not sufficiently describe your application load.

Metric math expressions can also be used to aggregate the metric data received from CloudWatch before
using it for predictive scaling. When you combine values in your data, for example, by calculating new
sums or averages, it's called aggregating. The resulting data is called an aggregate.

On the graphs screen in the Amazon EC2 Auto Scaling console, you can view Load and Capacity graphs
with your metric data in the same way that you do when specifying predeﬁned metrics. However, you
currently can't use the Amazon EC2 Auto Scaling console to create or update a predictive scaling policy
that speciﬁes custom metrics. To do so, you must use the AWS CLI or an AWS SDK.

Contents

192
Amazon EC2 Auto Scaling User Guide
Using custom metrics

• Best practices (p. 193)

• Prerequisites (p. 193)
• Example predictive scaling policy with a custom scaling metric and a custom load metric (p. 193)
• Using metric math expressions (p. 195)
• Considerations and troubleshooting (p. 199)
• Limitations (p. 199)

Best practices
The following best practices can help you use custom metrics more eﬀectively:

• For the load metric specification, the most useful metric is a metric that represents the load on an Auto
Scaling group as a whole, regardless of the group's capacity.
• For the scaling metric specification, the most useful metric to scale by is an average throughput or
utilization per instance metric.
• The scaling metric must be inversely proportional to capacity. That is, if the number of instances in the
Auto Scaling group increases, the scaling metric should decrease by roughly the same proportion. To
ensure that predictive scaling behaves as expected, the load metric and the scaling metric must also
correlate strongly with each other.
• The target utilization must match the type of scaling metric. For a policy configuration that uses CPU
utilization, this is a target percentage. For a policy configuration that uses throughput, such as the
number of requests or messages, this is the target number of requests or messages per instance during
any one-minute interval.
• If these recommendations are not followed, the forecasted future values of the time series will
probably be incorrect. To validate that the data is correct, you can view the forecasted values
in the Amazon EC2 Auto Scaling console. Alternatively, after you create your predictive scaling
policy, inspect the LoadForecast and CapacityForecast objects returned by a call to the
GetPredictiveScalingForecast API.
• We strongly recommend that you configure predictive scaling in forecast only mode so that you can
evaluate the forecast before predictive scaling starts actively scaling capacity.

Prerequisites
To specify custom metrics in your policy, you must have cloudwatch:GetMetricData permissions.

To specify your own metrics instead of the metrics that AWS provides, you must first publish the metrics
to CloudWatch. For more information, see Publishing custom metrics in the Amazon CloudWatch User
Guide.
Note
When you publish your own metrics, make sure to publish the data points at a minimum
frequency of five minutes. Amazon EC2 Auto Scaling retrieves the data points from CloudWatch
based on the length of the period that it needs. For example, the load metric specification uses
hourly metrics to measure the load on your application. CloudWatch uses your published metric
data to provide a single data value for any one-hour period by aggregating all data points with
timestamps that fall within each one-hour period.

Example predictive scaling policy with a custom scaling metric

and a custom load metric
The following example policy shows a complete policy configuration that specifies a custom scaling
metric, a custom load metric, and a target utilization of 50. Save this configuration in a file named
config.json.

193
Amazon EC2 Auto Scaling User Guide
Using custom metrics

{
"MetricSpecifications": [
{
"TargetValue": 50,
"CustomizedScalingMetricSpecification": {
"MetricDataQueries": [
{
"MetricStat": {
"Metric": {
"MetricName": "MyUtilizationMetric",
"Namespace": "MyNameSpace",
"Dimensions": [
{
"Name": "MyOptionalMetricDimensionName",
"Value": "MyOptionalMetricDimensionValue"
}
]
},
"Stat": "Average"
}
}
]
},
"CustomizedLoadMetricSpecification": {
"MetricDataQueries": [
{
"MetricStat": {
"Metric": {
"MetricName": "MyLoadMetric",
"Namespace": "MyNameSpace",
"Dimensions": [
{
"Name": "MyOptionalMetricDimensionName",
"Value": "MyOptionalMetricDimensionValue"
}
]
},
"Stat": "Sum"
}
}
]
}
}
]
}

For information about the Amazon EC2 Auto Scaling parameters and values for a metric data query, see
MetricDataQuery in the Amazon EC2 Auto Scaling API Reference.
Note
Following are some additional resources that can help:

• For information about the available metrics for AWS services, see AWS services that publish
CloudWatch metrics in the Amazon CloudWatch User Guide.
• To get the exact metric name, namespace, and dimensions (if applicable) for a CloudWatch
metric with the AWS CLI, see list-metrics.

To create this policy, run the put-scaling-policy command with the configuration file specified, as
demonstrated in the following example.

aws autoscaling put-scaling-policy --policy-name my-predictive-scaling-policy \

--auto-scaling-group-name my-asg --policy-type PredictiveScaling \

194
Amazon EC2 Auto Scaling User Guide
Using custom metrics

--predictive-scaling-configuration file://config.json

If successful, this command returns the policy's Amazon Resource Name (ARN).

{
"PolicyARN": "arn:aws:autoscaling:region:account-id:scalingPolicy:2f4f5048-d8a8-4d14-
b13a-d1905620f345:autoScalingGroupName/my-asg:policyName/my-predictive-scaling-policy",
"Alarms": []
}

Using metric math expressions

The following AWS CLI examples might be relevant to your scenario when creating a predictive
scaling policy that uses metric math expressions. You can use these example predictive scaling policy
conﬁgurations as a starting point, then customize them for your needs.

Contents
• Understanding metric math (p. 195)
• Example predictive scaling policy that combines metrics using metric math (p. 196)
• Example predictive scaling policy to use in a blue/green deployment scenario (p. 197)

Understanding metric math

If all you want to do is aggregate existing metric data, CloudWatch metric math saves you the eﬀort and
cost of publishing another metric to CloudWatch. You can use any metric that AWS provides, and you can
also use metrics that you deﬁne as part of your applications. For example, you might want to calculate
the Amazon SQS queue backlog per instance. You can do this by taking the approximate number of
messages available for retrieval from the queue and dividing that number by the Auto Scaling group's
running capacity.

For more information, see Using metric math in the Amazon CloudWatch User Guide.

If you choose to use a metric math expression in your predictive scaling policy, consider the following
points:

• Metric math operations use the data points of the unique combination of metric name, namespace,
and dimension keys/value pairs of metrics.
• You can use any arithmetic operator (+ - * / ^), statistical function (such as AVG or SUM), or other
function that CloudWatch supports.
• You can use both metrics and the results of other math expressions in the formulas of the math
expression.
• Your metric math expressions can be made up of different aggregations. However, it's a best practice
for the final aggregation result to use Average for the scaling metric and Sum for the load metric.
• Any expressions used in a metric specification must eventually return a single time series.

To use metric math, do the following:

• Choose one or more CloudWatch metrics. Then, create the expression. For more information, see Using
metric math in the Amazon CloudWatch User Guide.
• Verify that the metric math expression is valid by using the CloudWatch console or the CloudWatch
GetMetricData API.

195
Amazon EC2 Auto Scaling User Guide
Using custom metrics

Example predictive scaling policy that combines metrics using metric math
Sometimes, instead of specifying the metric directly, you might need to ﬁrst process its data in some
way. For example, you might have an application that pulls work from an Amazon SQS queue, and you
might want to use the number of items in the queue as criteria for predictive scaling. The number of
messages in the queue does not solely deﬁne the number of instances that you need. Therefore, more
work is needed to create a metric that can be used to calculate the backlog per instance. For more
information, see Scaling based on Amazon SQS (p. 172).

The following is an example predictive scaling policy for this scenario. It speciﬁes scaling and load
metrics that are based on the Amazon SQS ApproximateNumberOfMessagesVisible metric, which is
the number of messages available for retrieval from the queue. It also uses the Amazon EC2 Auto Scaling
GroupInServiceInstances metric and a math expression to calculate the backlog per instance for the
scaling metric.

aws autoscaling put-scaling-policy --policy-name my-sqs-custom-metrics-policy \

--auto-scaling-group-name my-asg --policy-type PredictiveScaling \
--predictive-scaling-configuration file://config.json
{
"MetricSpecifications": [
{
"TargetValue": 100,
"CustomizedScalingMetricSpecification": {
"MetricDataQueries": [
{
"Label": "Get the queue size (the number of messages waiting to be processed)",
"Id": "queue_size",
"MetricStat": {
"Metric": {
"MetricName": "ApproximateNumberOfMessagesVisible",
"Namespace": "AWS/SQS",
"Dimensions": [
{
"Name": "QueueName",
"Value": "my-queue"
}
]
},
"Stat": "Sum"
},
"ReturnData": false
},
{
"Label": "Get the group size (the number of running instances)",
"Id": "running_capacity",
"MetricStat": {
"Metric": {
"MetricName": "GroupInServiceInstances",
"Namespace": "AWS/AutoScaling",
"Dimensions": [
{
"Name": "AutoScalingGroupName",
"Value": "my-asg"
}
]
},
"Stat": "Sum"
},
"ReturnData": false
},
{
"Label": "Calculate the backlog per instance",
"Id": "scaling_metric",

196
Amazon EC2 Auto Scaling User Guide
Using custom metrics

"Expression": "queue_size / running_capacity",

"ReturnData": true
}
]
},
"CustomizedLoadMetricSpecification": {
"MetricDataQueries": [
{
"Id": "load_metric",
"MetricStat": {
"Metric": {
"MetricName": "ApproximateNumberOfMessagesVisible",
"Namespace": "AWS/SQS",
"Dimensions": [
{
"Name": "QueueName",
"Value": "my-queue"
}
],
"Stat": "Sum"
}
},
"ReturnData": true
}
]
}
}
]
}

The example returns the policy's ARN.

{
"PolicyARN": "arn:aws:autoscaling:region:account-id:scalingPolicy:2f4f5048-d8a8-4d14-
b13a-d1905620f345:autoScalingGroupName/my-asg:policyName/my-sqs-custom-metrics-policy",
"Alarms": []
}

Example predictive scaling policy to use in a blue/green deployment scenario

A search expression provides an advanced option in which you can query for a metric from multiple
Auto Scaling groups and perform math expressions on them. This is especially useful for blue/green
deployments.
Note
A blue/green deployment is a deployment method in which you create two separate but identical
Auto Scaling groups. Only one of the groups receives production traffic. User traffic is initially
directed to the earlier ("blue") Auto Scaling group, while a new group ("green") is used for
testing and evaluation of a new version of an application or service. User traffic is shifted to the
green Auto Scaling group after a new deployment is tested and accepted. You can then delete
the blue group after the deployment is successful.

When new Auto Scaling groups get created as part of a blue/green deployment, the metric history of
each group can be automatically included in the predictive scaling policy without you having to change
its metric speciﬁcations. For more information, see Using EC2 Auto Scaling predictive scaling policies
with Blue/Green deployments on the AWS Compute Blog.

The following example policy shows how this can be done. In this example, the policy uses
the CPUUtilization metric emitted by Amazon EC2. It uses the Amazon EC2 Auto Scaling
GroupInServiceInstances metric and a math expression to calculate the value of the scaling metric
per instance. It also speciﬁes a capacity metric speciﬁcation to get the GroupInServiceInstances
metric.

197
Amazon EC2 Auto Scaling User Guide
Using custom metrics

The search expression ﬁnds the CPUUtilization of instances in multiple Auto Scaling groups based on
the speciﬁed search criteria. If you later create a new Auto Scaling group that matches the same search
criteria, the CPUUtilization of the instances in the new Auto Scaling group is automatically included.

aws autoscaling put-scaling-policy --policy-name my-blue-green-predictive-scaling-policy \

--auto-scaling-group-name my-asg --policy-type PredictiveScaling \
--predictive-scaling-configuration file://config.json
{
"MetricSpecifications": [
{
"TargetValue": 25,
"CustomizedScalingMetricSpecification": {
"MetricDataQueries": [
{
"Id": "load_sum",
"Expression": "SUM(SEARCH('{AWS/EC2,AutoScalingGroupName} MetricName=
\"CPUUtilization\" ASG-myapp', 'Sum', 300))",
"ReturnData": false
},
{
"Id": "capacity_sum",
"Expression": "SUM(SEARCH('{AWS/AutoScaling,AutoScalingGroupName} MetricName=
\"GroupInServiceInstances\" ASG-myapp', 'Average', 300))",
"ReturnData": false
},
{
"Id": "weighted_average",
"Expression": "load_sum / capacity_sum",
"ReturnData": true
}
]
},
"CustomizedLoadMetricSpecification": {
"MetricDataQueries": [
{
"Id": "load_sum",
"Expression": "SUM(SEARCH('{AWS/EC2,AutoScalingGroupName} MetricName=
\"CPUUtilization\" ASG-myapp', 'Sum', 3600))"
}
]
},
"CustomizedCapacityMetricSpecification": {
"MetricDataQueries": [
{
"Id": "capacity_sum",
"Expression": "SUM(SEARCH('{AWS/AutoScaling,AutoScalingGroupName} MetricName=
\"GroupInServiceInstances\" ASG-myapp', 'Average', 300))"
}
]
}
}
]
}

The example returns the policy's ARN.

{
"PolicyARN": "arn:aws:autoscaling:region:account-id:scalingPolicy:2f4f5048-d8a8-4d14-
b13a-d1905620f345:autoScalingGroupName/my-asg:policyName/my-blue-green-predictive-scaling-
policy",
"Alarms": []
}

198
Amazon EC2 Auto Scaling User Guide
Scheduled scaling

Considerations and troubleshooting

If an issue occurs while using custom metrics, we recommend that you do the following:

• If an error message is provided, read the message and resolve the issue it reports, if possible.
• If an issue occurs when you are trying to use a search expression in a blue/green deployment scenario,
first make sure that you understand how to create a search expression that looks for a partial match
instead of an exact match. Also, check that your query finds only the Auto Scaling groups that are
running the specific application. For more information about the search expression syntax, see
CloudWatch search expression syntax in the Amazon CloudWatch User Guide.
• If you did not validate an expression in advance, the put-scaling-policy command validates it when
you create your scaling policy. However, there is a possibility that this command might fail to identify
the exact cause of the detected errors. To fix the issues, troubleshoot the errors that you receive in a
response from a request to the get-metric-data command. You can also troubleshoot the expression
from the CloudWatch console.
• When you view your Load and Capacity graphs in the console, the Capacity graph might not show
any data. To ensure that the graphs have complete data, make sure that you consistently enable group
metrics for your Auto Scaling groups. For more information, see Enable Auto Scaling group metrics
(console) (p. 271).
• The capacity metric specification is only useful for blue/green deployments when you have
applications that run in different Auto Scaling groups over their lifetime. This custom metric lets
you provide the total capacity of multiple Auto Scaling groups. Predictive scaling uses this to show
historical data in the Capacity graphs in the console.
• You must specify false for ReturnData if MetricDataQueries specifies the SEARCH() function on
its own without a math function like SUM(). This is because search expressions might return multiple
time series, and a metric specification based on an expression can return only one time series.
• All metrics involved in a search expression should be of the same resolution.

Limitations
• You can query data points of up to 10 metrics in one metric speciﬁcation.
• For the purposes of this limit, one expression counts as one metric.

Scheduled scaling for Amazon EC2 Auto Scaling

Scheduled scaling helps you to set up your own scaling schedule according to predictable load
changes. For example, let's say that every week the traﬃc to your web application starts to increase on
Wednesday, remains high on Thursday, and starts to decrease on Friday. You can conﬁgure a schedule for
Amazon EC2 Auto Scaling to increase capacity on Wednesday and decrease capacity on Friday.

To use scheduled scaling, you create scheduled actions. Scheduled actions are performed automatically
as a function of date and time. When you create a scheduled action, you specify when the scaling activity
should occur and the new desired, minimum, and maximum sizes for the scaling action. You can create
scheduled actions that scale one time only or that scale on a recurring schedule.

Contents
• Considerations (p. 200)
• Recurring schedules (p. 200)
• Create and manage scheduled actions (console) (p. 200)
• Create and manage scheduled actions (AWS CLI) (p. 202)
• Limitations (p. 204)

199
Amazon EC2 Auto Scaling User Guide
Considerations

Considerations
When you create a scheduled action, keep the following in mind:

• A scheduled action sets the desired, minimum, and maximum sizes to what is specified by the
scheduled action at the date and time specified. The request can optionally include only one of these
sizes. For example, you can create a scheduled action with only the desired capacity specified. In some
cases, however, you must include the minimum and maximum sizes to ensure that the new desired
capacity that you specified in the action is not outside of these limits.
• By default, the recurring schedules that you set are in Coordinated Universal Time (UTC). You can
change the time zone to correspond to your local time zone or a time zone for another part of
your network. When you specify a time zone that observes Daylight Saving Time (DST), the action
automatically adjusts for DST.
• You can temporarily turn off scheduled scaling for an Auto Scaling group by suspending the
ScheduledActions process. This helps you prevent scheduled actions from being active without
having to delete them. You can then resume scheduled scaling when you want to use it again. For
more information, see Suspending and resuming a process for an Auto Scaling group (p. 253).
• The order of execution for scheduled actions is guaranteed within the same group, but not for
scheduled actions across groups.
• A scheduled action generally executes within seconds. However, the action might be delayed for up to
two minutes from the scheduled start time. Because scheduled actions within an Auto Scaling group
are executed in the order that they are specified, actions with scheduled start times close to each other
can take longer to execute.

Recurring schedules
You can create scheduled actions that scale your Auto Scaling group on a recurring schedule.

To create a recurring schedule using the AWS CLI or an SDK, specify a cron expression and a time zone to
describe when that schedule action is to recur. You can optionally specify a date and time for the start
time, the end time, or both.

To create a recurring schedule using the AWS Management Console, specify the recurrence pattern, time
zone, start time, and optional end time of your scheduled action. All of the recurrence pattern options
are based on cron expressions. Alternatively, you can write your own custom cron expression.

The supported cron expression format consists of five fields separated by white spaces: [Minute] [Hour]
[Day_of_Month] [Month_of_Year] [Day_of_Week]. For example, the cron expression 30 6 * * 2
configures a scheduled action that recurs every Tuesday at 6:30 AM. The asterisk is used as a wildcard
to match all values for a field. For other examples of cron expressions, see https://crontab.guru/
examples.html. For information about writing your own cron expressions in this format, see Crontab.

Choose your start and end times carefully. Keep the following in mind:

• If you specify a start time, Amazon EC2 Auto Scaling performs the action at this time, and then
performs the action based on the speciﬁed recurrence.
• If you specify an end time, the action stops repeating after this time. A scheduled action does not
persist in your account once it has reached its end time.
• The start time and end time must be set in UTC when you use the AWS CLI or an SDK.

Create and manage scheduled actions (console)

Use the procedures in this section to create and manage scheduled actions using the AWS Management
Console.

200
Amazon EC2 Auto Scaling User Guide
Create and manage scheduled actions (console)

If you create a scheduled action using the console and specify a time zone that observes Daylight Saving
Time (DST), both the recurring schedule and the start and end times automatically adjust for DST.

Create a scheduled action

Complete the following procedure to create a scheduled action to scale your Auto Scaling group.

To create a scheduled action for an Auto Scaling group

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Automatic scaling tab, in Scheduled actions, choose Create scheduled action.
4. Enter a Name for the scheduled action.
5. For Desired capacity, Min, Max, choose the new desired size of the group and the new minimum
and maximum capacity.
6. For Recurrence, choose one of the available options.

• If you want to scale on a recurring schedule, choose how often Amazon EC2 Auto Scaling should
run the scheduled action.
• If you choose an option that begins with Every, the cron expression is created for you.
• If you choose Cron, enter a cron expression that specifies when to perform the action.
• If you want to scale only once, choose Once.
7. For Time zone, choose a time zone. The default is Etc/UTC.
Note
All of the time zones listed are from the IANA Time Zone database. For more information,
see https://en.wikipedia.org/wiki/List_of_tz_database_time_zones.
8. Define a date and time for Specific start time.

• If you chose a recurring schedule, the start time defines when the first scheduled action in the
recurring series runs.
• If you chose Once as the recurrence, the start time defines the date and time for the schedule
action to run.
9. (Optional) For recurring schedules, you can specify an end time by choosing Set End Time and then
choosing a date and time for End by.
10. Choose Create. The console displays the scheduled actions for the Auto Scaling group.

Verify the time, date, and time zone

To verify whether your time, date, and time zone are conﬁgured correctly, check the Start time, End
time, and Time zone values in the Scheduled actions table on the Automatic scaling tab for your Auto
Scaling group.

Amazon EC2 Auto Scaling shows the values for Start time and End time in your local time with the
UTC offset in effect at the specified date and time. The UTC offset is the difference, in hours and
minutes, from local time to UTC. The value for Time zone shows your requested time zone, for example,
America/New_York.

Location-based time zones such as America/New_York automatically adjust for Daylight Savings Time
(DST). However, a UTC-based time zone such as Etc/UTC is an absolute time and will not adjust for DST.

201
Amazon EC2 Auto Scaling User Guide
Create and manage scheduled actions (AWS CLI)

For example, you have a recurring schedule whose time zone is America/New_York. The ﬁrst scaling
action happens in the America/New_York time zone before DST starts. The next scaling action happens
in the America/New_York time zone after DST starts. The ﬁrst action starts at 8:00 AM UTC-5 in local
time, while the second time starts at 8:00 AM UTC-4 in local time.

Update a scheduled action

After creating a scheduled action, you can update any of its settings except the name.

To update a scheduled action

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

Delete a scheduled action

When you no longer need a scheduled action, you can delete it.

To delete a scheduled action

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select your Auto Scaling group.
3. On the Automatic scaling tab, in Scheduled actions, select a scheduled action.
4. Choose Actions, Delete.
5. When prompted for conﬁrmation, choose Yes, Delete.

Create and manage scheduled actions (AWS CLI)

You can create and update scheduled actions that scale one time only or that scale on a recurring
schedule using the put-scheduled-update-group-action command.

Create a scheduled action that occurs only once

To automatically scale your Auto Scaling group one time only, at a speciﬁed date and time, use the --
start-time "YYYY-MM-DDThh:mm:ssZ" option.

Example: To scale out one time only

To increase the number of running instances in your Auto Scaling group at a speciﬁc time, use the
following command.

At the date and time speciﬁed for --start-time (8:00 AM UTC on March 31, 2021), if the group
currently has fewer than 3 instances, it scales out to 3 instances.

aws autoscaling put-scheduled-update-group-action --scheduled-action-name my-one-time-

action \
--auto-scaling-group-name my-asg --start-time "2021-03-31T08:00:00Z" --desired-
capacity 3

202
Amazon EC2 Auto Scaling User Guide
Create and manage scheduled actions (AWS CLI)

Example: To scale in one time only

To decrease the number of running instances in your Auto Scaling group at a speciﬁc time, use the
following command.

At the date and time speciﬁed for --start-time (4:00 PM UTC on March 31, 2021), if the group
currently has more than 1 instance, it scales in to 1 instance.

aws autoscaling put-scheduled-update-group-action --scheduled-action-name my-one-time-

action \
--auto-scaling-group-name my-asg --start-time "2021-03-31T16:00:00Z" --desired-
capacity 1

Create a scheduled action that runs on a recurring schedule

To schedule scaling on a recurring schedule, use the --recurrence "cron expression" option.

The following is an example of a scheduled action that speciﬁes a cron expression.

On the speciﬁed schedule (every day at 9:00 AM UTC), if the group currently has fewer than 3 instances,
it scales out to 3 instances. If the group currently has more than 3 instances, it scales in to 3 instances.

aws autoscaling put-scheduled-update-group-action --scheduled-action-name my-recurring-

action \
--auto-scaling-group-name my-asg --recurrence "0 9 * * *" --desired-capacity 3

Create a recurring scheduled action that speciﬁes a time zone

Scheduled actions are set to the UTC time zone by default. To specify a diﬀerent time zone, include the
--time-zone option and specify the canonical name for the IANA time zone (America/New_York, for
example). For more information, see https://en.wikipedia.org/wiki/List_of_tz_database_time_zones.

The following is an example that uses the --time-zone option when creating a recurring scheduled
action to scale capacity.

On the speciﬁed schedule (every Monday through Friday at 6:00 PM local time), if the group currently
has fewer than 2 instances, it scales out to 2 instances. If the group currently has more than 2 instances,
it scales in to 2 instances.

aws autoscaling put-scheduled-update-group-action --scheduled-action-name my-recurring-

action \
--auto-scaling-group-name my-asg --recurrence "0 18 * * 1-5" --time-zone "America/
New_York" \
--desired-capacity 2

Describe scheduled actions

To describe the scheduled actions for an Auto Scaling group, use the following describe-scheduled-
actions command.

aws autoscaling describe-scheduled-actions --auto-scaling-group-name my-asg

If successful, this command returns output similar to the following.

{
"ScheduledUpdateGroupActions": [
{

203
Amazon EC2 Auto Scaling User Guide
Limitations

"AutoScalingGroupName": "my-asg",
"ScheduledActionName": "my-recurring-action",
"Recurrence": "30 0 1 1,6,12 *",
"ScheduledActionARN": "arn:aws:autoscaling:us-
west-2:123456789012:scheduledUpdateGroupAction:8e86b655-b2e6-4410-8f29-
b4f094d6871c:autoScalingGroupName/my-asg:scheduledActionName/my-recurring-action",
"StartTime": "2020-12-01T00:30:00Z",
"Time": "2020-12-01T00:30:00Z",
"MinSize": 1,
"MaxSize": 6,
"DesiredCapacity": 4
}
]
}

Delete a scheduled action

To delete a scheduled action, use the following delete-scheduled-action command.

aws autoscaling delete-scheduled-action --auto-scaling-group-name my-asg \

--scheduled-action-name my-recurring-action

Limitations
• The names of scheduled actions must be unique per Auto Scaling group.
• A scheduled action must have a unique time value. If you attempt to schedule an activity at a time
when another scaling activity is already scheduled, the call is rejected and returns an error indicating
that a scheduled action with this scheduled start time already exists.
• You can create a maximum of 125 scheduled actions per Auto Scaling group.

Amazon EC2 Auto Scaling lifecycle hooks

Amazon EC2 Auto Scaling oﬀers the ability to add lifecycle hooks to your Auto Scaling groups. These
hooks let you create solutions that are aware of events in the Auto Scaling instance lifecycle, and then
perform a custom action on instances when the corresponding lifecycle event occurs. A lifecycle hook
provides a speciﬁed amount of time (one hour by default) to wait for the action to complete before the
instance transitions to the next state.

As an example of using lifecycle hooks with Auto Scaling instances:

• When a scale-out event occurs, your newly launched instance completes its startup sequence and
transitions to a wait state. While the instance is in a wait state, it runs a script to download and install
the needed software packages for your application, making sure that your instance is fully ready
before it starts receiving traffic. When the script is finished installing software, it sends the complete-
lifecycle-action command to continue.
• When a scale-in event occurs, a lifecycle hook pauses the instance before it is terminated and sends
you a notification using Amazon EventBridge. While the instance is in the wait state, you can invoke an
AWS Lambda function or connect to the instance to download logs or other data before the instance is
fully terminated.

A popular use of lifecycle hooks is to control when instances are registered with Elastic Load Balancing.
By adding a launch lifecycle hook to your Auto Scaling group, you can ensure that your bootstrap scripts
have completed successfully and the applications on the instances are ready to accept traﬃc before they
are registered to the load balancer at the end of the lifecycle hook.

204
Amazon EC2 Auto Scaling User Guide
Considerations and limitations

For an introduction video, see AWS re:Invent 2018: Capacity Management Made Easy with Amazon EC2
Auto Scaling on YouTube.

Contents
• Considerations and limitations (p. 205)
• Lifecycle hook availability (p. 205)
• Examples (p. 206)
• How lifecycle hooks work (p. 206)
• Prepare to add a lifecycle hook to your Auto Scaling group (p. 207)
• Adding lifecycle hooks (p. 212)
• Completing a lifecycle action (p. 213)
• Tutorial: Conﬁgure a lifecycle hook that invokes a Lambda function (p. 215)

Considerations and limitations

When using lifecycle hooks, keep in mind the following key considerations and limitations:

• Amazon EC2 Auto Scaling provides its own lifecycle to help with the management of Auto Scaling
groups. This lifecycle differs from that of other EC2 instances. For more information, see Amazon EC2
Auto Scaling instance lifecycle (p. 8).
• Instances in a warm pool also have their own lifecycle, as described in Lifecycle state transitions for
instances in a warm pool (p. 225).
• You can configure a launch lifecycle hook to abandon the launch if an unexpected failure occurs, in
which case Amazon EC2 Auto Scaling automatically terminates and replaces the instance.
• You can use lifecycle hooks with Spot Instances, but a lifecycle hook does not prevent an instance from
terminating in the event that capacity is no longer available, which can happen at any time with a two-
minute interruption notice. For more information, see Spot Instance interruptions in the Amazon EC2
User Guide for Linux Instances. However, you can enable Capacity Rebalancing to proactively replace
Spot Instances that have received a rebalance recommendation from the Amazon EC2 Spot service, a
signal that is sent when a Spot Instance is at elevated risk of interruption. For more information, see
Amazon EC2 Auto Scaling Capacity Rebalancing (p. 263).
• When scaling out, Amazon EC2 Auto Scaling doesn't count a new instance towards the aggregated
CloudWatch instance metrics of the Auto Scaling group (such as CPUUtilization, NetworkIn,
NetworkOut, and so on) until after the launch lifecycle hook finishes. On scale in, the terminating
instance stops counting toward the group's aggregated instance metrics while the termination lifecycle
hook is finishing up.
• When an Auto Scaling group launches or terminates an instance due to simple scaling policies, a
cooldown period takes effect. The cooldown period helps ensure that the Auto Scaling group does not
launch or terminate more instances than needed before the effects of previous simple scaling activities
are visible. When a lifecycle action occurs, and an instance enters the wait state, scaling activities due
to simple scaling policies are paused. When the lifecycle actions finish, the cooldown period starts. If
you set a long interval for the cooldown period, it will take more time for scaling to resume. For more
information, see Scaling cooldowns for Amazon EC2 Auto Scaling (p. 168).
• Amazon EC2 Auto Scaling limits the rate at which it allows instances to launch if the lifecycle hooks are
failing consistently.
• There is a quota that specifies the maximum number of lifecycle hooks that you can create per Auto
Scaling group. For more information, see Amazon EC2 Auto Scaling service quotas (p. 10).

Lifecycle hook availability

The following table lists the lifecycle hooks available for various scenarios.

205
Amazon EC2 Auto Scaling User Guide
Examples

Event Instance Maximum Instance Capacity Warm Pools:

launch or Instance Refresh: Rebalancing: Instances
termination¹ Lifetime: Replacement Replacement entering and
Replacement instances instances leaving the
instances warm pool

Instance ✓ ✓ ✓ ✓ ✓
launching

Instance ✓ ✓ ✓ ✓ ✓
terminating

¹ Applies to instances launched or terminated when the group is created or deleted, when the group
scales automatically, or when you manually adjust your group's desired capacity. Does not apply when
you attach or detach instances, move instances in and out of standby mode, or delete the group with the
force delete option.

Examples
We provide a few JSON and YAML template snippets that you can use to understand how to
declare lifecycle hooks in your AWS CloudFormation stack templates. For more information, see the
AWS::AutoScaling::LifecycleHook reference in the AWS CloudFormation User Guide.

You can also visit our GitHub repository to download example templates and user data scripts for
lifecycle hooks.

For other examples of the use of lifecycle hooks, see the following blog posts: Building a Backup System
for Scaled Instances using Lambda and Amazon EC2 Run Command and Run code before terminating an
EC2 Auto Scaling instance.

How lifecycle hooks work

An Amazon EC2 instance transitions through diﬀerent states from the time it launches until it is
terminated. You can create lifecycle hooks to act when an instance transitions into a wait state.

The following illustration shows the transitions between Auto Scaling instance states.

206
Amazon EC2 Auto Scaling User Guide
Prepare to add a lifecycle hook

As shown in the preceding diagram:

1. The Auto Scaling group responds to a scale-out event and begins launching an instance.
2. The lifecycle hook puts the instance into a wait state (Pending:Wait) and then performs a custom
action.

The instance remains in a wait state until you either complete the lifecycle action using the complete-
lifecycle-action CLI command or the CompleteLifecycleAction action, or the timeout period ends. By
default, the instance remains in a wait state for one hour, and then the Auto Scaling group continues
the launch process (Pending:Proceed). If you need more time, you can restart the timeout period
by recording a heartbeat. If you complete the lifecycle action before the timeout period expires, the
period ends and the Auto Scaling group continues the launch process.
3. The instance enters the InService state and the health check grace period starts. However, before
the instance reaches the InService state, if the Auto Scaling group is associated with an Elastic
Load Balancing load balancer, the instance is registered with the load balancer, and the load balancer
starts checking its health. After the health check grace period ends, Amazon EC2 Auto Scaling begins
checking the health state of the instance.
4. The Auto Scaling group responds to a scale-in event and begins terminating an instance. If the Auto
Scaling group is being used with Elastic Load Balancing, the terminating instance is ﬁrst deregistered
from the load balancer. If connection draining is enabled for the load balancer, the instance stops
accepting new connections and waits for existing connections to drain before completing the
deregistration process.
5. The lifecycle hook puts the instance into a wait state (Terminating:Wait) and then performs a
custom action.

The instance remains in a wait state either until you complete the lifecycle action, or until the timeout
period ends (one hour by default). After you complete the lifecycle hook or the timeout period expires,
the instance transitions to the next state (Terminating:Proceed).
6. The instance is terminated.

Important
Instances in a warm pool also have their own lifecycle with corresponding wait states, as
described in Lifecycle state transitions for instances in a warm pool (p. 225).

Prepare to add a lifecycle hook to your Auto Scaling

group
Before you add a lifecycle hook to your Auto Scaling group, be sure that your notiﬁcation target or user
data script is set up correctly.

• To use a service such as Lambda to perform a custom action, you must have already created an
EventBridge rule and specified a Lambda function as its target. For more information, see Configure a
notification target for lifecycle notifications (p. 208).
• To allow Lambda to signal Amazon EC2 Auto Scaling when the lifecycle action is complete, you must
add the CompleteLifecycleAction API call to the function code. You must also have attached an IAM
policy to the function's execution role to give Lambda permission to complete lifecycle hooks. For
more information, see Tutorial: Configure a lifecycle hook that invokes a Lambda function (p. 215).
• To use a service such as Amazon SNS or Amazon SQS to perform a custom action, you must have
already created the SNS topic or SQS queue and have ready its Amazon Resource Name (ARN). You
must also have already created the IAM role that gives Amazon EC2 Auto Scaling access to your SNS
topic or SQS target and have ready its ARN. For more information, see Configure a notification target
for lifecycle notifications (p. 208).

207
Amazon EC2 Auto Scaling User Guide
Prepare to add a lifecycle hook

Note
By default, when you add a lifecycle hook in the console, Amazon EC2 Auto Scaling sends
lifecycle event notifications to Amazon EventBridge. Using EventBridge or a user data script
is a recommended best practice. To create a lifecycle hook that sends notifications to Amazon
SNS or Amazon SQS, use the AWS CLI or an SDK to add the lifecycle hook.
• To run a user data script to perform custom actions on your instances as they are launching, you
do not need to configure a notification target. However, you must have already created the launch
template or launch configuration that specifies your user data script and associated it with your
Auto Scaling group. For more information about user data scripts, see Run commands on your Linux
instance at launch in the Amazon EC2 User Guide for Linux Instances.
• If you want your script to signal Amazon EC2 Auto Scaling when the lifecycle action is complete, you
must add the CompleteLifecycleAction API call to the script, and you must manually create an IAM
role with a policy that allows Auto Scaling instances to call this API. Your launch template or launch
configuration must specify this role using an IAM instance profile that gets attached to your Amazon
EC2 instances at launch. For more information, see Completing a lifecycle action (p. 213) and IAM
role for applications that run on Amazon EC2 instances (p. 320).

Configure a notification target for lifecycle notifications

You can add lifecycle hooks to an Auto Scaling group to perform custom actions when an instance enters
a wait state. You can choose a target service to perform these actions depending on your preferred
development approach.

The first approach uses Amazon EventBridge to invoke a Lambda function that performs the action
you want. The second approach involves creating an Amazon Simple Notification Service (Amazon SNS)
topic to which notifications are published. Clients can subscribe to the SNS topic and receive published
messages using a supported protocol. The last approach involves using Amazon Simple Queue Service
(Amazon SQS), a messaging system used by distributed applications to exchange messages through a
polling model.

As a best practice, we recommend that you use EventBridge. The notifications sent to Amazon SNS and
Amazon SQS contain the same information as the notifications that Amazon EC2 Auto Scaling sends to
EventBridge. Before EventBridge, the standard practice was to send a notification to SNS or SQS and
integrate another service with SNS or SQS to perform programmatic actions. Today, EventBridge gives
you more options for which services you can target and makes it easier to handle events using serverless
architecture.

The following procedures cover how to set up your notiﬁcation target.

Remember, if you have a user data script in your launch template or launch configuration that configures
your instances when they launch, you do not need to receive notification to perform custom actions on
your instances.

Contents
• Route notifications to Lambda using EventBridge (p. 209)
• Receive notifications using Amazon SNS (p. 210)
• Receive notifications using Amazon SQS (p. 210)
• Notification message example for Amazon SNS and Amazon SQS (p. 211)

Important
The EventBridge rule, Lambda function, Amazon SNS topic, and Amazon SQS queue that you
use with lifecycle hooks must always be in the same Region where you created your Auto
Scaling group.

208
Amazon EC2 Auto Scaling User Guide
Prepare to add a lifecycle hook

Route notiﬁcations to Lambda using EventBridge

You can conﬁgure an EventBridge rule to invoke a Lambda function when an instance enters a wait state.
Amazon EC2 Auto Scaling emits a lifecycle event notiﬁcation to EventBridge about the instance that is
launching or terminating and a token that you can use to control the lifecycle action. For examples of
these events, see Auto Scaling events (p. 285).

Before you create your EventBridge rule, you must create a Lambda function. For an introductory
tutorial that shows you how to create a simple Lambda function that listens for launch events and writes
them out to a CloudWatch Logs log, see Tutorial: Conﬁgure a lifecycle hook that invokes a Lambda
function (p. 215).

To create an EventBridge rule that invokes a Lambda function

1. Create a Lambda function by using the Lambda console and note its Amazon Resource Name (ARN).
For example, arn:aws:lambda:region:123456789012:function:my-function. You need the
ARN to create an EventBridge target.

For more information, see Getting started with Lambda in the AWS Lambda Developer Guide.
2. Create an EventBridge rule that matches the lifecycle action using the following put-rule command.
Note
When you use the AWS Management Console to create an event rule, the console
automatically adds the IAM permissions necessary to grant EventBridge permission to call
your Lambda function. If you are creating an event rule using the AWS CLI, you need to
grant this permission explicitly. For the steps for creating an event rule using the console,
see Tutorial: Conﬁgure a lifecycle hook that invokes a Lambda function (p. 215).

aws events put-rule --name my-rule --event-pattern file://pattern.json --state ENABLED

The following example shows the pattern.json for an instance launch lifecycle action.

{
"source": [ "aws.autoscaling" ],
"detail-type": [ "EC2 Instance-launch Lifecycle Action" ]
}

The following example shows the pattern.json for an instance terminate lifecycle action.

{
"source": [ "aws.autoscaling" ],
"detail-type": [ "EC2 Instance-terminate Lifecycle Action" ]
}

3. Create a target that invokes your Lambda function when the lifecycle action occurs, using the
following put-targets command.

aws events put-targets --rule my-rule --targets

Id=1,Arn=arn:aws:lambda:region:123456789012:function:my-function

4. Grant the rule permission to invoke your Lambda function using the following add-permission
command. This command trusts the EventBridge service principal (events.amazonaws.com) and
scopes permissions to the speciﬁed rule.

aws lambda add-permission --function-name my-function --statement-id my-unique-id \

--action 'lambda:InvokeFunction' --principal events.amazonaws.com --source-arn
arn:aws:events:region:123456789012:rule/my-rule

209
Amazon EC2 Auto Scaling User Guide
Prepare to add a lifecycle hook

5. After you have followed these instructions, continue on to Adding lifecycle hooks (p. 212) as a next
step.

Receive notiﬁcations using Amazon SNS

You can use Amazon SNS to set up a notification target (an SNS topic) to receive notifications when a
lifecycle action occurs. Amazon SNS then sends the notifications to the subscribed recipients. Until the
subscription is confirmed, no notifications published to the topic are sent to the recipients.

To set up notiﬁcations using Amazon SNS

1. Create an Amazon SNS topic by using either the Amazon SNS console or the following create-topic
command. Ensure that the topic is in the same Region as the Auto Scaling group that you're using.
For more information, see Getting started with Amazon SNS in the Amazon Simple Notiﬁcation
Service Developer Guide.

aws sns create-topic --name my-sns-topic

2. Note the topic Amazon Resource Name (ARN), for example,

arn:aws:sns:region:123456789012:my-sns-topic. You need it to create the lifecycle hook.
3. Create an IAM service role to give Amazon EC2 Auto Scaling access to your Amazon SNS notiﬁcation
target.

To give Amazon EC2 Auto Scaling access to your SNS topic

a. Open the IAM console at https://console.aws.amazon.com/iam/.

b. On the navigation pane, choose Roles, Create role.
c. Under Select type of trusted entity, choose AWS service.
d. Under Choose the service that will use this role, choose EC2 Auto Scaling from the list.
e. Under Select your use case, choose EC2 Auto Scaling Notiﬁcation Access, and then choose
Next:Permissions.
f. Choose Next:Tags. Optionally, you can add metadata to the role by attaching tags as key-value
pairs. Then choose Next:Review.
g. On the Review page, enter a name for the role (for example, my-notiﬁcation-role), and choose
Create role.
h. On the Roles page, choose the role that you just created to open the Summary page.
Make a note of the Role ARN. For example, arn:aws:iam::123456789012:role/my-
notification-role. You need it to create the lifecycle hook.
4. After you have followed these instructions, continue on to Add lifecycle hooks (AWS CLI) (p. 213)
as a next step.

Receive notiﬁcations using Amazon SQS

You can use Amazon SQS to set up a notiﬁcation target to receive messages when a lifecycle action
occurs. A queue consumer must then poll an SQS queue to act on these notiﬁcations.
Important
FIFO queues are not compatible with lifecycle hooks.

To set up notiﬁcations using Amazon SQS

1. Create an Amazon SQS queue by using the Amazon SQS console. Ensure that the queue is in the
same Region as the Auto Scaling group that you're using. For more information, see Getting started
with Amazon SQS in the Amazon Simple Queue Service Developer Guide.

210
Amazon EC2 Auto Scaling User Guide
Prepare to add a lifecycle hook

2. Note the queue ARN, for example, arn:aws:sqs:region:123456789012:my-sqs-queue. You

need it to create the lifecycle hook.
3. Create an IAM service role to give Amazon EC2 Auto Scaling access to your Amazon SQS notiﬁcation
target.

To give Amazon EC2 Auto Scaling access to your SQS queue

a. Open the IAM console at https://console.aws.amazon.com/iam/.

b. On the navigation pane, choose Roles, Create role.
c. Under Select type of trusted entity, choose AWS service.
d. Under Choose the service that will use this role, choose EC2 Auto Scaling from the list.
e. Under Select your use case, choose EC2 Auto Scaling Notiﬁcation Access, and then choose
Next:Permissions.
f. Choose Next:Tags. Optionally, you can add metadata to the role by attaching tags as key-value
pairs. Then choose Next:Review.
g. On the Review page, enter a name for the role (for example, my-notiﬁcation-role), and choose
Create role.
h. On the Roles page, choose the role you that just created to open the Summary page.
Make a note of the Role ARN. For example, arn:aws:iam::123456789012:role/my-
notification-role. You need it to create the lifecycle hook.
4. After you have followed these instructions, continue on to Add lifecycle hooks (AWS CLI) (p. 213)
as a next step.

Notiﬁcation message example for Amazon SNS and Amazon SQS

While the instance is in a wait state, a message is published to the Amazon SNS or Amazon SQS
notiﬁcation target. The message includes the following information:

• LifecycleActionToken — The lifecycle action token.

• AccountId — The Amazon Web Services account ID.
• AutoScalingGroupName — The name of the Auto Scaling group.
• LifecycleHookName — The name of the lifecycle hook.
• EC2InstanceId — The ID of the EC2 instance.
• LifecycleTransition — The lifecycle hook type.
• NotificationMetadata — The notiﬁcation metadata.

The following is a notiﬁcation message example.

Service: AWS Auto Scaling

Time: 2021-01-19T00:36:26.533Z
RequestId: 18b2ec17-3e9b-4c15-8024-ff2e8ce8786a
LifecycleActionToken: 71514b9d-6a40-4b26-8523-05e7ee35fa40
AccountId: 123456789012
AutoScalingGroupName: my-asg
LifecycleHookName: my-hook
EC2InstanceId: i-0598c7d356eba48d7
LifecycleTransition: autoscaling:EC2_INSTANCE_LAUNCHING
NotificationMetadata: hook message metadata

Test notiﬁcation message example

When you first add a lifecycle hook, a test notification message is published to the notification target.
The following is a test notification message example.

211
Amazon EC2 Auto Scaling User Guide
Adding lifecycle hooks

Service: AWS Auto Scaling

Time: 2021-01-19T00:35:52.359Z
RequestId: 18b2ec17-3e9b-4c15-8024-ff2e8ce8786a
Event: autoscaling:TEST_NOTIFICATION
AccountId: 123456789012
AutoScalingGroupName: my-asg
AutoScalingGroupARN: arn:aws:autoscaling:us-west-2:123456789012:autoScalingGroup:042cba90-
ad2f-431c-9b4d-6d9055bcc9fb:autoScalingGroupName/my-asg

Note
For examples of the events delivered from Amazon EC2 Auto Scaling to EventBridge, see Auto
Scaling events (p. 285).

Adding lifecycle hooks

To put your Auto Scaling instances into a wait state and perform custom actions on them, you can add
lifecycle hooks to your Auto Scaling group. Custom actions are performed as the instances launch or
before they terminate. Instances remain in a wait state until you either complete the lifecycle action, or
the timeout period ends.

To create lifecycle hooks for scaling out (instances launching) and scaling in (instances terminating), you
must create two separate hooks.

By default, when you add a lifecycle hook in the console, Amazon EC2 Auto Scaling sends lifecycle event
notiﬁcations to Amazon EventBridge. Using EventBridge or a user data script is a recommended best
practice. To create a lifecycle hook that sends notiﬁcations to Amazon SNS or Amazon SQS, use the AWS
CLI or an SDK to add the lifecycle hook.

Pay attention to the following settings when creating your lifecycle hook:

• Heartbeat timeout: This setting speciﬁes how much time must pass before the hook times out. The
range is from 30 to 7200 seconds. The default value is one hour (3600 seconds). During the timeout
period, you can perform a custom action.
• Default result: This setting deﬁnes the action to take when the lifecycle hook timeout elapses or when
an unexpected failure occurs. You can choose to either abandon (default) or continue.
• If the instance is launching, continue indicates that your actions were successful, and that the Auto
Scaling group can put the instance into service. Otherwise, abandon indicates that your custom
actions were unsuccessful, and that Amazon EC2 Auto Scaling can terminate the instance.
• If the instance is terminating, both abandon and continue allow the instance to terminate. However,
abandon stops any remaining actions, such as other lifecycle hooks, and continue allows any other
lifecycle hooks to complete.

Contents
• Add lifecycle hooks (console) (p. 212)
• Add lifecycle hooks (AWS CLI) (p. 213)

Add lifecycle hooks (console)

Follow these steps to add a lifecycle hook to an existing Auto Scaling group. You can specify whether the
hook is used when the instances launch or terminate, the amount of time for instances to remain in a
wait state when scaling out or scaling in, and the default action to take on timeout or error.

To add a lifecycle hook

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

212
Amazon EC2 Auto Scaling User Guide
Completing a lifecycle action

2. Select the check box next to your Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page.
3. On the Instance management tab, in Lifecycle hooks, choose Create lifecycle hook.
4. To deﬁne a lifecycle hook, do the following:

a. For Lifecycle hook name, specify a name for the lifecycle hook.
b. For Lifecycle transition, choose Instance launch or Instance terminate.
c. Specify a timeout value for Heartbeat timeout, which allows you to control the amount of time
for the instances to remain in a wait state.
d. For Default result, specify the action that the Auto Scaling group takes when the lifecycle hook
timeout elapses or if an unexpected failure occurs.
e. (Optional) For Notiﬁcation metadata, specify additional information that you want to include
when Amazon EC2 Auto Scaling sends a message to the notiﬁcation target.
5. Choose Create.

Add lifecycle hooks (AWS CLI)

Create and update lifecycle hooks using the put-lifecycle-hook command.

To perform an action on scale out, use the following command.

aws autoscaling put-lifecycle-hook --lifecycle-hook-name my-hook --auto-scaling-group-

name my-asg \
--lifecycle-transition autoscaling:EC2_INSTANCE_LAUNCHING

To perform an action on scale in, use the following command instead.

aws autoscaling put-lifecycle-hook --lifecycle-hook-name my-hook --auto-scaling-group-

name my-asg \
--lifecycle-transition autoscaling:EC2_INSTANCE_TERMINATING

To receive notifications using Amazon SNS or Amazon SQS, you must specify a notification target and an
IAM role. For more information, see Configure a notification target for lifecycle notifications (p. 208).

For example, add the following options to specify an SNS topic as the notiﬁcation target.

--notification-target-arn arn:aws:sns:region:123456789012:my-sns-topic --role-arn

arn:aws:iam::123456789012:role/my-notification-role

The topic receives a test notiﬁcation with the following key-value pair.

"Event": "autoscaling:TEST_NOTIFICATION"

Completing a lifecycle action

When an Auto Scaling group responds to a lifecycle event, it puts the instance in a wait state and sends
an event notiﬁcation. You can perform a custom action while the instance is in a wait state.

Instances can remain in a wait state for a ﬁnite period of time. The default timeout period is one hour
(3600 seconds).

Follow these guidelines for adjusting how long the timeout period lasts:

213
Amazon EC2 Auto Scaling User Guide
Completing a lifecycle action

• Set the heartbeat timeout for the lifecycle hook when you create the lifecycle hook. With the put-
lifecycle-hook command, use the --heartbeat-timeout option.
• If you ﬁnish before the timeout period ends, send the complete-lifecycle-action command to allow the
instance to proceed to the next state.
• Postpone the end of the timeout period by recording a heartbeat, using the record-lifecycle-action-
heartbeat command. This extends the timeout period by the timeout value speciﬁed when you created
the lifecycle hook. For example, if the timeout value is one hour, and you call this command after 30
minutes, the instance remains in a wait state for an additional hour, or a total of 90 minutes.

The maximum amount of time that you can keep an instance in a wait state is 48 hours or 100 times the
heartbeat timeout, whichever is smaller.

Contents
• Completing a lifecycle action (manual) (p. 214)
• Completing a lifecycle action (automatic) (p. 215)

Completing a lifecycle action (manual)

The following procedure is for the command line interface and is not supported in the console.
Information that must be replaced, such as the instance ID or the name of an Auto Scaling group, are
shown in italics.

To complete a lifecycle action (AWS CLI)

1. If you need more time to complete the custom action, use the record-lifecycle-action-heartbeat
command to restart the timeout period and keep the instance in a wait state. You can specify the
lifecycle action token that you received with the notiﬁcation (p. 211), as shown in the following
command.

aws autoscaling record-lifecycle-action-heartbeat --lifecycle-hook-name my-launch-hook

\
--auto-scaling-group-name my-asg --lifecycle-action-
token bcd2f1b8-9a78-44d3-8a7a-4dd07d7cf635

Alternatively, you can specify the ID of the instance that you received with the notiﬁcation (p. 211),
as shown in the following command.

aws autoscaling record-lifecycle-action-heartbeat --lifecycle-hook-name my-launch-hook

\
--auto-scaling-group-name my-asg --instance-id i-1a2b3c4d

2. If you ﬁnish the custom action before the timeout period ends, use the complete-lifecycle-action
command so that the Auto Scaling group can continue launching or terminating the instance. You
can specify the lifecycle action token, as shown in the following command.

aws autoscaling complete-lifecycle-action --lifecycle-action-result CONTINUE \

--lifecycle-hook-name my-launch-hook --auto-scaling-group-name my-asg \
--lifecycle-action-token bcd2f1b8-9a78-44d3-8a7a-4dd07d7cf635

Alternatively, you can specify the ID of the instance, as shown in the following command.

aws autoscaling complete-lifecycle-action --lifecycle-action-result CONTINUE \

--instance-id i-1a2b3c4d --lifecycle-hook-name my-launch-hook \
--auto-scaling-group-name my-asg

214
Amazon EC2 Auto Scaling User Guide
Tutorial: Conﬁgure a lifecycle hook
that invokes a Lambda function

Completing a lifecycle action (automatic)

If you have a user data script that conﬁgures your instances after they launch, you do not need to
manually complete lifecycle actions. You can add the complete-lifecycle-action command to the script.
The script can retrieve the instance ID from the instance metadata and signal Amazon EC2 Auto Scaling
when the bootstrap scripts have completed successfully.

If you are not doing so already, update your script to retrieve the instance ID of the instance from the
instance metadata. For more information, see Retrieving instance metadata in the Amazon EC2 User
Guide for Linux Instances.

If you use Lambda, you can also set up a callback in your function's code to let the lifecycle of the
instance proceed if the custom action is successful. For more information, see Tutorial: Conﬁgure a
lifecycle hook that invokes a Lambda function (p. 215).

Tutorial: Conﬁgure a lifecycle hook that invokes a

Lambda function
In this exercise, you create an EventBridge rule that includes a ﬁlter pattern that when matched, invokes
an AWS Lambda function as the rule target. We provide the ﬁlter pattern and sample function code to
use.

If everything is conﬁgured correctly, at the end of this tutorial, the Lambda function performs a custom
action when instances launch. The custom action simply logs the event in the CloudWatch Logs log
stream associated with the Lambda function.

The Lambda function also performs a callback to let the lifecycle of the instance proceed if this action is
successful, but lets the instance abandon the launch and terminate if the action fails.

Contents
• Prerequisites (p. 215)
• Step 1: Create an IAM role with permissions to complete lifecycle hooks (p. 215)
• Step 2: Create a Lambda function (p. 216)
• Step 3: Create an EventBridge rule (p. 217)
• Step 4: Add a lifecycle hook (p. 218)
• Step 5: Test and verify the event (p. 218)
• Step 6: Next steps (p. 219)
• Step 7: Clean up (p. 219)

Prerequisites
Before you begin this tutorial, create an Auto Scaling group, if you don't have one already. To create an
Auto Scaling group, open the Auto Scaling groups page in the Amazon EC2 console and choose Create
Auto Scaling group.

Note that all of the following procedures are for the new console.

Step 1: Create an IAM role with permissions to complete

lifecycle hooks
Before you create a Lambda function, you must ﬁrst create an execution role and a permissions policy to
allow Lambda to complete lifecycle hooks.

215
Amazon EC2 Auto Scaling User Guide
Tutorial: Conﬁgure a lifecycle hook
that invokes a Lambda function

To create the policy

1. Open the Policies page of the IAM console, and then choose Create policy.
2. Choose the JSON tab.
3. In the Policy Document box, paste the following policy document into the box, replacing the text in
italics with your account number and the name of your Auto Scaling group.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"autoscaling:CompleteLifecycleAction"
],
"Resource":
"arn:aws:autoscaling:*:123456789012:autoScalingGroup:*:autoScalingGroupName/my-asg"
}
]
}

4. Choose Next:Tags, and then Next:Review.

5. For Name, enter LogAutoScalingEvent-policy. Choose Create policy.

When you ﬁnish creating the policy, you can create a role that uses it.

To create the role

1. On the navigation pane, choose Roles, Create role.

2. Under Choose a use case, choose Lambda from the list, and then choose Next:Permissions.
3. Under Attach permissions policies, choose LogAutoScalingEvent-policy and
AWSLambdaBasicExecutionRole.
4. Choose Next:Tags, and then Next:Review.
5. On the Review page, for Name, enter LogAutoScalingEvent-role and choose Create role.

Step 2: Create a Lambda function

Create a Lambda function to serve as the target for events. The sample Lambda function, written in
Node.js, is invoked by EventBridge when a matching event is emitted by Amazon EC2 Auto Scaling.

To create a Lambda function

1. Open the Functions page on the Lambda console.

2. Choose Create function, Author from scratch.
3. Under Basic information, for Function name, enter LogAutoScalingEvent.
4. Choose Change default execution role, and then for Execution role, choose Use an existing role.
5. For Existing role, choose LogAutoScalingEvent-role.
6. Leave the other default values.
7. Choose Create function. You are returned to the function's code and conﬁguration.
8. With your LogAutoScalingEvent function still open in the console, under Function code, in the
editor, copy the following sample code into the ﬁle named index.js.

var aws = require("aws-sdk");

216
Amazon EC2 Auto Scaling User Guide
Tutorial: Conﬁgure a lifecycle hook
that invokes a Lambda function

exports.handler = (event, context, callback) => {

console.log('LogAutoScalingEvent');
console.log('Received event:', JSON.stringify(event, null, 2));
var autoscaling = new aws.AutoScaling({region: event.region});
var eventDetail = event.detail;
var params = {
AutoScalingGroupName: eventDetail['AutoScalingGroupName'], /* required */
LifecycleActionResult: 'CONTINUE', /* required */
LifecycleHookName: eventDetail['LifecycleHookName'], /* required */
InstanceId: eventDetail['EC2InstanceId'],
LifecycleActionToken: eventDetail['LifecycleActionToken']
};
var response;
autoscaling.completeLifecycleAction(params, function(err, data) {
if (err) {
console.log(err, err.stack); // an error occurred
response = {
statusCode: 500,
body: JSON.stringify('ERROR'),
};
} else {
console.log(data); // successful response
response = {
statusCode: 200,
body: JSON.stringify('SUCCESS'),
};
}
});
return response;
};

This code simply logs the event so that, at the end of this tutorial, you can see an event appear in
the CloudWatch Logs log stream that's associated with this Lambda function.
9. Choose Deploy.

Step 3: Create an EventBridge rule

Create an EventBridge rule to run your Lambda function.

To create a rule using the console

1. Open the EventBridge console.

2. On the navigation pane, choose Rules, Create rule.
3. For Name, enter LogAutoScalingEvent-rule.
4. For Deﬁne pattern, choose Event Pattern.
5. For Event matching pattern, choose Custom pattern.
6. Rules use event patterns to select events and route them to targets. Copy the following pattern into
the Event pattern box.

{
"source": [ "aws.autoscaling" ],
"detail-type": [ "EC2 Instance-launch Lifecycle Action" ]
}

7. To save the event pattern, choose Save.

8. For Select event bus, choose AWS default event bus.
Important
You must choose the default event bus to receive events from AWS services.

217
Amazon EC2 Auto Scaling User Guide
Tutorial: Conﬁgure a lifecycle hook
that invokes a Lambda function

9. For Target, choose Lambda function.

10. For Function, select LogAutoScalingEvent. Choose Create.

Step 4: Add a lifecycle hook

In this section, you add a lifecycle hook so that Lambda runs your function on instances at launch.

To add a lifecycle hook

1. Open the Auto Scaling groups page in the Amazon EC2 console.
2. Select the check box next to your Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page.
3. In the lower pane, on the Instance management tab, in Lifecycle hooks, choose Create lifecycle
hook.
4. To deﬁne a lifecycle hook, do the following:

a. For Lifecycle hook name, enter LogAutoScalingEvent-hook.

b. For Lifecycle transition, choose Instance launch.
c. For Heartbeat timeout, enter 300 for the number of seconds to wait for a callback from your
Lambda function.
d. For Default result, choose ABANDON. This means that the Auto Scaling group will terminate a
new instance if the hook times out without receiving a callback from your Lambda function.
e. (Optional) Leave Notiﬁcation metadata empty. The event data that we pass to EventBridge
contains all of the necessary information to invoke the Lambda function.
5. Choose Create.

Step 5: Test and verify the event

To test the event, update the Auto Scaling group by increasing the desired capacity of the Auto Scaling
group by 1. Your Lambda function is invoked within a few seconds after increasing the desired capacity.

To increase the size of the Auto Scaling group

1. Open the Auto Scaling groups page in the Amazon EC2 console.
2. Select the check box next to your Auto Scaling group to view details in a lower pane and still see the
top rows of the upper pane.
3. In the lower pane, on the Details tab, choose Group details, Edit.
4. For Desired capacity, increase the current value by 1.
5. Choose Update. While the instance is being launched, the Status column in the upper pane displays
a status of Updating capacity.

After increasing the desired capacity, you can verify that your Lambda function was invoked.

To view the output from your Lambda function

1. Open the Log groups page of the CloudWatch console.

2. Select the name of the log group for your Lambda function (/aws/lambda/
LogAutoScalingEvent).
3. Select the name of the log stream to view the data provided by the function for the lifecycle action.

218
Amazon EC2 Auto Scaling User Guide
Tutorial: Conﬁgure a lifecycle hook
that invokes a Lambda function

Next, you can verify that your instance has successfully launched from the description of scaling
activities.

To view the scaling activity

1. Return to the Auto Scaling groups page and select your group.
2. On the Activity tab, under Activity history, the Status column shows whether your Auto Scaling
group has successfully launched an instance.

• If the action was successful, the scaling activity will have a status of "Successful".
• If it failed, after waiting a few minutes, you will see a scaling activity with a status of "Cancelled"
and a status message of "Instance failed to complete user's Lifecycle Action: Lifecycle Action with
token e85eb647-4fe0-4909-b341-a6c42EXAMPLE was abandoned: Lifecycle Action Completed
with ABANDON Result".

To decrease the size of the Auto Scaling group

If you do not need the additional instance that you launched for this test, you can open the Details tab
and decrease Desired capacity by 1.

Step 6: Next steps

Now that you have completed this tutorial, you can try creating a termination lifecycle hook. If instances
in the Auto Scaling group terminate, an event is sent to EventBridge. For information about the event
that is emitted when an instance terminates, see EC2 Instance-terminate Lifecycle Action (p. 287).

Step 7: Clean up
If you are done working with the resources that you created just for this tutorial, use the following steps
to delete them.

To delete the lifecycle hook

1. Open the Auto Scaling groups page in the Amazon EC2 console.
2. Select the check box next to your Auto Scaling group.
3. On the Instance management tab, in Lifecycle hooks, choose the lifecycle hook
(LogAutoScalingEvent-hook).
4. Choose Actions, Delete.
5. Choose Delete again to conﬁrm.

To delete the Amazon EventBridge rule

1. Open the Rules page in the Amazon EventBridge console.

2. Under Event bus, choose the event bus that is associated with the rule (Default).
3. Choose the rule (LogAutoScalingEvent-rule).
4. Choose Actions, Delete.
5. Choose Delete again to conﬁrm.

If you are done working with the example function, delete it. You can also delete the log group that
stores the function's logs, and the execution role and permissions policy that you created.

To delete a Lambda function

1. Open the Functions page on the Lambda console.

219
Amazon EC2 Auto Scaling User Guide
Warm pools

2. Choose the function (LogAutoScalingEvent).

3. Choose Actions, Delete.
4. In the Delete function dialog box, choose Delete.

To delete the log group

1. Open the Log groups page of the CloudWatch console.

2. Select the function's log group (/aws/lambda/LogAutoScalingEvent).
3. Choose Actions, Delete log group(s).
4. In the Delete log group(s) dialog box, choose Delete.

To delete the execution role

1. Open the Roles page of the IAM console.

2. Select the function's role (LogAutoScalingEvent-role).
3. Choose Delete role.
4. In the Delete role dialog box, choose Yes, delete.

To delete the IAM policy

1. Open the Policies page of the IAM console.

2. Select the policy that you created (LogAutoScalingEvent-policy).
3. Choose Delete policy.
4. In the Delete policy dialog box, choose Yes, delete.

Warm pools for Amazon EC2 Auto Scaling

A warm pool gives you the ability to decrease latency for your applications that have exceptionally
long boot times, for example, because instances need to write massive amounts of data to disk. With
warm pools, you no longer have to over-provision your Auto Scaling groups to manage latency in order
to improve application performance. For more information, see the following blog post Scaling your
applications faster with EC2 Auto Scaling Warm Pools.
Important
Creating a warm pool when it's not required can lead to unnecessary costs. If your ﬁrst boot
time does not cause noticeable latency issues for your application, there probably isn't a need
for you to use a warm pool.

Contents
• Core concepts (p. 221)
• Prerequisites (p. 222)
• Create a warm pool (p. 223)
• Update a warm pool (p. 223)
• Delete a warm pool (p. 224)
• Limitations (p. 224)
• Hibernation not supported in all AWS Regions (p. 224)
• Using lifecycle hooks with a warm pool (p. 224)

220
Amazon EC2 Auto Scaling User Guide
Core concepts

• Event types and event patterns that you use when you add or update lifecycle hooks (p. 226)
• Creating EventBridge rules for warm pool events (p. 230)
• Viewing health check status and the reason for health check failures (p. 232)
• Examples for creating and managing warm pools with the AWS CLI (p. 234)

Core concepts
Before you get started, familiarize yourself with the following core concepts:

Warm pool

A warm pool is a pool of pre-initialized EC2 instances that sits alongside an Auto Scaling group.
Whenever your application needs to scale out, the Auto Scaling group can draw on the warm pool
to meet its new desired capacity. This helps you to ensure that instances are ready to quickly start
serving application traﬃc, accelerating the response to a scale-out event. As instances leave the
warm pool, they count toward the desired capacity of the group. This is known as a warm start.
Warm pool size

By default, the size of the warm pool is calculated as the diﬀerence between the Auto Scaling
group's maximum capacity and its desired capacity. For example, if the desired capacity of your Auto
Scaling group is 6 and the maximum capacity is 10, the size of your warm pool will be 4 when you
ﬁrst set up the warm pool and the pool is initializing.

If you set a value for maximum prepared capacity, the size of the warm pool is calculated as the
diﬀerence between the maximum prepared capacity and the desired capacity. For example, if the
desired capacity of your Auto Scaling group is 6, if the maximum capacity is 10, and if the maximum
prepared capacity is 8, the size of your warm pool will be 2 when you ﬁrst set up the warm pool and
the pool is initializing.
Warm pool instance state

You can keep instances in the warm pool in one of three states: Stopped, Running, or Hibernated.
Keeping instances in a Stopped state is an eﬀective way to minimize costs. With stopped instances,
you pay only for the volumes that you use and the Elastic IP addresses attached to the instances. But
you don't pay for the stopped instances themselves. You pay for the instances only when they are
running.

Alternatively, you can keep instances in a Hibernated state to stop instances without deleting their
memory contents (RAM). When an instance is hibernated, this signals the operating system to save
the contents of your RAM to your Amazon EBS root volume. When the instance is started again, the
root volume is restored to its previous state and the RAM contents are reloaded. While the instances
are in hibernation, you pay only for the EBS volumes, including storage for the RAM contents, and
the Elastic IP addresses attached to the instances.
Note
Currently, the Hibernated option is available only if you use the AWS CLI or an SDK. This
option is not available from the console.
Lifecycle hooks

Lifecycle hooks (p. 204) let you put instances into a wait state so that you can perform custom
actions on the instances. Custom actions are performed as the instances launch or before they
terminate.

In a warm pool conﬁguration, lifecycle hooks can also delay instances from being stopped
or hibernated and from being put in service during a scale-out event until they have ﬁnished
initializing. If you add a warm pool to your Auto Scaling group without a lifecycle hook, instances

221
Amazon EC2 Auto Scaling User Guide
Prerequisites

that take a long time to ﬁnish initializing could be stopped or hibernated and then put in service
during a scale-out event before they are ready.
Instance reuse policy

By default, Amazon EC2 Auto Scaling terminates your instances when your Auto Scaling group
scales in. Then, it launches new instances into the warm pool to replace the instances that were
terminated.

If you want to return instances to the warm pool instead, you can specify an instance reuse policy.
This lets you reuse instances that are already configured to serve application traffic. To make sure
that your warm pool is not over-provisioned, Amazon EC2 Auto Scaling can terminate instances
in the warm pool to reduce its size when it is larger than necessary based on its settings. When
terminating instances in the warm pool, it uses the default termination policy (p. 239) to choose
which instances to terminate first.
Important
If you want to hibernate instances on scale in and there are existing instances in the Auto
Scaling group, they must meet the requirements for instance hibernation. If they don't,
when instances return to the warm pool, they will fallback to being stopped instead of
being hibernated.
Note
Currently, you can only specify an instance reuse policy by using the AWS CLI or an SDK.
This feature is not available from the console.

Prerequisites
Decide how you will use lifecycle hooks to prepare the instances for use. There are two ways to perform
custom actions on your instances.

• For simple scenarios where you want to run commands on your instances at launch, you can include
a user data script when you create a launch template or launch conﬁguration for your Auto Scaling
group. User data scripts are just normal shell scripts or cloud-init directives that are run by cloud-init
when your instances start. The script can also control when your instances transition to the next state
by using the ID of the instance on which it runs. If you are not doing so already, update your script
to retrieve the instance ID of the instance from the instance metadata. For more information, see
Retrieving instance metadata in the Amazon EC2 User Guide for Linux Instances.
Tip
To run user data scripts when an instance restarts, the user data must be in the MIME multi-
part format and specify the following in the #cloud-config section of the user data:

#cloud-config
cloud_final_modules:
- [scripts-user, always]

• For advanced scenarios where you need a service such as AWS Lambda to do something as instances
are entering or leaving the warm pool, you can create a lifecycle hook for your Auto Scaling group
and configure the target service to perform custom actions based on lifecycle notifications. For more
information, see Supported notification targets (p. 226).

For more information, see the lifecycle hook examples in our GitHub repository.

Prepare instances for hibernation

To prepare Auto Scaling instances to use the Hibernated pool state, create a new launch template
or launch conﬁguration that is set up correctly to support instance hibernation, as described in the

222
Amazon EC2 Auto Scaling User Guide
Create a warm pool

Hibernation prerequisites topic in the Amazon EC2 User Guide for Linux Instances. Then, associate the
new launch template or launch conﬁguration with the Auto Scaling group and start an instance refresh
to replace the instances associated with a previous launch template or launch conﬁguration. For more
information, see Replacing Auto Scaling instances based on an instance refresh (p. 118).

Additional considerations

Consider reducing the instance warm-up time in your scaling policies. As instances leave the warm pool,
they don't count towards the aggregated CloudWatch instance metrics of the Auto Scaling group until
after the lifecycle hook ﬁnishes and the warm-up time completes. Therefore, warm-up times that are
set too high might cause your scaling policies to scale out more aggressively than desired. For more
information, see Target tracking scaling policies (p. 154) and Step and simple scaling policies (p. 159).

Create a warm pool

Create a warm pool using the console according to the following instructions.

Before you begin, conﬁrm that you have created a lifecycle hook for your Auto Scaling group.

To create a warm pool (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to an existing group.

A split pane opens up at the bottom of the Auto Scaling groups page.
3. Choose the Instance management tab.
4. Under Warm pool, choose Create warm pool.
5. To conﬁgure a warm pool, do the following:

a. For Warm pool instance state, choose which state you want to transition your instances to
when they enter the warm pool. The default is Stopped.
b. For Minimum warm pool size, enter the minimum number of instances to maintain in the warm
pool.
c. (Optional) For Max prepared capacity, choose Deﬁne a set number of instances if you want to
control how much capacity is available in the warm pool.

If you choose Deﬁne a set number of instances, you must enter the maximum instance count.
This value represents the maximum number of instances that are allowed to be in the warm
pool and the Auto Scaling group at the same time. If you enter a value that is less than the
group's desired capacity, and you chose not to specify a value for Minimum warm pool size, the
capacity of the warm pool will be 0.
Note
Keeping the default Equal to the Auto Scaling group's maximum capacity option
helps you maintain a warm pool that is sized to match the diﬀerence between the Auto
Scaling group's maximum capacity and its desired capacity. To make it easier to manage
your warm pool, we recommend that you use the default so that you do not need to
remember to adjust your warm pool settings in order to control the size of the warm
pool.
6. Choose Create.

Update a warm pool

To change the launch template or launch conﬁguration for a warm pool, associate a new launch
template or launch conﬁguration with the Auto Scaling group. Any new instances are launched using

223
Amazon EC2 Auto Scaling User Guide
Delete a warm pool

the new AMI and other updates that are specified in the launch template or launch configuration, but
existing instances are not affected.

To force replacement warm pool instances to launch that use the new launch template or launch
conﬁguration, you can terminate existing instances in the warm pool. Amazon EC2 Auto Scaling
immediately starts launching new instances to replace the instances that you terminated. Alternatively,
you can start an instance refresh to do a rolling update of your group. An instance refresh ﬁrst replaces
InService instances. Then it replaces instances in the warm pool. For more information, see Replacing
Auto Scaling instances based on an instance refresh (p. 118).

Delete a warm pool

When you no longer need the warm pool, use the following procedure to delete it.

To delete your warm pool (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to an existing group.

A split pane opens up at the bottom of the Auto Scaling groups page, showing information about
the group that's selected.
3. Choose Actions, Delete.
4. When prompted for conﬁrmation, choose Delete.

Limitations
• You cannot add a warm pool to Auto Scaling groups that have a mixed instances policy or that launch
Spot Instances.
• Amazon EC2 Auto Scaling can put an instance in a Stopped or Hibernated state only if it has an
Amazon EBS volume as its root device. Instances that use instance stores for the root device cannot be
stopped or hibernated.
• Amazon EC2 Auto Scaling can put an instance in a Hibernated state only if meets all of the
requirements listed in the Hibernation prerequisites topic in the Amazon EC2 User Guide for Linux
Instances.
• If your warm pool is depleted when there is a scale-out event, instances will launch directly into the
Auto Scaling group (a cold start). You could also experience cold starts if an Availability Zone is out of
capacity.
• If you try using warm pools with Amazon Elastic Container Service (Amazon ECS) or Amazon Elastic
Kubernetes Service (Amazon EKS) managed node groups, there is a chance that these services will
schedule jobs on an instance before it reaches the warm pool.

Hibernation not supported in all AWS Regions

Hibernation support for warm pools is available in all commercial AWS Regions where Amazon EC2 Auto
Scaling is available, excluding the Africa (Cape Town), Asia Paciﬁc (Jakarta), Asia Paciﬁc (Osaka), China
(Beijing), China (Ningxia), Europe (Milan), and AWS GovCloud (US-East and US-West) Regions.

Using lifecycle hooks with a warm pool

Instances in a warm pool maintain their own independent lifecycle to help you create the appropriate
custom action for each transition. This lifecycle is designed to help you to invoke actions in a target

224
Amazon EC2 Auto Scaling User Guide
Using lifecycle hooks

service (for example, a Lambda function) while an instance is still initializing and before it is put in
service.
Note
The API operations that you use to add and manage lifecycle hooks and complete lifecycle
actions are not changed. Only the instance lifecycle is changed.

For more information about adding a lifecycle hook, see Adding lifecycle hooks (p. 212). For more
information about completing a lifecycle action, see Completing a lifecycle action (p. 213).

For instances entering the warm pool, you might need a lifecycle hook for one of the following reasons:

• You want to launch EC2 instances from an AMI that takes a long time to ﬁnish initializing.
• You want to run user data scripts to bootstrap the EC2 instances.

For instances leaving the warm pool, you might need a lifecycle hook for one of the following reasons:

• You can use some extra time to prepare EC2 instances for use. For example, you might have services
that must start when an instance restarts before your application can work correctly.
• You want to pre-populate cache data so that a new server doesn't launch with an empty cache.
• You want to register new instances as managed instances with your conﬁguration management
service.

Lifecycle state transitions for instances in a warm pool

An Auto Scaling instance can transition through many states as part of its lifecycle.

The following diagram shows the transition between Auto Scaling states when you use a warm pool:

¹ This state varies based on the warm pool's pool state setting. If the pool state is set to Running,
then this state is Warmed:Running instead. If the pool state is set to Hibernated, then this state is
Warmed:Hibernated instead.

When you add lifecycle hooks, consider the following:

• When you create a warm pool, Amazon EC2 Auto Scaling launches and then puts one or more
instances into a wait state (Warmed:Pending:Wait) before the instances transition into the
Warmed:Stopped, Warmed:Running, or Warmed:Hibernated state.

225
Amazon EC2 Auto Scaling User Guide
Event types and event patterns

• When your Auto Scaling group scales out, Amazon EC2 Auto Scaling puts one or more warm pool
instances into a wait state (Pending:Wait) before the instances transition into the InService state.
• If the demand on your application depletes the warm pool, Amazon EC2 Auto Scaling can launch
instances directly into the Auto Scaling group as long as the group isn't at its maximum capacity yet. If
the instances launch directly into the group, they are only put in the Pending:Wait state before they
transition into the InService state.

When instances reach a wait state, Amazon EC2 Auto Scaling sends a notiﬁcation that includes the origin
and the destination.

Supported notiﬁcation targets

Amazon EC2 Auto Scaling provides support for defining any of the following as notification targets for
lifecycle notifications:

• EventBridge rules
• Amazon SNS topics
• Amazon SQS queues

The following sections contain links to documentation that describes how to conﬁgure notiﬁcation
targets:

EventBridge rules: To run code when Amazon EC2 Auto Scaling puts an instance into a wait state, you
can create an EventBridge rule and specify a Lambda function as its target. To invoke different Lambda
functions based on different lifecycle notifications, you can create multiple rules and associate each rule
with a specific event pattern and Lambda function. For more information, see Creating EventBridge rules
for warm pool events (p. 230).

Amazon SNS topics: To receive a notification when an instance is put into a wait state, you create an
Amazon SNS topic and then set up Amazon SNS message filtering to deliver lifecycle notifications
differently based on a message attribute. For more information, see Receive notifications using Amazon
SNS (p. 210).

Amazon SQS queues: To set up a delivery point for lifecycle notifications where a relevant consumer
can pick them up and process them, you can create an Amazon SQS queue and a queue consumer
that processes messages from the SQS queue. If you want the queue consumer to process lifecycle
notifications differently based on a message attribute, you must also set up the queue consumer to parse
the message and then act on the message when a specific attribute matches the desired value. For more
information, see Receive notifications using Amazon SQS (p. 210).

Event types and event patterns that you use when

you add or update lifecycle hooks
When you add lifecycle hooks to your Auto Scaling group, events are sent to EventBridge in JSON
format. You can create an EventBridge rule that uses an event pattern to ﬁlter incoming events and then
invokes your Lambda function or other target.

There are two types of events that are emitted for lifecycle hooks:

• EC2 Instance-launch Lifecycle Action

• EC2 Instance-terminate Lifecycle Action.

After you add a warm pool to your Auto Scaling group, the detail section for EC2 Instance-launch
Lifecycle Action events contains new Origin and Destination ﬁelds.

226
Amazon EC2 Auto Scaling User Guide
Event types and event patterns

The values of Origin and Destination can be the following:

EC2 | AutoScalingGroup | WarmPool

Contents
• Warm pool events (p. 227)
• Example event patterns (p. 228)

Warm pool events

This section lists example events from Amazon EC2 Auto Scaling. Events are emitted on a best-eﬀort
basis.

Instances bound for the warm pool

The following example shows an event for a lifecycle hook for the Warmed:Pending:Wait state. It
represents an instance that is launching into the warm pool.

{
"version": "0",
"id": "18b2ec17-3e9b-4c15-8024-ff2e8ce8786a",
"detail-type": "EC2 Instance-launch Lifecycle Action",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "2021-01-13T00:12:37.214Z",
"region": "us-west-2",
"resources": [
"arn:aws:autoscaling:us-west-2:123456789012:autoScalingGroup:042cba90-
ad2f-431c-9b4d-6d9055bcc9fb:autoScalingGroupName/my-asg"
],
"detail": {
"LifecycleActionToken": "71514b9d-6a40-4b26-8523-05e7eEXAMPLE",
"AutoScalingGroupName": "my-asg",
"LifecycleHookName": "my-lifecycle-hook-for-warming-instances",
"EC2InstanceId": "i-1234567890abcdef0",
"LifecycleTransition": "autoscaling:EC2_INSTANCE_LAUNCHING",
"NotificationMetadata": "additional-info",
"Origin": "EC2",
"Destination": "WarmPool"
}
}

Instances leaving the warm pool

The following example shows an event for a lifecycle hook for the Pending:Wait state. It represents an
instance that is leaving the warm pool due to a scale-out event.

{
"version": "0",
"id": "5985cdde-1f01-9ae2-1498-3c8ea162d141",
"detail-type": "EC2 Instance-launch Lifecycle Action",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "2021-01-19T00:35:52.359Z",
"region": "us-west-2",
"resources": [
"arn:aws:autoscaling:us-west-2:123456789012:autoScalingGroup:042cba90-
ad2f-431c-9b4d-6d9055bcc9fb:autoScalingGroupName/my-asg"
],

227
Amazon EC2 Auto Scaling User Guide
Event types and event patterns

"detail": {
"LifecycleActionToken": "19cc4d4a-e450-4d1c-b448-0de67EXAMPLE",
"AutoScalingGroupName": "my-asg",
"LifecycleHookName": "my-lifecycle-hook-for-warmed-instances",
"EC2InstanceId": "i-1234567890abcdef0",
"LifecycleTransition": "autoscaling:EC2_INSTANCE_LAUNCHING",
"NotificationMetadata": "additional-info",
"Origin": "WarmPool",
"Destination": "AutoScalingGroup"
}
}

Instances launching outside of the warm pool

The following example shows an event for a lifecycle hook for the Pending:Wait state. It represents an
instance that is launching directly into the Auto Scaling group.

{
"version": "0",
"id": "12345678-1234-1234-1234-123456789012",
"detail-type": "EC2 Instance-launch Lifecycle Action",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "2021-02-01T17:18:06.082Z",
"region": "us-west-2",
"resources": [
"arn:aws:autoscaling:us-west-2:123456789012:autoScalingGroup:042cba90-
ad2f-431c-9b4d-6d9055bcc9fb:autoScalingGroupName/my-asg"
],
"detail": {
"LifecycleActionToken": "87654321-4321-4321-4321-21098EXAMPLE",
"AutoScalingGroupName": "my-asg",
"LifecycleHookName": "my-lifecycle-hook-for-launching-instances",
"EC2InstanceId": "i-1234567890abcdef0",
"LifecycleTransition": "autoscaling:EC2_INSTANCE_LAUNCHING",
"NotificationMetadata": "additional-info",
"Origin": "EC2",
"Destination": "AutoScalingGroup"
}
}

Example event patterns

The preceding section provides example events emitted by Amazon EC2 Auto Scaling.

EventBridge event patterns have the same structure as the events that they match. The pattern quotes
the ﬁelds that you want to match and provides the values that you're looking for.

The following ﬁelds in the event form the event pattern that is deﬁned in the rule to invoke an action:

"source": "aws.autoscaling"

Identiﬁes that the event is from Amazon EC2 Auto Scaling.

"detail-type": "EC2 Instance-launch Lifecycle Action"

Identiﬁes the event type.

"Origin": "EC2"

Identiﬁes where the instance is coming from.

228
Amazon EC2 Auto Scaling User Guide
Event types and event patterns

"Destination": "WarmPool"

Identiﬁes where the instance is going to.

Use the following sample event pattern to capture all events that are associated with instances entering
the warm pool.

{
"source": [
"aws.autoscaling"
],
"detail-type": [
"EC2 Instance-launch Lifecycle Action"
],
"detail": {
"Origin": [
"EC2"
],
"Destination": [
"WarmPool"
]
}
}

Use the following sample event pattern to capture all events that are associated with instances leaving
the warm pool due to a scale-out event.

{
"source": [
"aws.autoscaling"
],
"detail-type": [
"EC2 Instance-launch Lifecycle Action"
],
"detail": {
"Origin": [
"WarmPool"
],
"Destination": [
"AutoScalingGroup"
]
}
}

Use the following sample event pattern to capture all events that are associated with instances
launching directly into the Auto Scaling group.

{
"source": [
"aws.autoscaling"
],
"detail-type": [
"EC2 Instance-launch Lifecycle Action"
],
"detail": {
"Origin": [
"EC2"
],
"Destination": [
"AutoScalingGroup"
]

229
Amazon EC2 Auto Scaling User Guide
Creating EventBridge rules

}
}

Use the following sample event pattern to capture all events that are associated with EC2 Instance-
launch Lifecycle Action, regardless of the origin or destination.

{
"source": [
"aws.autoscaling"
],
"detail-type": [
"EC2 Instance-launch Lifecycle Action"
]
}

Creating EventBridge rules for warm pool events

The following procedures explain how to create an EventBridge rule for warm pool events. This
sample rule detects events that use the event pattern for instances entering the warm pool, and then
sends those events to an AWS Lambda function for processing. A Lambda target is the subject of this
procedure, but rules can invoke many types of targets. For information about supported targets, see
Amazon EventBridge targets in the Amazon EventBridge User Guide.

Before you create the rule, create the AWS Lambda function that you want the rule to use as a
target. When you create the rule, you'll need to specify this function as the target for the rule. For an
introductory tutorial that shows you how to create a Lambda function, see Tutorial: Conﬁgure a lifecycle
hook that invokes a Lambda function (p. 215).

Create an EventBridge rule (console)

To create an event rule

1. Open the Amazon EventBridge console at https://console.aws.amazon.com/events/.

2. In the navigation pane, under Events, choose Rules.
3. In the Rules section, choose Create rule.
4. For Name, enter a name for the rule. Optionally enter a description of the rule in the Description
box.
5. Under Deﬁne pattern, choose Event pattern.
6. For Event matching pattern, choose Custom pattern.
7. Rules use event patterns to select events and route them to targets. Copy the following pattern into
the Event pattern box.

{
"source": [ "aws.autoscaling" ],
"detail-type": [ "EC2 Instance-launch Lifecycle Action" ],
"detail": {
"Origin": [ "EC2" ],
"Destination": [ "WarmPool" ]
}
}

8. To save the event pattern, choose Save.

9. For Select event bus, choose AWS default event bus.
10. Under Select targets, for Target, choose Lambda function. Then, for Function, choose the function
that you want to send the events to.
11. When you ﬁnish entering settings for the rule, choose Create.

230
Amazon EC2 Auto Scaling User Guide
Creating EventBridge rules

12. After you have followed these instructions, continue on to Adding lifecycle hooks (p. 212) as a next
step.

Create an EventBridge rule (AWS CLI)

If you haven't already, create the Lambda function that you want the rule to use as a target. When you
create the function, note the Amazon Resource Name (ARN) of the function. You'll need to enter this
ARN when you specify the target for the rule.

To create an event rule

1. To create a rule that matches events for instances entering the warm pool, use the following put-
rule command.

aws events put-rule --name my-rule --event-pattern file://pattern.json --state ENABLED

The following example shows the pattern.json to match the event for instances entering the
warm pool.

{
"source": [ "aws.autoscaling" ],
"detail-type": [ "EC2 Instance-launch Lifecycle Action" ],
"detail": {
"Origin": [ "EC2" ],
"Destination": [ "WarmPool" ]
}
}

If the command runs successfully, EventBridge responds with the ARN of the rule. Note this ARN.
You'll need to enter it in step 3.
2. To specify the Lambda function to use as a target for the rule, use the following put-targets
command.

aws events put-targets --rule my-rule --targets

Id=1,Arn=arn:aws:lambda:region:123456789012:function:my-function

In the preceding command, my-rule is the name that you speciﬁed for the rule in step 1, and the
value for the Arn parameter is the ARN of the function that you want the rule to use as a target.
3. To add permissions that allow the rule to invoke the target Lambda function, use the following
Lambda add-permission command.

aws lambda add-permission --function-name my-function --statement-

id AllowInvokeFromExampleEvent \
--action 'lambda:InvokeFunction' --principal events.amazonaws.com --source-arn
arn:aws:events:region:123456789012:rule/my-rule

In the preceding command:

• my-function is the name of the Lambda function that you want the rule to use as a target.
• AllowInvokeFromExampleEvent is a unique identiﬁer that you deﬁne to describe the
statement in the Lambda function policy.
• source-arn is the ARN of the EventBridge rule.

If the command runs successfully, you receive output similar to the following.

231
Amazon EC2 Auto Scaling User Guide
Viewing health check status

{
"Statement": "{\"Sid\":\"AllowInvokeFromExampleEvent\",
\"Effect\":\"Allow\",
\"Principal\":{\"Service\":\"events.amazonaws.com\"},
\"Action\":\"lambda:InvokeFunction\",
\"Resource\":\"arn:aws:lambda:us-west-2:123456789012:function:my-function\",
\"Condition\":
{\"ArnLike\":
{\"AWS:SourceArn\":
\"arn:aws:events:us-west-2:123456789012:rule/my-rule\"}}}"
}

The Statement value is a JSON string version of the statement that was added to the Lambda
function policy.
4. After you have followed these instructions, continue on to Adding lifecycle hooks (p. 212) as a next
step.

Viewing health check status and the reason for

health check failures
Health checks allow Amazon EC2 Auto Scaling to determine when an instance is unhealthy and should
be terminated. For warm pool instances kept in a Stopped state, it employs the knowledge that Amazon
EBS has of a Stopped instance's availability to identify unhealthy instances. It does this by calling the
DescribeVolumeStatus API to determine the status of the EBS volume that's attached to the instance.
For warm pool instances kept in a Running state, it relies on EC2 status checks to determine instance
health. While there is no health check grace period for warm pool instances, Amazon EC2 Auto Scaling
doesn't start checking instance health until the lifecycle hook ﬁnishes.

When an instance is found to be unhealthy, Amazon EC2 Auto Scaling automatically deletes the
unhealthy instance and creates a new one to replace it. Instances are usually terminated within
a few minutes after failing their health check. For more information, see Replacing unhealthy
instances (p. 262).

Custom health checks are also supported. This can be helpful if you have your own health check system
that can detect an instance's health and send this information to Amazon EC2 Auto Scaling. For more
information, see Using custom health checks (p. 262).

On the Amazon EC2 Auto Scaling console, you can view the status (healthy or unhealthy) of your warm
pool instances. You can also view their health status using the AWS CLI or one of the SDKs.

To view the status of your warm pool instances (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to the Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Instance management tab, under Warm pool instances, the Lifecycle column contains the
state of your instances.

The Health status column shows the assessment that Amazon EC2 Auto Scaling has made of
instance health.
Note
New instances start healthy. Until the lifecycle hook is ﬁnished, an instance's health is not
checked.

232
Amazon EC2 Auto Scaling User Guide
Viewing health check status

To view the reason for health check failures (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to the Auto Scaling group.

If it terminated any unhealthy instances, the Cause column shows the date and time of the
termination and the reason for the health check failure. For example, "At 2021-04-01T21:48:35Z an
instance was taken out of service in response to EBS volume health check failure".

To view the status of your warm pool instances (AWS CLI)

View the warm pool for an Auto Scaling group by using the following describe-warm-pool command.

aws autoscaling describe-warm-pool --auto-scaling-group-name my-asg

Example output.

{
"WarmPoolConfiguration": {
"MinSize": 0,
"PoolState": "Stopped"
},
"Instances": [
{
"InstanceId": "i-0b5e5e7521cfaa46c",
"InstanceType": "t2.micro",
"AvailabilityZone": "us-west-2a",
"LifecycleState": "Warmed:Stopped",
"HealthStatus": "Healthy",
"LaunchTemplate": {
"LaunchTemplateId": "lt-08c4cd42f320d5dcd",
"LaunchTemplateName": "my-template-for-auto-scaling",
"Version": "1"
}
},
{
"InstanceId": "i-0e21af9dcfb7aa6bf",
"InstanceType": "t2.micro",
"AvailabilityZone": "us-west-2a",
"LifecycleState": "Warmed:Stopped",
"HealthStatus": "Healthy",
"LaunchTemplate": {
"LaunchTemplateId": "lt-08c4cd42f320d5dcd",
"LaunchTemplateName": "my-template-for-auto-scaling",
"Version": "1"
}
}
]
}

To view the reason for health check failures (AWS CLI)

Use the following describe-scaling-activities command.

aws autoscaling describe-scaling-activities --auto-scaling-group-name my-asg

233
Amazon EC2 Auto Scaling User Guide
AWS CLI examples for working with warm pools

The following is an example response, where Description indicates that your Auto Scaling group has
terminated an instance and Cause indicates the reason for the health check failure.

Scaling activities are ordered by start time. Activities still in progress are described ﬁrst.

{
"Activities": [
{
"ActivityId": "4c65e23d-a35a-4e7d-b6e4-2eaa8753dc12",
"AutoScalingGroupName": "my-asg",
"Description": "Terminating EC2 instance: i-04925c838b6438f14",
"Cause": "At 2021-04-01T21:48:35Z an instance was taken out of service in response to
EBS volume health check failure.",
"StartTime": "2021-04-01T21:48:35.859Z",
"EndTime": "2021-04-01T21:49:18Z",
"StatusCode": "Successful",
"Progress": 100,
"Details": "{\"Subnet ID\":\"subnet-5ea0c127\",\"Availability Zone\":\"us-west-2a
\"...}",
"AutoScalingGroupARN": "arn:aws:autoscaling:us-
west-2:123456789012:autoScalingGroup:283179a2-
f3ce-423d-93f6-66bb518232f7:autoScalingGroupName/my-asg"
},
...
]
}

Examples for creating and managing warm pools

with the AWS CLI
You can create and manage warm pools using the AWS Management Console, AWS Command Line
Interface (AWS CLI), or SDKs.

The following examples show you how to create and manage warm pools using the AWS CLI.

Contents
• Example 1: Keeping instances in the Stopped state (p. 234)
• Example 2: Keeping instances in the Running state (p. 235)
• Example 3: Keeping instances in the Hibernated state (p. 235)
• Example 4: Returning instances to the warm pool when scaling in (p. 235)
• Example 5: Specifying the minimum number of instances in the warm pool (p. 235)
• Example 6: Deﬁning a warm pool size separate from the maximum group size (p. 235)
• Example 7: Deﬁning an absolute warm pool size (p. 236)
• Example 8: Delete a warm pool (p. 236)

Example 1: Keeping instances in the Stopped state

The following put-warm-pool example creates a warm pool that keeps instances in a Stopped state.

aws autoscaling put-warm-pool --auto-scaling-group-name my-asg /

--pool-state Stopped

234
Amazon EC2 Auto Scaling User Guide
AWS CLI examples for working with warm pools

Example 2: Keeping instances in the Running state

The following put-warm-pool example creates a warm pool that keeps instances in a Running state
instead of a Stopped state.

aws autoscaling put-warm-pool --auto-scaling-group-name my-asg /

--pool-state Running

Example 3: Keeping instances in the Hibernated state

The following put-warm-pool example creates a warm pool that keeps instances in a Hibernated state
instead of a Stopped state. This lets you stop instances without deleting their memory contents (RAM).

aws autoscaling put-warm-pool --auto-scaling-group-name my-asg /

--pool-state Hibernated

Example 4: Returning instances to the warm pool when scaling

in
The following put-warm-pool example creates a warm pool that keeps instances in a Stopped
state and includes the --instance-reuse-policy option. The instance reuse policy value
'{"ReuseOnScaleIn": true}' tells Amazon EC2 Auto Scaling to return instances to the warm pool
when your Auto Scaling group scales in.

aws autoscaling put-warm-pool --auto-scaling-group-name my-asg /

--pool-state Stopped --instance-reuse-policy '{"ReuseOnScaleIn": true}'

Example 5: Specifying the minimum number of instances in the

warm pool
The following put-warm-pool example creates a warm pool that maintains a minimum of 4 instances, so
that there are at least 4 instances available to handle traﬃc spikes.

aws autoscaling put-warm-pool --auto-scaling-group-name my-asg /

--pool-state Stopped --min-size 4

Example 6: Deﬁning a warm pool size separate from the

maximum group size
Generally, you understand how much maximum capacity you need to set above your desired capacity.
There's usually no need to deﬁne an additional maximum size, because Amazon EC2 Auto Scaling creates
a warm pool that dynamically resizes based on your maximum capacity setting.

However, in cases where you want to control the group's maximum capacity and avoid having it impact
the warm pool size, you can use the --max-group-prepared-capacity option. You might need to
use this option when working with large Auto Scaling groups to manage the cost beneﬁts of having a
warm pool. For example, an Auto Scaling group with 1,000 instances, a maximum capacity of 1,500 (to
provide extra capacity for emergency traﬃc spikes), and a warm pool of 100 instances might achieve
your objectives better than a warm pool of 500 instances.

The following put-warm-pool example creates a warm pool that deﬁnes its size separately from the
maximum group size. Suppose that the Auto Scaling group has a desired capacity of 800. The size of the
warm pool will be 100 when you run this command and the pool is initializing.

235
Amazon EC2 Auto Scaling User Guide
Controlling instance termination

aws autoscaling put-warm-pool --auto-scaling-group-name my-asg /

--pool-state Stopped --max-group-prepared-capacity 900

To maintain a minimum number of instances in the warm pool, include the --min-size option with the
command, as follows.

aws autoscaling put-warm-pool --auto-scaling-group-name my-asg /

--pool-state Stopped --max-group-prepared-capacity 900 --min-size 25

Example 7: Deﬁning an absolute warm pool size

If you set the same values for the --max-group-prepared-capacity and --min-size options,
the warm pool has an absolute size. The following put-warm-pool example creates a warm pool that
maintains a constant warm pool size of 10 instances.

aws autoscaling put-warm-pool --auto-scaling-group-name my-asg /

--pool-state Stopped --min-size 10 --max-group-prepared-capacity 10

Example 8: Delete a warm pool

Use the following delete-warm-pool command to delete a warm pool.

aws autoscaling delete-warm-pool --auto-scaling-group-name my-asg

If there are instances in the warm pool, or if scaling activities are in progress, use the delete-warm-pool
command with the --force-delete option. This option also terminates the Amazon EC2 instances and
any outstanding lifecycle actions.

aws autoscaling delete-warm-pool --auto-scaling-group-name my-asg --force-delete

Controlling which Auto Scaling instances

terminate during scale in
Amazon EC2 Auto Scaling uses termination policies to determine which instances it terminates ﬁrst
during scale-in events. Termination policies deﬁne the termination criteria that is used by Amazon EC2
Auto Scaling when choosing which instances to terminate.

Your Auto Scaling groups use a default termination policy, but you can optionally choose or create your
own termination policies with your own termination criteria. This lets you ensure that your instances are
terminated based on your speciﬁc application needs.

Amazon EC2 Auto Scaling also provides instance scale-in protection. When you enable this feature,
it prevents instances from being terminated during scale-in events. You can enable instance scale-in
protection when you create an Auto Scaling group, and you can change the setting on running instances.
If you enable instance scale-in protection on an existing Auto Scaling group, all new instances launched
after that will have instance scale-in protection enabled.
Note
Instance scale-in protection does not guarantee that instances won't be terminated in the
event of a human error—for example, if someone manually terminates an instance using the
Amazon EC2 console or AWS CLI. To protect your instance from accidental termination, you

236
Amazon EC2 Auto Scaling User Guide
Termination policy scenarios

can use Amazon EC2 termination protection. However, even with termination protection and
instance scale-in protection enabled, data saved to instance storage can be lost if a health check
determines that an instance is unhealthy or if the group itself is accidentally deleted. As with
any environment, a best practice is to back up your data frequently, or whenever it's appropriate
for your business continuity requirements.

Contents
• Scenarios for termination policy use (p. 237)
• Working with Amazon EC2 Auto Scaling termination policies (p. 239)
• Creating a custom termination policy with Lambda (p. 242)
• Using instance scale-in protection (p. 246)

Scenarios for termination policy use

The following sections describe the scenarios in which Amazon EC2 Auto Scaling uses termination
policies.

Contents
• Scale-in events (p. 237)
• Instance refreshes (p. 238)
• Availability Zone rebalancing (p. 238)

Scale-in events
A scale-in event occurs when there is a new value for the desired capacity of an Auto Scaling group that
is lower than the current capacity of the group.

Scale-in events occur in the following scenarios:

• When using dynamic scaling policies and the size of the group decreases as a result of changes in a
metric's value
• When using scheduled scaling and the size of the group decreases as a result of a scheduled action
• When you manually decrease the size of the group

The following example shows how termination policies work when there is a scale-in event.

1. The Auto Scaling group in this example has one instance type, two Availability Zones, and a desired
capacity of two instances. It also has a dynamic scaling policy that adds and removes instances when
resource utilization increases or decreases. The two instances in this group are distributed across the
two Availability Zones as shown in the following diagram.

2. When the Auto Scaling group scales out, Amazon EC2 Auto Scaling launches a new instance. The Auto
Scaling group now has three instances, distributed across the two Availability Zones as shown in the
following diagram.

237
Amazon EC2 Auto Scaling User Guide
Termination policy scenarios

3. When the Auto Scaling group scales in, Amazon EC2 Auto Scaling terminates one of the instances.
4. If you did not assign a specific termination policy to the group, Amazon EC2 Auto Scaling uses the
default termination policy. It selects the Availability Zone with two instances, and terminates the
instance that was launched from the oldest launch template or launch configuration. If the instances
were launched from the same launch template or launch configuration, Amazon EC2 Auto Scaling
selects the instance that is closest to the next billing hour and terminates it.

Instance refreshes
You start instance refreshes in order to update the instances in your Auto Scaling group. During an
instance refresh, Amazon EC2 Auto Scaling terminates instances in the group and then launches
replacements for the terminated instances. The termination policy for the Auto Scaling group controls
which instances are replaced ﬁrst.

Availability Zone rebalancing

Amazon EC2 Auto Scaling balances your capacity evenly across the Availability Zones enabled for your
Auto Scaling group. This helps reduce the impact of an Availability Zone outage. If the distribution of
capacity across Availability Zones becomes out of balance, Amazon EC2 Auto Scaling rebalances the
Auto Scaling group by launching instances in the enabled Availability Zones with the fewest instances
and terminating instances elsewhere. The termination policy controls which instances are prioritized for
termination ﬁrst.

There are a number of reasons why the distribution of instances across Availability Zones can become out
of balance.

Removing instances

If you detach instances from your Auto Scaling group, you put instances on standby, or you explicitly
terminate instances and decrement the desired capacity, which prevents replacement instances from
launching, the group can become unbalanced. If this occurs, Amazon EC2 Auto Scaling compensates
by rebalancing the Availability Zones.
Using diﬀerent Availability Zones than originally speciﬁed

If you expand your Auto Scaling group to include additional Availability Zones, or you change which
Availability Zones are used, Amazon EC2 Auto Scaling launches instances in the new Availability
Zones and terminates instances in other zones to help ensure that your Auto Scaling group spans
Availability Zones evenly.
Availability outage

Availability outages are rare. However, if one Availability Zone becomes unavailable and recovers
later, your Auto Scaling group can become unbalanced between Availability Zones. Amazon EC2
Auto Scaling tries to gradually rebalance the group, and rebalancing might terminate instances in
other zones.

For example, imagine that you have an Auto Scaling group that has one instance type, two
Availability Zones, and a desired capacity of two instances. In a situation where one Availability Zone

238
Amazon EC2 Auto Scaling User Guide
Working with termination policies

fails, Amazon EC2 Auto Scaling automatically launches a new instance in the healthy Availability
Zone to replace the one in the unhealthy Availability Zone. Then, when the unhealthy Availability
Zone returns to a healthy state later on, Amazon EC2 Auto Scaling automatically launches a new
instance in this zone, which in turn terminates an instance in the unaﬀected zone.

Note
When rebalancing, Amazon EC2 Auto Scaling launches new instances before terminating the
old ones, so that rebalancing does not compromise the performance or availability of your
application.
Because Amazon EC2 Auto Scaling attempts to launch new instances before terminating the
old ones, being at or near the speciﬁed maximum capacity could impede or completely stop
rebalancing activities. To avoid this problem, the system can temporarily exceed the speciﬁed
maximum capacity of a group by a 10 percent margin (or by a margin of one instance, whichever
is greater) during a rebalancing activity. The margin is extended only if the group is at or near
maximum capacity and needs rebalancing, either because of user-requested rezoning or to
compensate for zone availability issues. The extension lasts only as long as needed to rebalance
the group.

Working with Amazon EC2 Auto Scaling termination

policies
This topic provides detailed information about the default termination policy and the options available
to you to choose different termination policies for individual Auto Scaling groups. By choosing different
termination policies, you can control which instances you prefer to terminate first when a scale-in event
occurs. For example, you can choose a different termination policy so that Amazon EC2 Auto Scaling
prioritizes terminating the oldest instances first.

When Amazon EC2 Auto Scaling terminates instances, it attempts to maintain balance across the
Availability Zones that are used by your Auto Scaling group. Maintaining balance across Availability
Zones takes precedence over termination policies. If one Availability Zone has more instances than the
other Availability Zones that are used by the group, Amazon EC2 Auto Scaling applies the termination
policies to the instances from the imbalanced Availability Zone. If the Availability Zones used by
the group are balanced, Amazon EC2 Auto Scaling applies the termination policies across all of the
Availability Zones for the group.

Contents
• Default termination policy (p. 239)
• Default termination policy and mixed instances groups (p. 240)
• Using different termination policies (p. 240)
• Using different termination policies (console) (p. 241)
• Using different termination policies (AWS CLI) (p. 242)

Default termination policy

The default termination policy applies multiple termination criteria before selecting an instance to
terminate. When Amazon EC2 Auto Scaling terminates instances, it ﬁrst determines which Availability
Zones have the most instances, and it ﬁnds at least one instance that is not protected from scale in.
Within the selected Availability Zone, the following default termination policy behavior applies:

1. Determine whether any of the instances eligible for termination use the oldest launch template or
launch conﬁguration:
a. [For Auto Scaling groups that use a launch template]

239
Amazon EC2 Auto Scaling User Guide
Working with termination policies

Determine whether any of the instances use the oldest launch template, unless there are instances
that use a launch configuration. Amazon EC2 Auto Scaling terminates instances that use a launch
configuration before it terminates instances that use a launch template.
b. [For Auto Scaling groups that use a launch configuration]

Determine whether any of the instances use the oldest launch conﬁguration.
2. After applying the preceding criteria, if there are multiple unprotected instances to terminate,
determine which instances are closest to the next billing hour. If there are multiple unprotected
instances closest to the next billing hour, terminate one of these instances at random.

Note that terminating the instance closest to the next billing hour helps you maximize the use of your
instances that have an hourly charge. Alternatively, if your Auto Scaling group uses Amazon Linux,
Windows, or Ubuntu, your EC2 usage is billed in one-second increments. For more information, see
Amazon EC2 pricing.

Default termination policy and mixed instances groups

When an Auto Scaling group with a mixed instances policy (p. 55) scales in, Amazon EC2 Auto Scaling
still uses termination policies to prioritize which instances to terminate, but first it identifies which of the
two types (Spot or On-Demand) should be terminated. It then applies the termination policies in each
Availability Zone individually. It also identifies which instances (within the identified purchase option) in
which Availability Zones to terminate that will result in the Availability Zones being most balanced. The
same logic applies to Auto Scaling groups that use a mixed instances configuration with weights defined
for the instance types.

The default termination policy changes slightly due to diﬀerences in how mixed instances policies (p. 55)
are implemented. The following new behavior of the default termination policy applies:

1. Determine which instances are eligible for termination in order to align the remaining instances to the
allocation strategy (p. 56) for the On-Demand or Spot Instance that is terminating.

For example, after your instances launch, you might change the priority order of your preferred
instance types. When a scale-in event occurs, Amazon EC2 Auto Scaling tries to gradually shift the On-
Demand Instances away from instance types that are lower priority.
2. Determine whether any of the instances use the oldest launch template, unless there are instances
that use a launch conﬁguration. Amazon EC2 Auto Scaling terminates instances that use a launch
conﬁguration before it terminates instances that use a launch template.
3. After applying the preceding criteria, if there are multiple unprotected instances to terminate,
determine which instances are closest to the next billing hour. If there are multiple unprotected
instances closest to the next billing hour, terminate one of these instances at random.

Using diﬀerent termination policies

To specify the termination criteria to apply before Amazon EC2 Auto Scaling chooses an instance for
termination, you can choose from any of the following predeﬁned termination policies:

• Default. Terminate instances according to the default termination policy. This policy is useful when
you want your Spot allocation strategy evaluated before any other policy, so that every time your Spot
instances are terminated or replaced, you continue to make use of Spot Instances in the optimal pools.
It is also useful, for example, when you want to move oﬀ launch conﬁgurations and start using launch
templates.
• AllocationStrategy. Terminate instances in the Auto Scaling group to align the remaining
instances to the allocation strategy for the type of instance that is terminating (either a Spot Instance

240
Amazon EC2 Auto Scaling User Guide
Working with termination policies

or an On-Demand Instance). This policy is useful when your preferred instance types have changed.
If the Spot allocation strategy is lowest-price, you can gradually rebalance the distribution of
Spot Instances across your N lowest priced Spot pools. If the Spot allocation strategy is capacity-
optimized, you can gradually rebalance the distribution of Spot Instances across Spot pools where
there is more available Spot capacity. You can also gradually replace On-Demand Instances of a lower
priority type with On-Demand Instances of a higher priority type.
• OldestLaunchTemplate. Terminate instances that have the oldest launch template. With this policy,
instances that use the noncurrent launch template are terminated first, followed by instances that use
the oldest version of the current launch template. This policy is useful when you're updating a group
and phasing out the instances from a previous configuration.
• OldestLaunchConfiguration. Terminate instances that have the oldest launch configuration.
This policy is useful when you're updating a group and phasing out the instances from a previous
configuration.
• ClosestToNextInstanceHour. Terminate instances that are closest to the next billing hour. This
policy helps you maximize the use of your instances that have an hourly charge. (Only instances that
use Amazon Linux, Windows, or Ubuntu are billed in one-second increments.)
• NewestInstance. Terminate the newest instance in the group. This policy is useful when you're
testing a new launch configuration but don't want to keep it in production.
• OldestInstance. Terminate the oldest instance in the group. This option is useful when you're
upgrading the instances in the Auto Scaling group to a new EC2 instance type. You can gradually
replace instances of the old type with instances of the new type.
Note
Amazon EC2 Auto Scaling always balances instances across Availability Zones first, regardless
of which termination policy is used. As a result, you might encounter situations in which some
newer instances are terminated before older instances. For example, when there is a more
recently added Availability Zone, or when one Availability Zone has more instances than the
other Availability Zones that are used by the group.

Using diﬀerent termination policies (console)

After your Auto Scaling group has been created, you can update the termination policies for your group.
The default termination policy is used automatically. You have the option of replacing the default policy
with a diﬀerent termination policy (such as OldestLaunchTemplate) or multiple termination policies
listed in the order in which they should apply.

To choose diﬀerent termination policies

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to the Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Details tab, choose Advanced conﬁgurations, Edit.
4. For Termination policies, choose one or more termination policies. If you choose multiple policies,
put them in the order that you want them evaluated in.

You can optionally choose Custom termination policy and then choose a Lambda function that
meets your needs. If you have created versions and aliases for your Lambda function, you can
choose a version or alias from the Version/Alias drop-down. To use the unpublished version of your
Lambda function, keep Version/Alias set to its default. For more information, see Creating a custom
termination policy with Lambda (p. 242).
Note
When using multiple policies, their order must be set correctly:

241
Amazon EC2 Auto Scaling User Guide
Creating a custom termination policy with Lambda

• If you use the Default policy, it must be the last policy in the list.
• If you use a Custom termination policy, it must be the ﬁrst policy in the list.
5. Choose Update.

Using diﬀerent termination policies (AWS CLI)

The default termination policy is used automatically unless a diﬀerent policy is speciﬁed.

To use a diﬀerent termination policy

Use one of the following commands:

• create-auto-scaling-group
• update-auto-scaling-group

You can use termination policies individually, or combine them into a list of policies. For example, use the
following command to update an Auto Scaling group to use the OldestLaunchConfiguration policy
ﬁrst and then use the ClosestToNextInstanceHour policy.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-asg --termination-

policies "OldestLaunchConfiguration" "ClosestToNextInstanceHour"

If you use the Default termination policy, make it the last one in the list of termination policies. For
example, --termination-policies "OldestLaunchConfiguration" "Default".

To use a custom termination policy, you must ﬁrst create your termination policy using AWS Lambda.
To specify the Lambda function to use as your termination policy, make it the ﬁrst one in the list
of termination policies. For example, --termination-policies "arn:aws:lambda:us-
west-2:123456789012:function:HelloFunction:prod" "OldestLaunchConfiguration". For
more information, see Creating a custom termination policy with Lambda (p. 242).

Creating a custom termination policy with Lambda

Amazon EC2 Auto Scaling uses termination policies to prioritize which instances to terminate ﬁrst when
decreasing the size of your Auto Scaling group (referred to as scaling in). Your Auto Scaling group uses
a default termination policy, but you can optionally choose or create your own termination policies. For
more information about choosing a predeﬁned termination policy, see Working with Amazon EC2 Auto
Scaling termination policies (p. 239).

In this topic, you learn how to create a custom termination policy using an AWS Lambda function that
Amazon EC2 Auto Scaling invokes in response to certain events. The Lambda function that you create
processes the information in the input data sent by Amazon EC2 Auto Scaling and returns a list of
instances that are ready to terminate.

A custom termination policy provides better control over which instances are terminated, and when. For
example, when your Auto Scaling group scales in, Amazon EC2 Auto Scaling cannot determine whether
there are workloads running that should not be disrupted. With a Lambda function, you can validate the
termination request and wait until the workload is done before returning the instance ID to Amazon EC2
Auto Scaling for termination.

Contents
• Input data (p. 243)
• Response data (p. 244)

242
Amazon EC2 Auto Scaling User Guide
Creating a custom termination policy with Lambda

• Considerations when using a custom termination policy (p. 244)

• Create the Lambda function (p. 245)
• Limitations (p. 246)

Input data
Amazon EC2 Auto Scaling generates a JSON payload for scale-in events, and also does so when instances
are about to be terminated as a result of the maximum instance lifetime or instance refresh features. It
also generates a JSON payload for the scale-in events that it can initiate when rebalancing your group
across Availability Zones.

This payload contains information about the capacity Amazon EC2 Auto Scaling needs to terminate, a list
of instances that it suggests for termination, and the event that initiated the termination.

The following is an example payload:

{
"AutoScalingGroupARN": "arn:aws:autoscaling:us-east-1:<account-
id>:autoScalingGroup:d4738357-2d40-4038-ae7e-b00ae0227003:autoScalingGroupName/my-asg",
"AutoScalingGroupName": "my-asg",
"CapacityToTerminate": [
{
"AvailabilityZone": "us-east-1b",
"Capacity": 2,
"InstanceMarketOption": "OnDemand"
},
{
"AvailabilityZone": "us-east-1b",
"Capacity": 1,
"InstanceMarketOption": "Spot"
},
{
"AvailabilityZone": "us-east-1c",
"Capacity": 3,
"InstanceMarketOption": "OnDemand"
}
],
"Instances": [
{
"AvailabilityZone": "us-east-1b",
"InstanceId": "i-0056faf8da3e1f75d",
"InstanceType": "t2.nano",
"InstanceMarketOption": "OnDemand"
},
{
"AvailabilityZone": "us-east-1c",
"InstanceId": "i-02e1c69383a3ed501",
"InstanceType": "t2.nano",
"InstanceMarketOption": "OnDemand"
},
{
"AvailabilityZone": "us-east-1c",
"InstanceId": "i-036bc44b6092c01c7",
"InstanceType": "t2.nano",
"InstanceMarketOption": "OnDemand"
},
...
],
"Cause": "SCALE_IN"
}

243
Amazon EC2 Auto Scaling User Guide
Creating a custom termination policy with Lambda

The payload includes the name of the Auto Scaling group, its Amazon Resource Name (ARN), and the
following elements:

• CapacityToTerminate describes how much of your Spot or On-Demand capacity is set to be

terminated in a given Availability Zone.
• Instances represents the instances that Amazon EC2 Auto Scaling suggests for termination based on
the information in CapacityToTerminate.
• Cause describes the event that triggered the termination: SCALE_IN, INSTANCE_REFRESH,
MAX_INSTANCE_LIFETIME, or REBALANCE.

The following information outlines the most signiﬁcant factors in how Amazon EC2 Auto Scaling
generates the Instances in the input data:

• Maintaining balance across Availability Zones takes precedence when an instance is terminating
due to scale-in events and instance refresh-based terminations. Therefore, if one Availability Zone
has more instances than the other Availability Zones that are used by the group, the input data
contains instances that are eligible for termination only from the imbalanced Availability Zone. If the
Availability Zones used by the group are balanced, the input data contains instances from all of the
Availability Zones for the group.
• When using a mixed instances policy (p. 55), maintaining your Spot and On-Demand capacities in
balance based on your desired percentages for each purchase option also takes precedence. We ﬁrst
identify which of the two types (Spot or On-Demand) should be terminated. We then identify which
instances (within the identiﬁed purchase option) in which Availability Zones we can terminate that will
result in the Availability Zones being most balanced.

Response data
The input data and response data work together to narrow down the list of instances to terminate.

With the given input, the response from your Lambda function should look like the following example:

{
"InstanceIDs": [
"i-02e1c69383a3ed501",
"i-036bc44b6092c01c7",
...
]
}

The InstanceIDs in the response represent the instances that are ready to terminate.

Alternatively, you can return a diﬀerent set of instances that are ready to be terminated, which overrides
the instances in the input data. If no instances are ready to terminate when your Lambda function is
invoked, you can also choose not to return any instances.

Considerations when using a custom termination policy

Note the following considerations when using a custom termination policy:

• Returning an instance first in the response data does not guarantee its termination. If more than the
required number of instances are returned when your Lambda function is invoked, Amazon EC2 Auto
Scaling evaluates each instance against the other termination policies that you specified for your Auto
Scaling group. When there are multiple termination policies, it tries to apply the next termination
policy in the list, and if there are more instances than are required to terminate, it moves on to the
next termination policy, and so on. If no other termination policies are specified, then the default
termination policy is used to determine which instances to terminate.

244
Amazon EC2 Auto Scaling User Guide
Creating a custom termination policy with Lambda

• If no instances are returned or your Lambda function times out, then Amazon EC2 Auto Scaling waits
a short time before invoking your function again. For any scale-in event, it keeps trying as long as
the group's desired capacity is less than its current capacity. For instance refresh-based terminations,
it keeps trying for an hour. After that, if it continues to fail to terminate any instances, the instance
refresh operation fails. With maximum instance lifetime, Amazon EC2 Auto Scaling keeps trying to
terminate the instance that is identified as exceeding its maximum lifetime.
• Because your function is retried repeatedly, make sure to test and fix any permanent errors in your
code before using a Lambda function as a custom termination policy.
• If you override the input data with your own list of instances to terminate, and terminating these
instances puts the Availability Zones out of balance, Amazon EC2 Auto Scaling gradually rebalances
the distribution of capacity across Availability Zones. First, it invokes your Lambda function to see
if there are instances that are ready to be terminated so that it can determine whether to start
rebalancing. If there are instances ready to be terminated, it launches new instances first. When the
instances finish launching, it then detects that your group's current capacity is higher than its desired
capacity and initiates a scale-in event.

Create the Lambda function

Start by creating the Lambda function, so that you can specify its Amazon Resource Name (ARN) in the
termination policies for your Auto Scaling group.

To create a Lambda function (console)

1. Open the Functions page on the Lambda console.

2. On the navigation bar at the top of the screen, choose the same Region that you used when you
created the Auto Scaling group.
3. Choose Create function, Author from scratch.
4. Under Basic information, for Function name, enter the name of your function.
5. Choose Create function. You are returned to the function's code and configuration.
6. With your function still open in the console, under Function code, paste your code into the editor.
7. Choose Deploy.
8. Optionally, create a published version of the Lambda function by choosing the Versions tab and
then Publish new version. To learn more about versioning in Lambda, see Lambda function versions
in the AWS Lambda Developer Guide.
9. If you chose to publish a version, choose the Aliases tab if you want to associate an alias with this
version of the Lambda function. To learn more about aliases in Lambda, see Lambda function aliases
in the AWS Lambda Developer Guide
10. Next, choose the Configuration tab and then Permissions.
11. Scroll down to Resource-based policy and then choose Add permissions. A resource-based policy
is used to grant permissions to invoke your function to the principal that is specified in the policy.
In this case, the principal will be the Amazon EC2 Auto Scaling service-linked role that is associated
with the Auto Scaling group.
12. In the Policy statement section, configure your permissions:

a. Choose AWS account.

b. For Principal, enter the ARN of the calling service-linked role, for example,
arn:aws:iam::<aws-account-id>:role/aws-service-role/
autoscaling.amazonaws.com/AWSServiceRoleForAutoScaling.
c. For Action, choose lambda:InvokeFunction.
d. For Statement ID, enter a unique statement ID, such as AllowInvokeByAutoScaling.
e. Choose Save.

245
Amazon EC2 Auto Scaling User Guide
Using instance scale-in protection

13. After you have followed these instructions, continue on to specify the ARN of your function in the
termination policies for your Auto Scaling group as a next step. For more information, see Using
diﬀerent termination policies (console) (p. 241).

Limitations
• You can only specify one Lambda function in the termination policies for an Auto Scaling group. If
there are multiple termination policies specified, the Lambda function must be specified first.
• You can reference your Lambda function using either an unqualified ARN (without a suffix) or a
qualified ARN that has either a version or an alias as its suffix. If an unqualified ARN is used (for
example, function:my-function), your resource-based policy must be created on the unpublished
version of your function. If a qualified ARN is used (for example, function:my-function:1 or
function:my-function:prod), your resource-based policy must be created on that specific
published version of your function.
• You cannot use a qualified ARN with the $LATEST suffix. If you try to add a custom termination policy
that refers to a qualified ARN with the $LATEST suffix, it will result in an error.
• The number of instances provided in the input data is limited to 30,000 instances. If there are more
than 30,000 instances that could be terminated, the input data includes "HasMoreInstances":
true to indicate that the maximum number of instances are returned.
• The maximum run time for your Lambda function is two seconds (2000 milliseconds). As a best
practice, you should set the timeout value of your Lambda function based on your expected run time.
Lambda functions have a default timeout of three seconds, but this can be decreased.
• Amazon EC2 Auto Scaling won't terminate instances that have instance scale-in protection enabled.

Using instance scale-in protection

To control whether an Auto Scaling group can terminate a particular instance when scaling in, use
instance scale-in protection. You can enable the instance scale-in protection setting on an Auto Scaling
group or on an individual Auto Scaling instance. When Amazon EC2 Auto Scaling launches a new
instance or moves an instance from a warm pool into the Auto Scaling group, the instance inherits the
instance scale-in protection setting of the Auto Scaling group. You can change the instance scale-in
protection setting for an Auto Scaling group or an Auto Scaling instance at any time.

Instance scale-in protection starts when the instance state is InService. If you detach an instance that
is protected from scale-in, its instance scale-in protection setting is lost. When you attach the instance to
the group again, it inherits the current instance scale-in protection setting of the group.

Instance scale-in protection does not protect Auto Scaling instances from the following:

• Manual termination through the Amazon EC2 console, the terminate-instances command, or the
TerminateInstances action. To protect Auto Scaling instances from manual termination, enable
Amazon EC2 termination protection. For more information, see Enabling termination protection in the
Amazon EC2 User Guide for Linux Instances.
• Health check replacement if the instance fails health checks. For more information, see Health checks
for Auto Scaling instances (p. 259).
• Spot Instance interruptions. A Spot Instance is terminated when capacity is no longer available or the
Spot price exceeds your maximum price.

Tasks
• Enable instance scale-in protection for a group (p. 247)
• Modify the instance scale-in protection setting for a group (p. 247)
• Modify the instance scale-in protection setting for an instance (p. 248)

246
Amazon EC2 Auto Scaling User Guide
Using instance scale-in protection

Note
If all instances in an Auto Scaling group are protected from scale in, and a scale-in event occurs,
its desired capacity is decremented. However, the Auto Scaling group can't terminate the
required number of instances until their instance scale-in protection settings are disabled.
In the AWS Management Console, the Activity history for the Auto Scaling group includes
the following message if all instances in an Auto Scaling group are protected from scale in
when a scale-in event occurs: Could not scale to desired capacity because all
remaining instances are protected from scale-in.

Enable instance scale-in protection for a group

You can enable instance scale-in protection when you create an Auto Scaling group. By default, instance
scale-in protection is disabled.

To enable instance scale-in protection (console)

When you create the Auto Scaling group, on the Conﬁgure group size and scaling policies page, under
Instance scale-in protection, select the Enable instance scale-in protection option.

To enable instance scale-in protection (AWS CLI)

Use the following create-auto-scaling-group command to enable instance scale-in protection.

aws autoscaling create-auto-scaling-group --auto-scaling-group-name my-asg --new-instances-

protected-from-scale-in ...

Modify the instance scale-in protection setting for a group

You can enable or disable the instance scale-in protection setting for an Auto Scaling group. When the
instance scale-in protection setting is enabled, all new instances launched after enabling it will have
instance scale-in protection enabled. Previously launched instances are only protected from scale in if
you enable the instance scale-in protection setting for each instance individually.

To change the instance scale-in protection setting for a group (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select check box next to the Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Details tab, choose Advanced conﬁgurations, Edit.
4. For Instance scale-in protection, select Enable instance scale-in protection.
5. Choose Update.

To change the instance scale-in protection setting for a group (AWS CLI)

Use the following update-auto-scaling-group command to enable instance scale-in protection for the
speciﬁed Auto Scaling group.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-asg --new-instances-

protected-from-scale-in

Use the following command to disable instance scale-in protection for the speciﬁed group.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-asg --no-new-

instances-protected-from-scale-in

247
Amazon EC2 Auto Scaling User Guide
Temporarily removing instances

Modify the instance scale-in protection setting for an instance

By default, an instance gets its instance scale-in protection setting from its Auto Scaling group. However,
you can enable or disable instance scale-in protection for an instance at any time.

To change the instance scale-in protection setting for an instance (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Instance management tab, in Instances, select an instance.
4. To enable instance scale-in protection, choose Actions, Set scale-in protection. When prompted,
choose Set scale-in protection.
5. To disable instance scale-in protection, choose Actions, Remove scale-in protection. When
prompted, choose Remove scale-in protection.

To change the instance scale-in protection setting for an instance (AWS CLI)

Use the following set-instance-protection command to enable instance scale-in protection for the
speciﬁed instance.

aws autoscaling set-instance-protection --instance-ids i-5f2e8a0d --auto-scaling-group-

name my-asg --protected-from-scale-in

Use the following command to disable instance scale-in protection for the speciﬁed instance.

aws autoscaling set-instance-protection --instance-ids i-5f2e8a0d --auto-scaling-group-

name my-asg --no-protected-from-scale-in

Temporarily removing instances from your Auto

Scaling group
You can put an instance that is in the InService state into the Standby state, update or troubleshoot
the instance, and then return the instance to service. Instances that are on standby are still part of the
Auto Scaling group, but they do not actively handle load balancer traﬃc.

This feature helps you stop and start the instances or reboot them without worrying about Amazon EC2
Auto Scaling terminating the instances as part of its health checks or during scale-in events.

For example, you can change the Amazon Machine Image (AMI) for an Auto Scaling group at any time by
changing the launch template or launch conﬁguration. Any subsequent instances that the Auto Scaling
group launches use this AMI. However, the Auto Scaling group does not update the instances that are
currently in service. You can terminate these instances and let Amazon EC2 Auto Scaling replace them, or
use the instance refresh feature to terminate and replace the instances. Or, you can put the instances on
standby, update the software, and then put the instances back in service.

Detaching instances from an Auto Scaling group is similar to putting instances on standby. Detaching
instances might be useful if you want to manage the instances like standalone EC2 instances and
possibly terminate them. For more information, see Detach EC2 instances from your Auto Scaling
group (p. 149).

248
Amazon EC2 Auto Scaling User Guide
How the standby state works

Important
When you put instances on standby, your Auto Scaling group can become unbalanced between
Availability Zones. Amazon EC2 Auto Scaling compensates by rebalancing the Availability Zones
unless you suspend the AZRebalance process. For more information, see Suspending and
resuming a process for an Auto Scaling group (p. 253).

Contents
• How the standby state works (p. 249)
• Health status of an instance in a standby state (p. 250)
• Temporarily remove an instance (console) (p. 250)
• Temporarily remove an instance (AWS CLI) (p. 250)

Important
You are billed for instances that are in a standby state.

How the standby state works

The standby state works as follows to help you temporarily remove an instance from your Auto Scaling
group:

1. You put the instance into the standby state. The instance remains in this state until you exit the
standby state.
2. If there is a load balancer target group or Classic Load Balancer attached to your Auto Scaling group,
the instance is deregistered from the load balancer. If connection draining is enabled for the load
balancer, Elastic Load Balancing waits 300 seconds by default before completing the deregistration
process, which helps in-flight requests to complete.
3. By default, the value that you specified as your desired capacity is decremented when you put an
instance on standby. This prevents the launch of an additional instance while you have this instance
on standby. Alternatively, you can specify that your desired capacity is not decremented. If you specify
this option, the Auto Scaling group launches an instance to replace the one on standby. The intention
is to help you maintain capacity for your application while one or more instances are on standby.
4. You can update or troubleshoot the instance.
5. You return the instance to service by exiting the standby state.
6. After you put an instance that was on standby back in service, the desired capacity is incremented. If
you did not decrement the capacity when you put the instance on standby, the Auto Scaling group
detects that you have more instances than you need. It applies the termination policy in effect to
reduce the size of the group. For more information, see Controlling which Auto Scaling instances
terminate during scale in (p. 236).
7. If there is a load balancer target group or Classic Load Balancer attached to your Auto Scaling group,
the instance is registered with the load balancer.

The following illustration shows the transitions between instance states in this process:

249
Amazon EC2 Auto Scaling User Guide
Health status of an instance in a standby state

For more information about the complete lifecycle of instances in an Auto Scaling group, see Amazon
EC2 Auto Scaling instance lifecycle (p. 8).

Health status of an instance in a standby state

Amazon EC2 Auto Scaling does not perform health checks on instances that are in a standby state. While
the instance is in a standby state, its health status reﬂects the status that it had before you put it on
standby. Amazon EC2 Auto Scaling does not perform a health check on the instance until you put it back
in service.

For example, if you put a healthy instance on standby and then terminate it, Amazon EC2 Auto Scaling
continues to report the instance as healthy. If you attempt to put a terminated instance that was on
standby back in service, Amazon EC2 Auto Scaling performs a health check on the instance, determines
that it is terminating and unhealthy, and launches a replacement instance. For an introduction to health
checks, see Health checks for Auto Scaling instances (p. 259).

Temporarily remove an instance (console)

The following procedure demonstrates the general process for updating an instance that is currently in
service.

To temporarily remove an instance

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to the Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Instance management tab, in Instances, select an instance.
4. Choose Actions, Set to Standby.
5. In the Set to Standby dialog box, select the check box to launch a replacement instance. Leave it
unchecked to decrement the desired capacity. Choose Set to Standby.
6. You can update or troubleshoot your instance as needed. When you have ﬁnished, continue with the
next step to return the instance to service.
7. Select the instance, choose Actions, Set to InService. In the Set to InService dialog box, choose Set
to InService.

Temporarily remove an instance (AWS CLI)

The following procedure demonstrates the general process for updating an instance that is currently in
service.

To temporarily remove an instance

1. Use the following describe-auto-scaling-instances command to identify the instance to update.

aws autoscaling describe-auto-scaling-instances

The following is an example response.

{
"AutoScalingInstances": [
{

250
Amazon EC2 Auto Scaling User Guide
Temporarily remove an instance (AWS CLI)

"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-05b4f7d5be44822a6",
"AutoScalingGroupName": "my-asg",
"HealthStatus": "HEALTHY",
"LifecycleState": "InService"
},
...
]
}

2. Move the instance into a Standby state using the following enter-standby command. The --
should-decrement-desired-capacity option decreases the desired capacity so that the Auto
Scaling group does not launch a replacement instance.

aws autoscaling enter-standby --instance-ids i-05b4f7d5be44822a6 \

--auto-scaling-group-name my-asg --should-decrement-desired-capacity

The following is an example response.

{
"Activities": [
{
"Description": "Moving EC2 instance to Standby: i-05b4f7d5be44822a6",
"AutoScalingGroupName": "my-asg",
"ActivityId": "3b1839fe-24b0-40d9-80ae-bcd883c2be32",
"Details": "{\"Availability Zone\":\"us-west-2a\"}",
"StartTime": "2014-12-15T21:31:26.150Z",
"Progress": 50,
"Cause": "At 2014-12-15T21:31:26Z instance i-05b4f7d5be44822a6 was moved to
standby
in response to a user request, shrinking the capacity from 4 to 3.",
"StatusCode": "InProgress"
}
]
}

3. (Optional) Verify that the instance is in Standby using the following describe-auto-scaling-instances
command.

aws autoscaling describe-auto-scaling-instances --instance-ids i-05b4f7d5be44822a6

The following is an example response. Notice that the status of the instance is now Standby.

251
Amazon EC2 Auto Scaling User Guide
Temporarily remove an instance (AWS CLI)

"HealthStatus": "HEALTHY",
"LifecycleState": "Standby"
},
...
]
}

4. You can update or troubleshoot your instance as needed. When you have ﬁnished, continue with the
next step to return the instance to service.
5. Put the instance back in service using the following exit-standby command.

aws autoscaling exit-standby --instance-ids i-05b4f7d5be44822a6 --auto-scaling-group-

name my-asg

The following is an example response.

{
"Activities": [
{
"Description": "Moving EC2 instance out of Standby: i-05b4f7d5be44822a6",
"AutoScalingGroupName": "my-asg",
"ActivityId": "db12b166-cdcc-4c54-8aac-08c5935f8389",
"Details": "{\"Availability Zone\":\"us-west-2a\"}",
"StartTime": "2014-12-15T21:46:14.678Z",
"Progress": 30,
"Cause": "At 2014-12-15T21:46:14Z instance i-05b4f7d5be44822a6 was moved
out of standby in
response to a user request, increasing the capacity from 3 to 4.",
"StatusCode": "PreInService"
}
]
}

6. (Optional) Verify that the instance is back in service using the following describe-auto-
scaling-instances command.

aws autoscaling describe-auto-scaling-instances --instance-ids i-05b4f7d5be44822a6

The following is an example response. Notice that the status of the instance is InService.

252
Amazon EC2 Auto Scaling User Guide
Suspending processes

Suspending and resuming a process for an Auto

Scaling group
This topic explains how to suspend and then resume one or more of the processes for your Auto Scaling
group. It also describes the issues to consider when choosing to use the suspend-resume feature of
Amazon EC2 Auto Scaling.
Important
Use the standby feature instead of the suspend-resume feature if you need to troubleshoot
or reboot an instance. For more information, see Temporarily removing instances from your
Auto Scaling group (p. 248). Use the instance scale-in protection feature to prevent speciﬁc
instances from being terminated during automatic scale in. For more information, see Using
instance scale-in protection (p. 246).

In addition to suspensions that you initiate, Amazon EC2 Auto Scaling can also suspend processes
for Auto Scaling groups that repeatedly fail to launch instances. This is known as an administrative
suspension. An administrative suspension most commonly applies to Auto Scaling groups that have been
trying to launch instances for over 24 hours but have not succeeded in launching any instances. You can
resume processes that were suspended by Amazon EC2 Auto Scaling for administrative reasons.

Contents
• Amazon EC2 Auto Scaling processes (p. 253)
• Choosing to suspend (p. 254)
• Suspend and resume processes (console) (p. 256)
• Suspend and resume processes (AWS CLI) (p. 256)

Amazon EC2 Auto Scaling processes

For Amazon EC2 Auto Scaling, there are two primary process types: Launch and Terminate. The
Launch process adds a new Amazon EC2 instance to an Auto Scaling group, increasing its capacity. The
Terminate process removes an Amazon EC2 instance from the group, decreasing its capacity.

The other process types for Amazon EC2 Auto Scaling relate to speciﬁc scaling features:

• AddToLoadBalancer—Adds instances to the attached load balancer target group or Classic Load
Balancer when they are launched. For more information, see Elastic Load Balancing and Amazon EC2
Auto Scaling (p. 100).
• AlarmNotification—Accepts notiﬁcations from CloudWatch alarms that are associated with
the group's scaling policies. For more information, see Dynamic scaling for Amazon EC2 Auto
Scaling (p. 152).
• AZRebalance—Balances the number of EC2 instances in the group evenly across all of the speciﬁed
Availability Zones when the group becomes unbalanced, for example, a previously unavailable
Availability Zone returns to a healthy state. For more information, see Rebalancing activities (p. 7).
• HealthCheck—Checks the health of the instances and marks an instance as unhealthy if Amazon EC2
or Elastic Load Balancing tells Amazon EC2 Auto Scaling that the instance is unhealthy. This process
can override the health status of an instance that you set manually. For more information, see Health
checks for Auto Scaling instances (p. 259).
• InstanceRefresh—Terminates and replaces instances using the instance refresh feature. For more
information, see Replacing Auto Scaling instances based on an instance refresh (p. 118).
• ReplaceUnhealthy—Terminates instances that are marked as unhealthy and then creates
new instances to replace them. For more information, see Health checks for Auto Scaling
instances (p. 259).

253
Amazon EC2 Auto Scaling User Guide
Choosing to suspend

• ScheduledActions—Performs the scheduled scaling actions that you create or that are created
for you when you create an AWS Auto Scaling scaling plan and turn on predictive scaling. For more
information, see Scheduled scaling for Amazon EC2 Auto Scaling (p. 199).

Choosing to suspend
Each process type can be suspended and resumed independently. This section provides some guidance
and behavior to take into account before deciding to suspend one of the processes built into Amazon
EC2 Auto Scaling. Keep in mind that suspending individual processes might interfere with other
processes. Depending on the reason for suspending a process, you might need to suspend multiple
processes together.

The following descriptions explain what happens when individual process types are suspended.
Warning
If you suspend either the Launch or Terminate process types, it can prevent other process
types from functioning properly.

Terminate

• Your Auto Scaling group does not scale in for alarms or scheduled actions that occur while the process
is suspended. In addition, the following processes are disrupted:
• AZRebalance is still active but does not function properly. It can launch new instances without
terminating the old ones. This could cause your Auto Scaling group to grow up to 10 percent larger
than its maximum size, because this is allowed temporarily during rebalancing activities. Your Auto
Scaling group could remain above its maximum size until you resume the Terminate process. When
Terminate resumes, AZRebalance gradually rebalances the Auto Scaling group if the group is no
longer balanced between Availability Zones or if diﬀerent Availability Zones are speciﬁed.
• ReplaceUnhealthy is inactive but not HealthCheck. When Terminate resumes, the
ReplaceUnhealthy process immediately starts running. If any instances were marked as unhealthy
while Terminate was suspended, they are immediately replaced.
• InstanceRefresh is paused until you resume Terminate.

Launch

• Your Auto Scaling group does not scale out for alarms or scheduled actions that occur while the
process is suspended. AZRebalance stops rebalancing the group. ReplaceUnhealthy continues
to terminate unhealthy instances, but does not launch replacements. When you resume Launch,
rebalancing activities and health check replacements are handled in the following way:
• AZRebalance gradually rebalances the Auto Scaling group if the group is no longer balanced
between Availability Zones or if diﬀerent Availability Zones are speciﬁed.
• ReplaceUnhealthy immediately replaces any instances that it terminated during the time that
Launch was suspended.
• InstanceRefresh is paused until you resume Launch.

AddToLoadBalancer

• Amazon EC2 Auto Scaling launches the instances but does not add them to the load balancer target
group or Classic Load Balancer. When you resume the AddToLoadBalancer process, it resumes
adding instances to the load balancer when they are launched. However, it does not add the instances
that were launched while this process was suspended. You must register those instances manually.

AlarmNotification

254
Amazon EC2 Auto Scaling User Guide
Choosing to suspend

• Amazon EC2 Auto Scaling does not execute scaling policies when a CloudWatch alarm threshold is in
breach. Suspending AlarmNotification allows you to temporarily stop scaling events triggered
by the group's scaling policies without deleting the scaling policies or their associated CloudWatch
alarms. When you resume AlarmNotification, Amazon EC2 Auto Scaling considers policies with
alarm thresholds that are currently in breach.

AZRebalance

• Your Auto Scaling group does not attempt to redistribute instances after certain events. However, if a
scale-out or scale-in event occurs, the scaling process still tries to balance the Availability Zones. For
example, during scale out, it launches the instance in the Availability Zone with the fewest instances.
If the group becomes unbalanced while AZRebalance is suspended and you resume it, Amazon EC2
Auto Scaling attempts to rebalance the group. It ﬁrst calls Launch and then Terminate.

HealthCheck

• Amazon EC2 Auto Scaling stops marking instances unhealthy as a result of EC2 and Elastic Load
Balancing health checks. Your custom health checks continue to function properly, however. After
you suspend HealthCheck, if you need to, you can manually set the health state of instances in your
group and have ReplaceUnhealthy replace them.

ReplaceUnhealthy

• Amazon EC2 Auto Scaling stops replacing instances that are marked as unhealthy. Instances that fail
EC2 or Elastic Load Balancing health checks are still marked as unhealthy. As soon as you resume
the ReplaceUnhealthly process, Amazon EC2 Auto Scaling replaces instances that were marked
unhealthy while this process was suspended. The ReplaceUnhealthy process calls both of the
primary process types—ﬁrst Terminate and then Launch.

ScheduledActions

• Amazon EC2 Auto Scaling does not execute scaling actions that are scheduled to run during the
suspension period. When you resume ScheduledActions, Amazon EC2 Auto Scaling only considers
scheduled actions whose execution time has not yet passed.

Suspending both launch and terminate

When you suspend the Launch and Terminate process types together, the following happens:

• Your Auto Scaling group cannot initiate scaling activities or maintain its desired capacity.
• If the group becomes unbalanced between Availability Zones, Amazon EC2 Auto Scaling does not
attempt to redistribute instances evenly between the Availability Zones that are speciﬁed for your
Auto Scaling group.
• Your Auto Scaling group cannot replace instances that are marked unhealthy.
• The instance refresh feature cannot replace any instances.

When you resume the Launch and Terminate process types, Amazon EC2 Auto Scaling replaces
instances that were marked unhealthy while the processes were suspended and might attempt to
rebalance the group. Scaling activities also resume.

Additional considerations
There are some outside operations that might be aﬀected while Launch and Terminate are suspended.

255
Amazon EC2 Auto Scaling User Guide
Suspend and resume processes (console)

• Maximum instance lifetime—When Launch or Terminate are suspended, the maximum instance
lifetime feature cannot replace any instances.
• Spot Instance interruptions—If Terminate is suspended and your Auto Scaling group has Spot
Instances, they can still terminate in the event that Spot capacity is no longer available. While Launch
is suspended, Amazon EC2 Auto Scaling cannot launch replacement instances from another Spot
Instance pool or from the same Spot Instance pool when it is available again.
• Capacity rebalancing—If Terminate is suspended and you use capacity rebalancing to handle Spot
Instance interruptions programmatically, the Amazon EC2 Spot service can still terminate instances in
the event that Spot capacity is no longer available. If Launch is suspended, Amazon EC2 Auto Scaling
cannot launch replacement instances from another Spot Instance pool or from the same Spot Instance
pool when it is available again.
• Attaching and Detaching Instances —When Launch and Terminate are suspended, you can detach
instances that are attached to your Auto Scaling group, but you can't attach new instances to the
group. To attach instances, you must first resume Launch.
Note
If detaching an instance will immediately be followed by manually terminating it, you can
call the terminate-instance-in-auto-scaling-group CLI command instead. This terminates the
specified instance and optionally adjusts the group's desired capacity. In addition, if the Auto
Scaling group is being used with lifecycle hooks, the custom actions that you specified for
instance termination will run before the instance is fully terminated.
• Standby Instances—While Launch is suspended, you cannot return an instance in the Standby state
to service. To return the instance to service, you must first resume Launch.

Suspend and resume processes (console)

You can suspend and resume individual processes or all processes.

To suspend and resume processes

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to the Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Details tab, choose Advanced conﬁgurations, Edit.
4. For Suspended processes, choose the process to suspend.

To resume a suspended process, remove it from Suspended processes.

5. Choose Update.

Suspend and resume processes (AWS CLI)

You can suspend and resume individual processes or all processes.

To suspend a process

Use the suspend-processes command with the --scaling-processes option as follows.

aws autoscaling suspend-processes --auto-scaling-group-name my-asg --scaling-

processes AlarmNotification

To suspend all processes

256
Amazon EC2 Auto Scaling User Guide
Suspend and resume processes (AWS CLI)

Use the suspend-processes command as follows (omitting the --scaling-processes option).

aws autoscaling suspend-processes --auto-scaling-group-name my-asg

To resume a suspended process

Use the resume-processes command as follows.

aws autoscaling resume-processes --auto-scaling-group-name my-asg --scaling-

processes AlarmNotification

To resume all suspended processes

Use the resume-processes command as follows (omitting the --scaling-processes option).

aws autoscaling resume-processes --auto-scaling-group-name my-asg

257
Amazon EC2 Auto Scaling User Guide

Monitoring your Auto Scaling

instances and groups
Monitoring is an important part of maintaining the reliability, availability, and performance of Amazon
EC2 Auto Scaling and your Amazon Web Services Cloud solutions. AWS provides the following
monitoring tools to watch Amazon EC2 Auto Scaling, report when something is wrong, and take
automatic actions when appropriate:

Health Checks

Amazon EC2 Auto Scaling periodically performs health checks on the instances in your Auto Scaling
group. If an instance does not pass its health check, it is marked unhealthy and will be terminated
while Amazon EC2 Auto Scaling launches a new instance in replacement. For more information, see
Health checks for Auto Scaling instances (p. 259).
Capacity Rebalancing

You can enable Capacity Rebalancing on new and existing Auto Scaling groups when using
Spot Instances. When you turn on Capacity Rebalancing, Amazon EC2 Auto Scaling attempts
to launch a Spot Instance whenever Amazon EC2 notiﬁes that a Spot Instance is at an elevated
risk of interruption. After launching a new instance, it then terminates an old instance. For more
information, see Amazon EC2 Auto Scaling Capacity Rebalancing (p. 263).
AWS Health Dashboard

The AWS Health Dashboard (PHD) displays information, and also provides notiﬁcations that are
triggered by changes in the health of Amazon Web Services resources. The information is presented
in two ways: on a dashboard that shows recent and upcoming events organized by category, and in
a full event log that shows all events from the past 90 days. For more information, see AWS Health
Dashboard notiﬁcations for Amazon EC2 Auto Scaling (p. 269).
CloudWatch Alarms

To detect unhealthy application behavior, CloudWatch helps you by automatically monitoring

certain metrics for your Amazon Web Services resources. You can configure a CloudWatch alarm and
set up an Amazon SNS notification that sends an email when a metric's value is not what you expect
or when certain anomalies are detected. For example, you can be notified when network activity
is suddenly higher or lower than a metric's expected value. For more information, see Monitoring
CloudWatch metrics for your Auto Scaling groups and instances (p. 270).
CloudWatch Dashboards

CloudWatch dashboards are customizable home pages in the CloudWatch console. You can use
these pages to monitor your resources in a single view, even including resources that are spread
across diﬀerent Regions. You can use CloudWatch dashboards to create customized views of the
metrics and alarms for your Amazon Web Services resources. For more information, see the Amazon
CloudWatch User Guide.
CloudTrail Logs

AWS CloudTrail enables you to track the calls made to the Amazon EC2 Auto Scaling API by or on
behalf of your Amazon Web Services account. CloudTrail stores the information in log ﬁles in the
Amazon S3 bucket that you specify. You can use these log ﬁles to monitor activity of your Auto
Scaling groups. Logs include which requests were made, the source IP addresses where the requests

258
Amazon EC2 Auto Scaling User Guide
Checking instance health

came from, who made the request, when the request was made, and so on. For more information,
see Logging Amazon EC2 Auto Scaling API calls with AWS CloudTrail (p. 279).
CloudWatch Logs

CloudWatch Logs enable you to monitor, store, and access your log files from Amazon EC2 instances,
CloudTrail, and other sources. CloudWatch Logs can monitor information in the log files and notify
you when certain thresholds are met. You can also archive your log data in highly durable storage.
For more information, see the Amazon CloudWatch Logs User Guide.
Amazon Simple Notification Service Notifications

You can configure Auto Scaling groups to send Amazon SNS notifications when Amazon EC2
Auto Scaling launches or terminates instances. For more information, see Getting Amazon SNS
notifications when your Auto Scaling group scales (p. 281).
EventBridge

Amazon EventBridge, formerly called CloudWatch Events, delivers a near real-time stream of system
events that describe changes in Amazon Web Services resources. EventBridge enables automated
event-driven computing, as you can write rules that watch for certain events and trigger automated
actions in other Amazon Web Services when these events happen. For example, you can use
EventBridge to set up a target to invoke a Lambda function when your Auto Scaling group scales or
when a lifecycle action occurs. You can also receive a two-minute warning when Spot Instances are
about to be reclaimed by Amazon EC2. For information about capturing Amazon EC2 Auto Scaling
emitted events in EventBridge, see Using Amazon EC2 Auto Scaling with EventBridge (p. 285).

Health checks for Auto Scaling instances

The health status of an Auto Scaling instance is either healthy or unhealthy. All instances in your Auto
Scaling group start in the healthy state. Instances are assumed to be healthy unless Amazon EC2 Auto
Scaling receives notiﬁcation that they are unhealthy. This notiﬁcation can come from one or more of
the following sources: Amazon EC2, Elastic Load Balancing, or a custom health check. After Amazon EC2
Auto Scaling marks an instance as unhealthy, it is scheduled for replacement.

Contents
• Instance health status (p. 259)
• Determining instance health (p. 260)
• Considerations (p. 260)
• Health check grace period (p. 261)
• Replacing unhealthy instances (p. 262)
• Using custom health checks (p. 262)
• Additional information (p. 263)

Instance health status

Amazon EC2 Auto Scaling can determine the health status of an instance using one or more of the
following:

• Status checks provided by Amazon EC2 to identify hardware and software issues that may impair an
instance. The default health checks for an Auto Scaling group are EC2 status checks only.
• Health checks provided by Elastic Load Balancing. These health checks are disabled by default but can
be enabled.

259
Amazon EC2 Auto Scaling User Guide
Determining instance health

• Your custom health checks.

Determining instance health

After an instance is fully conﬁgured and passes the initial health checks, it is considered healthy by
Amazon EC2 Auto Scaling and enters the InService state.

Amazon EC2 Auto Scaling checks that all instances within the Auto Scaling group are running and in
good shape by periodically checking the health state of the instances. When it determines that an
InService instance is unhealthy, it terminates that instance and launches a new one. This helps in
maintaining the number of running instances at the minimum number (or desired number, if speciﬁed)
that you deﬁned.

Amazon EC2 status checks

Amazon EC2 Auto Scaling health checks use the results of the Amazon EC2 status checks to determine
the health status of an instance. If the instance is in any Amazon EC2 state other than running or if
the system status is impaired, Amazon EC2 Auto Scaling considers the instance to be unhealthy and
replaces it. This includes when the instance has any of the following states:

• stopping
• stopped
• shutting-down
• terminated

The EC2 status checks do not require any special conﬁguration and are always enabled unless you
suspend the HealthCheck process. This includes both instance status checks and system status checks.
For more information, see Types of status checks in the Amazon EC2 User Guide for Linux Instances.

Elastic Load Balancing (ELB) health checks

Instances for groups that do not use ELB health checks are considered healthy if they are in the running
state. Instances for groups that use ELB health checks are considered healthy if they are in the running
state and they are reported as healthy by the load balancer.

If you attached a load balancer or target group to your Auto Scaling group, you can configure the group
to mark an instance as unhealthy when Elastic Load Balancing reports it as unhealthy. If connection
draining is enabled for your load balancer, Amazon EC2 Auto Scaling waits for in-flight requests to
complete or the maximum timeout to expire, whichever comes first, before terminating instances due to
a scaling event or health check replacement.

For information about enabling these health checks, see Adding ELB health checks (p. 105).

Custom health checks

If you have custom health checks, you can send the information from your health checks to Amazon EC2
Auto Scaling so that it can use this information. For example, if you determine that an instance is not
functioning as expected, you can set the health status of the instance to Unhealthy. The next time that
Amazon EC2 Auto Scaling performs a health check on the instance, it will determine that the instance
is unhealthy and then launch a replacement instance. For more information, see Using custom health
checks (p. 262).

Considerations
To provide enough time for new instances to be ready to start serving application traﬃc without being
terminated due to failed health checks, do one, or both, of the following:

260
Amazon EC2 Auto Scaling User Guide
Health check grace period

• Set the health check grace period of the group to match the expected startup period of your
application. For more information, see the Health check grace period (p. 261) section.
• Add a lifecycle hook to the group to make sure that your instances are fully conﬁgured before they
are ready to serve traﬃc at the end of the lifecycle hook. For more information, see Amazon EC2 Auto
Scaling lifecycle hooks (p. 204).

For Amazon EC2 status checks, consider the following:

• When a system status check fails, Amazon EC2 Auto Scaling waits a few minutes for AWS to ﬁx the
issue. It does not immediately mark instances as unhealthy when they have an impaired status.
However, any instances that are not in the running state are immediately marked as unhealthy.
• During the health check grace period, if an instance has already reached the InService state but it
is no longer running, Amazon EC2 Auto Scaling marks it as unhealthy and replaces it. For example,
this can happen when you stop an instance. Amazon EC2 Auto Scaling has two options for stopping
an InService instance. You can either put the instance into standby for a period of time, or you can
detach it from the group.
• Amazon EC2 Auto Scaling does not provide a way of removing the Amazon EC2 status checks from its
health checks. If you do not want unhealthy instances to be replaced, we recommend that you suspend
the ReplaceUnhealthy and HealthCheck process for individual Auto Scaling groups. For more
information, see Suspending and resuming a process for an Auto Scaling group (p. 253).

Health check grace period

The HealthCheckGracePeriod parameter for the Auto Scaling group helps Amazon EC2 Auto Scaling
distinguish unhealthy instances from newly launched instances that are not yet ready to serve traﬃc.
This grace period can prevent Amazon EC2 Auto Scaling from marking instances as unhealthy and
terminating them before they have time to come up.

By default, the health check grace period is 300 seconds when you create an Auto Scaling group from
the AWS Management Console. Its default value is 0 seconds when you create an Auto Scaling group
using the AWS CLI or an SDK.

Set this value greater than or equal to the maximum amount of startup time needed for your
application, from when an instance starts to when it can receive traﬃc. If you add a lifecycle hook, you
can reduce the value of the health check grace period. When there is a lifecycle hook, the grace period
does not start until the lifecycle hook actions are completed and the instance enters the InService
state.

To conﬁgure the health check grace period (console)

When you create the Auto Scaling group, on the Conﬁgure advanced options page, for Health checks,
Health check grace period, choose the amount of startup time your application needs.

To modify the health check grace period for an existing group (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling and

choose the AWS Region that you created your Auto Scaling group in.
2. Select the check box next to the Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group you selected.
3. On the Details tab, choose Health checks, Edit.
4. Under Health check grace period, choose the amount of startup time your application needs.
5. Choose Update.

261
Amazon EC2 Auto Scaling User Guide
Replacing unhealthy instances

Replacing unhealthy instances

After an instance has been marked unhealthy because of a health check, it is almost immediately
scheduled for replacement. It never automatically recovers its health. You can intervene manually
by calling the set-instance-health command to set the instance's health status back to healthy. If the
instance is already terminating, you get an error.
Note
Because the interval between marking an instance unhealthy and its actual termination is
so small, attempting to set an instance's health status back to healthy with the set-instance-
health command is probably useful only in cases where the ReplaceUnhealthy process is
suspended. For more information, see Suspending and resuming a process for an Auto Scaling
group (p. 253).

Amazon EC2 Auto Scaling creates a new scaling activity for terminating the unhealthy instance and then
terminates it. Later, another scaling activity launches a new instance to replace the terminated instance.

When your instance is terminated, any associated Elastic IP addresses are disassociated and are not
automatically associated with the new instance. You must associate these Elastic IP addresses with
the new instance manually. Similarly, when your instance is terminated, its attached EBS volumes are
detached. You must attach these EBS volumes to the new instance manually. For more information, see
Disassociating an Elastic IP address and reassociating with a diﬀerent instance and Attaching an Amazon
EBS volume to an instance in the Amazon EC2 User Guide for Linux Instances.

Using custom health checks

If you have your own health check system, you can send the instance's health information directly from
your system to Amazon EC2 Auto Scaling using the AWS CLI or an SDK. The following examples show
how to use the AWS CLI to conﬁgure the health state of an instance and then verify the instance's health
state.

Use the following set-instance-health command to set the health state of the speciﬁed instance to
Unhealthy.

aws autoscaling set-instance-health --instance-id i-123abc45d --health-status Unhealthy

Use the following describe-auto-scaling-groups command to verify that the instance state is Unhealthy.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-names my-asg

The following is an example response that shows that the health status of the instance is Unhealthy
and that the instance is terminating.

{
"AutoScalingGroups": [
{
....
"Instances": [
{
"ProtectedFromScaleIn": false,
"AvailabilityZone": "us-west-2a",
"LaunchTemplate": {
"LaunchTemplateName": "my-launch-template",
"Version": "1",
"LaunchTemplateId": "lt-050555ad16a3f9c7f"
},
"InstanceId": "i-123abc45d",
"HealthStatus": "Unhealthy",

262
Amazon EC2 Auto Scaling User Guide
Additional information

"LifecycleState": "Terminating"
},
...
]
}
]
}

Additional information
For information about troubleshooting health checks, see Troubleshooting Amazon EC2 Auto Scaling:
Health checks (p. 341). If your health checks fail, check this topic for troubleshooting steps. This topic
will help you ﬁgure out what has gone wrong in your Auto Scaling group and give you suggestions on
how to ﬁx it.

Amazon EC2 Auto Scaling also monitors the health of instances that you launch into a warm pool using
Amazon EC2, Amazon EBS, or custom health checks. For more information, see Viewing health check
status and the reason for health check failures (p. 232).

Amazon EC2 Auto Scaling Capacity Rebalancing

You can configure Amazon EC2 Auto Scaling to monitor and automatically respond to changes that
affect the availability of your Spot Instances. Capacity Rebalancing helps you maintain workload
availability by proactively augmenting your fleet with a new Spot Instance before a running instance is
interrupted by EC2.

How it works
Amazon EC2 Auto Scaling is aware of EC2 instance rebalance recommendation notiﬁcations. The Amazon
EC2 Spot service emits these notiﬁcations when Spot Instances are at elevated risk of interruption.
When Capacity Rebalancing is enabled for an Auto Scaling group, Amazon EC2 Auto Scaling attempts
to proactively replace Spot Instances in the group that have received a rebalance recommendation,
providing the opportunity to rebalance your workload to new Spot Instances that are not at elevated risk
of interruption. This means that your workload can continue to process the work while Amazon EC2 Auto
Scaling launches a new Spot Instance before an existing instance is interrupted. You can also optionally
use a lifecycle hook to perform a custom action on instances before termination.

For more information about EC2 instance rebalance recommendations, see EC2 instance rebalance
recommendations in the Amazon EC2 User Guide for Linux Instances.

For more details and a walkthrough of the Capacity Rebalancing feature, see the blog post Proactively
manage Spot Instance lifecycle using the new Capacity Rebalancing feature for EC2 Auto Scaling on the
AWS Compute Blog.
Note
When Capacity Rebalancing is disabled, Amazon EC2 Auto Scaling replaces Spot Instances after
the Amazon EC2 Spot service interrupts the instances and their health check fails. Amazon EC2
always gives both an EC2 instance rebalance recommendation and a Spot two-minute instance
interruption notice before an instance is interrupted.

Contents
• Enabling Capacity Rebalancing (p. 264)
• Enabling Capacity Rebalancing (console) (p. 265)
• Enabling Capacity Rebalancing (AWS CLI) (p. 265)
• Adding a termination lifecycle hook (p. 268)

263
Amazon EC2 Auto Scaling User Guide
Enabling Capacity Rebalancing

Enabling Capacity Rebalancing

You can enable or disable Capacity Rebalancing at any time.

Considerations

The following considerations apply for this conﬁguration:

• We recommend that you configure your Auto Scaling group to use multiple instance types. This
provides the flexibility to launch instances in various Spot Instance pools within each Availability Zone,
as documented in Auto Scaling groups with multiple instance types and purchase options (p. 55).
• Your replacement Spot Instances may be at an elevated risk of interruption if you use the lowest-
price allocation strategy. This is because we will always launch instances in the lowest priced pool
that has available capacity at that moment, even if your replacement Spot Instances are likely to
be interrupted soon after being launched. To avoid an elevated risk of interruption, we strongly
recommend against using the lowest-price allocation strategy, and instead recommend the
capacity-optimized or capacity-optimized-prioritized allocation strategy. These
strategies ensure that replacement Spot Instances are launched in the most optimal Spot capacity
pools, and are therefore less likely to be interrupted in the near future.
• Whenever possible, you should create your Auto Scaling group in all Availability Zones within the
Region. This is to enable Amazon EC2 Auto Scaling to look at the free capacity in each Availability
Zone. If a launch fails in one Availability Zone, Amazon EC2 Auto Scaling keeps trying to launch Spot
Instances across the specified Availability Zones until it succeeds.
• Using Capacity Rebalancing, Amazon EC2 Auto Scaling behaves in the following way:

When launching a new instance, Amazon EC2 Auto Scaling waits until the new instance passes
its health check before it proceeds with terminating the old instance. When replacing more than
one instance, the termination of each old instance starts after the new instance has launched and
passed its health check. Because Amazon EC2 Auto Scaling attempts to launch new instances before
terminating old ones, being at or near the specified maximum capacity could impede or completely
halt rebalancing activities. To avoid this problem, Amazon EC2 Auto Scaling can temporarily exceed
the specified maximum capacity of a group during a rebalancing activity.
• If the new instances fail to launch or they launch but the health check fails, Amazon EC2 Auto
Scaling keeps trying to relaunch them. While it is trying to launch new instances, your old ones will
eventually be interrupted and forcibly terminated.
• If a scaling activity is in progress and your Auto Scaling group is below its new desired capacity,
Amazon EC2 Auto Scaling scales out first before terminating the old instances.
• You can configure a termination lifecycle hook for your Auto Scaling group when enabling Capacity
Rebalancing to attempt a graceful shut down of your application inside the instances that receive
the rebalance notification, before Amazon EC2 Auto Scaling terminates the instances. If you don't
configure a lifecycle hook, Amazon EC2 Auto Scaling starts terminating the old instances as soon as
the new instances pass their health check.
• Your application should be able to handle the possibility of a Spot Instance being interrupted early.
For example, when an instance begins termination, Amazon EC2 Auto Scaling waits for the instance
to terminate. If the Auto Scaling group is behind an Elastic Load Balancing load balancer, Amazon EC2
Auto Scaling waits for the instance to deregister from the load balancer before calling the termination
lifecycle hook (if configured). If the time to drain connections and complete lifecycle actions takes too
long, the instance might be interrupted while Amazon EC2 Auto Scaling is waiting for the instance to
terminate.
• It is also not always possible for Amazon EC2 to send the rebalance recommendation signal before the
two-minute Spot Instance interruption notice. In some cases, the rebalance recommendation signal
can arrive along with the two-minute interruption notice.
• In cases where an instance receives a final two-minute interruption notice, Amazon EC2 Auto Scaling
calls the termination lifecycle hook and attempts to launch a replacement immediately.

264
Amazon EC2 Auto Scaling User Guide
Enabling Capacity Rebalancing

Enabling Capacity Rebalancing (console)

You can enable or disable Capacity Rebalancing when you create or update an Auto Scaling group.

To enable Capacity Rebalancing for a new Auto Scaling group

Follow the instructions in Auto Scaling groups with multiple instance types and purchase options (p. 55)
to create a new Auto Scaling group. When you create an Auto Scaling group, in step 2 of the wizard,
you conﬁgure the instance purchase options and network settings. To specify additional settings for
your Auto Scaling group, including instance distribution settings, Spot allocation settings, Capacity
Rebalancing, and the instance types that Amazon EC2 Auto Scaling can launch, select Combine purchase
options and instance types.

Under the Instances distribution section, you can select whether or not to enable Capacity Rebalancing
by selecting or clearing the Capacity rebalance check box. This setting is enabled by default on Auto
Scaling groups created using the console when the Spot allocation strategy is set to Capacity optimized.

To enable Capacity Rebalancing for an existing Auto Scaling group

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens in the bottom part of the Auto Scaling groups page, showing information about
the group that's selected.
3. On the Details tab, choose Instance purchase options, Edit.
4. Under the Allocation strategies section, do the following:

• To enable Capacity Rebalancing, select the Capacity rebalance check box.

• To disable Capacity Rebalancing, clear the Capacity rebalance check box.
5. Choose Update.

Enabling Capacity Rebalancing (AWS CLI)

The following examples show how to use the AWS CLI to enable and disable Capacity Rebalancing.

265
Amazon EC2 Auto Scaling User Guide
Enabling Capacity Rebalancing

Use the create-auto-scaling-group or update-auto-scaling-group command with the following

parameter:

• --capacity-rebalance / --no-capacity-rebalance — Boolean value that indicates whether

Capacity Rebalancing is enabled.

Before you call the create-auto-scaling-group command, you need the name of a launch template that is
configured for use with an Auto Scaling group. For more information, see Creating a launch template for
an Auto Scaling group (p. 27).
Note
The following procedures show how to use a configuration file formatted in JSON or YAML. If
you use AWS CLI version 1, you must specify a JSON-formatted configuration file. If you use
AWS CLI version 2, you can specify a configuration file formatted in either YAML or JSON.

JSON

To create and conﬁgure a new Auto Scaling group

• Use the following create-auto-scaling-group command to create a new Auto Scaling group and
enable Capacity Rebalancing, referencing a JSON ﬁle as the sole parameter for your Auto Scaling
group.

aws autoscaling create-auto-scaling-group --cli-input-json file://~/config.json

If you don't already have a CLI configuration file that specifies a mixed instances policy (p. 55), create
one.

Add the following line to the top-level JSON object in the conﬁguration ﬁle.

{
"CapacityRebalance": true
}

The following is an example config.json ﬁle.

{
"AutoScalingGroupName": "my-asg",
"DesiredCapacity": 12,
"MinSize": 12,
"MaxSize": 15,
"CapacityRebalance": true,
"MixedInstancesPolicy": {
"InstancesDistribution": {
"OnDemandBaseCapacity": 0,
"OnDemandPercentageAboveBaseCapacity": 25,
"SpotAllocationStrategy": "capacity-optimized"
},
"LaunchTemplate": {
"LaunchTemplateSpecification": {
"LaunchTemplateName": "my-launch-template",
"Version": "$Default"
},
"Overrides": [
{
"InstanceType": "c5.large"
},
{
"InstanceType": "c5a.large"
},

266
Amazon EC2 Auto Scaling User Guide
Enabling Capacity Rebalancing

{
"InstanceType": "m5.large"
},
{
"InstanceType": "m5a.large"
},
{
"InstanceType": "c4.large"
},
{
"InstanceType": "m4.large"
},
{
"InstanceType": "c3.large"
},
{
"InstanceType": "m3.large"
}
]
}
},
"TargetGroupARNs": "arn:aws:elasticloadbalancing:us-
west-2:123456789012:targetgroup/my-alb-target-group/943f017f100becff",
"VPCZoneIdentifier": "subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782"
}

YAML

To create and conﬁgure a new Auto Scaling group

• Use the following create-auto-scaling-group command to create a new Auto Scaling group and
enable Capacity Rebalancing, referencing a YAML ﬁle as the sole parameter for your Auto Scaling
group.

aws autoscaling create-auto-scaling-group --cli-input-yaml file://~/config.yaml

Add the following line to your conﬁguration ﬁle formatted in YAML.

CapacityRebalance: true

The following is an example config.yaml ﬁle.

---
AutoScalingGroupName: my-asg
DesiredCapacity: 12
MinSize: 12
MaxSize: 15
CapacityRebalance: true
MixedInstancesPolicy:
InstancesDistribution:
OnDemandBaseCapacity: 0
OnDemandPercentageAboveBaseCapacity: 25
SpotAllocationStrategy: capacity-optimized
LaunchTemplate:
LaunchTemplateSpecification:
LaunchTemplateName: my-launch-template
Version: $Default
Overrides:
- InstanceType: c5.large
- InstanceType: c5a.large

267
Amazon EC2 Auto Scaling User Guide
Adding a termination lifecycle hook

- InstanceType: m5.large
- InstanceType: m5a.large
- InstanceType: c4.large
- InstanceType: m4.large
- InstanceType: c3.large
- InstanceType: m3.large
TargetGroupARNs:
- arn:aws:elasticloadbalancing:us-west-2:123456789012:targetgroup/my-alb-target-
group/943f017f100becff
VPCZoneIdentifier: subnet-5ea0c127,subnet-6194ea3b,subnet-c934b782

To enable Capacity Rebalancing for an existing Auto Scaling group

• Use the following update-auto-scaling-group command to enable Capacity Rebalancing.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-asg \

--capacity-rebalance

To verify that Capacity Rebalancing is enabled for an Auto Scaling group

• Use the following describe-auto-scaling-groups command to verify that Capacity Rebalancing is

enabled and to view the details.

aws autoscaling describe-auto-scaling-groups --auto-scaling-group-name my-asg

The following is an example response.

{
"AutoScalingGroups": [
{
"AutoScalingGroupName": "my-asg",
"AutoScalingGroupARN": "arn",
...
"CapacityRebalance": true
}
]
}

To disable Capacity Rebalancing

Use the update-auto-scaling-group command with the --no-capacity-rebalance option to disable

Capacity Rebalancing.

aws autoscaling update-auto-scaling-group --auto-scaling-group-name my-asg \

--no-capacity-rebalance

Adding a termination lifecycle hook

Consider conﬁguring a termination lifecycle hook when enabling Capacity Rebalancing so that you can
run code and perform custom actions on an instance before it is terminated.

Reasons you might use a termination lifecycle hook include:

• To upload system or application logs to Amazon Simple Storage Service (Amazon S3)
• For graceful shutdown of Amazon SQS workers

268
Amazon EC2 Auto Scaling User Guide
Monitoring with AWS Health Dashboard

• To complete deregistration from the Domain Name System (DNS)

If you don't have a termination lifecycle hook, use the following procedure to create one.

To add a termination lifecycle hook

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens in the bottom part of the Auto Scaling groups page, showing information about
the group that's selected.
3. On the Instance management tab, in Lifecycle hooks, choose Create lifecycle hook.
4. To deﬁne a lifecycle hook, do the following:

a. For Lifecycle hook name, specify a name for the lifecycle hook.
b. For Lifecycle transition, choose Instance terminate.
c. For Heartbeat timeout, specify the amount of time, in seconds, that you will have to complete
the lifecycle action, or until the timeout period ends. We recommend a value from 30 to 120
seconds, depending on how long you need to shut down your application.
d. For Default result, specify the action that the Auto Scaling group takes when the lifecycle hook
timeout elapses or if an unexpected failure occurs. Both ABANDON and CONTINUE allow the
instance to terminate.

• If you choose CONTINUE, the Auto Scaling group can proceed with any remaining actions,
such as other lifecycle hooks, before termination.
• If you choose ABANDON, the Auto Scaling group terminates the instances immediately.
e. (Optional) For Notification metadata, specify additional information that you want to include
anytime that Amazon EC2 Auto Scaling sends a message to an AWS Lambda function or another
target that you configure in step 6.
5. Choose Create.
6. (Optional) To add an action to your lifecycle hook, follow these steps (p. 207) to configure an AWS
Lambda function or another target. Otherwise, for an EC2 instance to run an action automatically,
you must configure it to run scripts. We recommend that you script your shutdown sequence to
be completed in under one to two minutes to ensure that there is enough time to complete tasks
before instance termination.

For more information, see Amazon EC2 Auto Scaling lifecycle hooks (p. 204).

AWS Health Dashboard notiﬁcations for Amazon

EC2 Auto Scaling
Your AWS Health Dashboard (PHD) provides support for notifications that come from Amazon EC2 Auto
Scaling. These notifications provide awareness and remediation guidance for resource performance or
availability issues that may affect your applications. Only events that are specific to missing security
groups and launch templates are currently available.

The AWS Health Dashboard is part of the AWS Health service. It requires no set up and can be viewed by
any user that is authenticated in your account. For more information, see Getting started with the AWS
Health Dashboard.

If you receive a message similar to the following messages, it should be treated as an alarm to take
action.

269
Amazon EC2 Auto Scaling User Guide
Monitoring with CloudWatch

Example: Auto Scaling group is not scaling out due to a missing security group

Hello,

At 2020-01-11 04:00 UTC, we detected an issue with your Auto Scaling group [ARN] in
AWS account 123456789012.

A security group associated with this Auto Scaling group cannot be found. Each time a
scale out operation is performed, it will be prevented until you make a change that
fixes the issue.

We recommend that you review and update your Auto Scaling group configuration to change
the launch template or launch configuration that depends on the unavailable security
group.

Sincerely,
Amazon Web Services

Example: Auto Scaling group is not scaling out due to a missing launch template

Hello,

At 2021-05-11 04:00 UTC, we detected an issue with your Auto Scaling group [ARN] in
AWS account 123456789012.

The launch template associated with this Auto Scaling group cannot be found. Each time
a scale out operation is performed, it will be prevented until you make a change that
fixes the issue.

We recommend that you review and update your Auto Scaling group configuration and
specify an existing launch template to use.

Sincerely,
Amazon Web Services

Monitoring CloudWatch metrics for your Auto

Scaling groups and instances
Metrics are the fundamental concept in CloudWatch. A metric represents a time-ordered set of data
points that are published to CloudWatch. Think of a metric as a variable to monitor, and the data points
as representing the values of that variable over time. You can use these metrics to verify that your
system is performing as expected.

Amazon EC2 Auto Scaling publishes data points to CloudWatch about your Auto Scaling groups. The
metrics are available at one-minute granularity at no additional charge, but you must enable them. By
doing this, you get continuous visibility into the operations of your Auto Scaling groups so that you can
quickly respond to changes in your workloads. You can enable and disable these metrics using the AWS
Management Console, AWS CLI, or an SDK.

Amazon EC2 publishes data points to CloudWatch that describe your Auto Scaling instances. The
interval for Amazon EC2 instance monitoring is configurable. You can choose between one-minute
and five-minute granularity. For more information, see Configuring monitoring for Auto Scaling
instances (p. 276).

Contents
• Enable Auto Scaling group metrics (console) (p. 271)

270
Amazon EC2 Auto Scaling User Guide
Enable Auto Scaling group metrics (console)

• Enable Auto Scaling group metrics (AWS CLI) (p. 271)

• Available metrics and dimensions (p. 272)
• Auto Scaling group metrics (p. 272)
• Dimensions for Auto Scaling group metrics (p. 274)
• Working with Amazon CloudWatch (p. 274)
• View CloudWatch metrics (p. 274)
• Create Amazon CloudWatch alarms (p. 275)
• Conﬁguring monitoring for Auto Scaling instances (p. 276)
• Enable detailed monitoring (console) (p. 276)
• Enable detailed monitoring (AWS CLI) (p. 276)
• Switching between basic and detailed monitoring (p. 277)
• Viewing monitoring graphs in the Amazon EC2 Auto Scaling console (p. 277)
• Graph metrics for your Auto Scaling groups (p. 278)

Enable Auto Scaling group metrics (console)

When you enable Auto Scaling group metrics, your Auto Scaling group sends sampled data to
CloudWatch every minute. There is no charge for enabling these metrics.

To enable group metrics

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens up in the bottom part of the page, showing information about the group that's
selected.
3. On the Monitoring tab, select the Auto Scaling group metrics collection, Enable check box located
at the top of the page under Auto Scaling.

To disable group metrics

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select your Auto Scaling group.
3. On the Monitoring tab, clear the Auto Scaling group metrics collection, Enable check box.

Enable Auto Scaling group metrics (AWS CLI)

To enable group metrics

Enable one or more group metrics using the enable-metrics-collection command. For example, the
following command enables the GroupDesiredCapacity metric.

aws autoscaling enable-metrics-collection --auto-scaling-group-name my-asg \

--metrics GroupDesiredCapacity --granularity "1Minute"

If you omit the --metrics option, all metrics are enabled.

aws autoscaling enable-metrics-collection --auto-scaling-group-name my-asg \

271
Amazon EC2 Auto Scaling User Guide
Available metrics and dimensions

--granularity "1Minute"

To disable group metrics

Use the disable-metrics-collection command. For example, the following command disables all Auto
Scaling group metrics.

aws autoscaling disable-metrics-collection --auto-scaling-group-name my-asg

Available metrics and dimensions

When enabled, the Auto Scaling group metrics and dimensions that Amazon EC2 Auto Scaling sends to
CloudWatch are listed below.
Note
CloudWatch group metrics are delivered on a best-effort basis. Data is not backfilled to fill gaps
in group metric history in rare cases where CloudWatch is experiencing a service disruption.

Auto Scaling group metrics

The AWS/AutoScaling namespace includes the following metrics.

Metric Description

GroupMinSize The minimum size of the Auto Scaling group.

Reporting criteria: Reported if metrics collection is enabled.

GroupMaxSize The maximum size of the Auto Scaling group.

Reporting criteria: Reported if metrics collection is enabled.

GroupDesiredCapacity The number of instances that the Auto Scaling group attempts to
maintain.

Reporting criteria: Reported if metrics collection is enabled.

GroupInServiceInstances The number of instances that are running as part of the Auto
Scaling group. This metric does not include instances that are
pending or terminating.

Reporting criteria: Reported if metrics collection is enabled.

GroupPendingInstances The number of instances that are pending. A pending instance is

not yet in service. This metric does not include instances that are in
service or terminating.

Reporting criteria: Reported if metrics collection is enabled.

GroupStandbyInstances The number of instances that are in a Standby state. Instances in

this state are still running but are not actively in service.

Reporting criteria: Reported if metrics collection is enabled.

GroupTerminatingInstances The number of instances that are in the process of terminating. This
metric does not include instances that are in service or pending.

Reporting criteria: Reported if metrics collection is enabled.

272
Amazon EC2 Auto Scaling User Guide
Available metrics and dimensions

Metric Description

GroupTotalInstances The total number of instances in the Auto Scaling group. This
metric identiﬁes the number of instances that are in service,
pending, and terminating.

Reporting criteria: Reported if metrics collection is enabled.

The AWS/AutoScaling namespace includes the following metrics for Auto Scaling groups that use the
instance weighting (p. 72) feature. If instance weighting is not applied, then the following metrics are
populated, but are equal to the metrics that are deﬁned in the preceding table.

Metric Description

GroupInServiceCapacity The number of capacity units that are running as part of the Auto
Scaling group.

Reporting criteria: Reported if metrics collection is enabled.

GroupPendingCapacity The number of capacity units that are pending.

Reporting criteria: Reported if metrics collection is enabled.

GroupStandbyCapacity The number of capacity units that are in a Standby state.

Reporting criteria: Reported if metrics collection is enabled.

GroupTerminatingCapacity The number of capacity units that are in the process of terminating.

Reporting criteria: Reported if metrics collection is enabled.

GroupTotalCapacity The total number of capacity units in the Auto Scaling group.

Reporting criteria: Reported if metrics collection is enabled.

The AWS/AutoScaling namespace includes the following metrics for Auto Scaling groups that use the
warm pools (p. 220) feature.

Metric Description

WarmPoolMinSize The minimum size of the warm pool.

Reporting criteria: Reported if metrics collection is enabled.

WarmPoolDesiredCapacity The amount of capacity that Amazon EC2 Auto Scaling attempts to
maintain in the warm pool.

This is equivalent to the maximum size of the Auto Scaling group

minus its desired capacity, or, if set, as the maximum prepared
capacity of the Auto Scaling group minus its desired capacity.

However, when the minimum size of the warm pool is equal to or

greater than the diﬀerence between the maximum size (or, if set,
the maximum prepared capacity) and the desired capacity of the
Auto Scaling group, then the warm pool desired capacity will be
equivalent to the WarmPoolMinSize.

273
Amazon EC2 Auto Scaling User Guide
Working with Amazon CloudWatch

Metric Description
Reporting criteria: Reported if metrics collection is enabled.

WarmPoolPendingCapacity The amount of capacity in the warm pool that is pending. This
metric does not include instances that are running, stopped, or
terminating.

Reporting criteria: Reported if metrics collection is enabled.

WarmPoolTerminatingCapacityThe amount of capacity in the warm pool that is in the process

of terminating. This metric does not include instances that are
running, stopped, or pending.

Reporting criteria: Reported if metrics collection is enabled.

WarmPoolWarmedCapacity The amount of capacity available to enter the Auto Scaling group
during scale out. This metric does not include instances that are
pending or terminating.

Reporting criteria: Reported if metrics collection is enabled.

WarmPoolTotalCapacity The total capacity of the warm pool, including instances that are
running, stopped, pending, or terminating.

Reporting criteria: Reported if metrics collection is enabled.

The desired capacity of the Auto Scaling group and the warm pool
GroupAndWarmPoolDesiredCapacity
combined.

Reporting criteria: Reported if metrics collection is enabled.

The total capacity of the Auto Scaling group and the warm pool
GroupAndWarmPoolTotalCapacity
combined. This includes instances that are running, stopped,
pending, terminating, or in service.

Reporting criteria: Reported if metrics collection is enabled.

Dimensions for Auto Scaling group metrics

To ﬁlter the metrics for your Auto Scaling group by group name, use the AutoScalingGroupName
dimension.

Working with Amazon CloudWatch

Contents
• View CloudWatch metrics (p. 274)
• Create Amazon CloudWatch alarms (p. 275)

View CloudWatch metrics

You can view your Auto Scaling group metrics using the CloudWatch console and the command line
tools.

To view metrics using the CloudWatch console

For more information, see Aggregating statistics by Auto Scaling group.

274
Amazon EC2 Auto Scaling User Guide
Working with Amazon CloudWatch

To view CloudWatch metrics (AWS CLI)

To view all metrics for all your Auto Scaling groups, use the following list-metrics command.

aws cloudwatch list-metrics --namespace "AWS/AutoScaling"

To view the metrics for a single Auto Scaling group, specify the AutoScalingGroupName dimension as
follows.

aws cloudwatch list-metrics --namespace "AWS/AutoScaling" --dimensions

Name=AutoScalingGroupName,Value=my-asg

To view a single metric for all your Auto Scaling groups, specify the name of the metric as follows.

aws cloudwatch list-metrics --namespace "AWS/AutoScaling" --metric-name

GroupDesiredCapacity

Create Amazon CloudWatch alarms

One purpose for monitoring metrics is to verify that your application is performing as expected. In
Amazon CloudWatch, you can create an alarm that sends a notiﬁcation when the value of a certain
metric is beyond what you consider an acceptable threshold.

Start by identifying the metric to monitor. For example, you can configure an alarm to watch over the
average CPU utilization of the EC2 instances in your Auto Scaling group. The action can be a notification
that is sent to you when the average CPU utilization of the group's instances breaches the threshold that
you specified for the consecutive periods you specified. For example, if the metric stays at or above 70
percent for 4 consecutive periods of 1 minute each.

For more information, see Using Amazon CloudWatch alarms in the Amazon CloudWatch User Guide.

To create a CloudWatch alarm for your Auto Scaling group

1. Open the CloudWatch console at https://console.aws.amazon.com/cloudwatch/.

2. If necessary, change the region. From the navigation bar, select the region where your Auto Scaling
group resides.
3. On the navigation pane, choose Alarms and then choose Create alarm.
4. Choose Select metric.
5. On the All metrics tab, select a metric as follows:

• To display only the metrics reported for your Auto Scaling groups, choose EC2, and then choose
By Auto Scaling Group. To view the metrics for a single Auto Scaling group, type its name in the
search ﬁeld.
• Select the row that contains the metric for the Auto Scaling group that you want to create an
alarm on.
• Choose Select metric. The Specify metric and conditions page appears, showing a graph and
other information about the metric.
6. For Period, choose the evaluation period for the alarm, for example, 1 minute. When evaluating the
alarm, each period is aggregated into one data point.
Note
A shorter period creates a more sensitive alarm.
7. Under Conditions, do the following:

275
Amazon EC2 Auto Scaling User Guide
Conﬁguring monitoring for Auto Scaling instances

• For Threshold type, choose Static.

• For Whenever metric is, specify whether you want the value of the metric to be greater than,
greater than or equal to, less than, or less than or equal to the threshold to trigger the alarm.
Then, under than, enter the threshold value that you want to trigger the alarm.
8. Under Additional conﬁguration, do the following:

• For Datapoints to alarm, enter the number of data points (evaluation periods) during which
the metric value must meet the threshold conditions to trigger the alarm. For example, two
consecutive periods of 5 minutes would take 10 minutes to trigger the alarm.
• For Missing data treatment, choose what you want the alarm to do if some data is missing. For
more information, see Configuring how CloudWatch alarms treat missing data in the Amazon
CloudWatch User Guide.
9. Choose Next.
10. Under Notification, you can choose or create the Amazon SNS topic you want to use to receive
notifications. Otherwise, you can remove the notification now and add one later when you are ready.
11. Choose Next.
12. Enter a name and, optionally, a description for the alarm, and then choose Next.
13. Choose Create Alarm.

Conﬁguring monitoring for Auto Scaling instances

Amazon EC2 can enable detailed monitoring when it is launching EC2 instances in your Auto Scaling
group. You conﬁgure monitoring for Auto Scaling instances using a launch template or launch
conﬁguration.

Monitoring is enabled whenever an instance is launched, either basic monitoring (ﬁve-minute

granularity) or detailed monitoring (one-minute granularity). For detailed monitoring, additional charges
apply. For more information, see Amazon CloudWatch pricing and Monitoring your instances using
CloudWatch in the Amazon EC2 User Guide for Linux Instances.

Enable detailed monitoring (console)

By default, basic monitoring is enabled when you use the AWS Management Console to create a launch
template or launch conﬁguration.

To enable detailed monitoring in a launch template

When you create the launch template using the AWS Management Console, in the Advanced details
section, for Detailed CloudWatch monitoring, choose Enable. Otherwise, basic monitoring is enabled.
For more information, see Conﬁguring advanced settings for your launch template (p. 31).

To enable detailed monitoring in a launch conﬁguration

When you create the launch configuration using the AWS Management Console, in the Additional
configuration section, select Enable EC2 instance detailed monitoring within CloudWatch. Otherwise,
basic monitoring is enabled. For more information, see Creating a launch configuration (p. 44).

Enable detailed monitoring (AWS CLI)

By default, basic monitoring is enabled when you create a launch template using the AWS CLI. Detailed
monitoring is enabled by default when you create a launch conﬁguration using the AWS CLI.

To enable detailed monitoring in a launch template

276
Amazon EC2 Auto Scaling User Guide
Viewing monitoring graphs in the
Amazon EC2 Auto Scaling console

For launch templates, use the create-launch-template command and pass a JSON ﬁle that contains
the information for creating the launch template. Set the monitoring attribute to "Monitoring":
{"Enabled":true} to enable detailed monitoring or "Monitoring":{"Enabled":false} to enable
basic monitoring.

To enable detailed monitoring in a launch conﬁguration

For launch conﬁgurations, use the create-launch-conﬁguration command with the --instance-
monitoring option. Set this option to true to enable detailed monitoring or false to enable basic
monitoring.

--instance-monitoring Enabled=true

Switching between basic and detailed monitoring

To change the type of monitoring enabled on new EC2 instances, update the launch template or update
the Auto Scaling group to use a new launch template or launch conﬁguration. Existing instances continue
to use the previously enabled monitoring type. To update all instances, terminate them so that they
are replaced by your Auto Scaling group or update instances individually using monitor-instances and
unmonitor-instances.
Note
With the instance refresh and maximum instance lifetime features, you can also replace all
instances in the Auto Scaling group to launch new instances that use the new settings. For more
information, see Replacing Auto Scaling instances (p. 117).

When you switch between basic and detailed monitoring:

If you have CloudWatch alarms associated with your Auto Scaling group, use the put-metric-alarm
command to update each alarm. Make each period match the monitoring type (300 seconds for basic
monitoring and 60 seconds for detailed monitoring). If you change from detailed monitoring to basic
monitoring but do not update your alarms to match the five-minute period, they continue to check for
statistics every minute. They might find no data available for as many as four out of every five periods.

Viewing monitoring graphs in the Amazon EC2 Auto

Scaling console
In the Amazon EC2 Auto Scaling section of the Amazon EC2 console, you can monitor minute-by-minute
progress of individual Auto Scaling groups using CloudWatch metrics.

You can monitor the following types of metrics:

• Auto Scaling metrics – Auto Scaling metrics are turned on only when you enable them. For more
information, see Enable Auto Scaling group metrics (console) (p. 271). When Auto Scaling metrics
are enabled, the monitoring graphs show data published at one-minute granularity for Auto Scaling
metrics.
• EC2 metrics – If detailed monitoring is enabled, the monitoring graphs show data published at one-
minute granularity for EC2 metrics. For more information, see Conﬁguring monitoring for Auto Scaling
instances (p. 276).

To view monitoring graphs using the Amazon EC2 Auto Scaling console

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to the Auto Scaling group that you want to view metrics for.

277
Amazon EC2 Auto Scaling User Guide
Viewing monitoring graphs in the
Amazon EC2 Auto Scaling console

A split pane opens up in the bottom part of the Auto Scaling groups page.
3. Choose the Monitoring tab.

Amazon EC2 Auto Scaling displays monitoring graphs for Auto Scaling metrics.
4. To view monitoring graphs of Amazon EC2 aggregate data for all instances in the group, choose EC2.

Graph actions

• Hover on a data point to view a data pop-up for a specific time in UTC.
• To enlarge a graph, choose Enlarge from the menu tool (the three vertical dots) in the upper right of
the graph. Alternatively, choose the maximize icon at the top of the graph.
• Adjust the time period for data displayed in the graph by selecting one of the predefined time period
values. If the graph is enlarged, you can choose Custom to define your own time period.
• Choose Refresh from the menu tool to update the data in a graph.
• Drag your cursor over the graph data to select a specific range. You can then choose Apply time range
in the menu tool.
• Choose View logs from the menu tool to view associated log streams (if any) in the CloudWatch
console.
• To view a graph in CloudWatch, choose View in metrics from the menu tool. This takes you to
the CloudWatch page for that graph. There, you can view more information or access historical
information to gain a better understanding of how your Auto Scaling group changed over an extended
period.

Graph metrics for your Auto Scaling groups

After you create an Auto Scaling group, you can open the Amazon EC2 Auto Scaling console and view the
monitoring graphs for the group on the Monitoring tab.

In the Auto Scaling section, the graph metrics include the following overall metrics. These metrics
provide measurements that can be indicators of a potential issue, such as number of terminating
instances or number of pending instances.

• Minimum Group Size (based on GroupMinSize)

• Maximum Group Size (based on GroupMaxSize)
• Desired Capacity (based on GroupDesiredCapacity)
• In Service Instances (based on GroupInServiceInstances)
• Pending Instances (based on GroupPendingInstances)
• Standby Instances (based on GroupStandbyInstances)
• Terminating Instances (based on GroupTerminatingInstances)
• Total Instances (based on GroupTotalInstances)

In the EC2 section, you can ﬁnd the following graph metrics based on key performance metrics for your
Amazon EC2 instances. These EC2 metrics are an aggregate of metrics for all instances in the group.

• CPU Utilization (based on CPUUtilization)

• Disk Reads (based on DiskReadBytes)
• Disk Read Operations (based on DiskReadOps)
• Disk Writes (based on DiskWriteBytes)
• Disk Write Operations (based on DiskWriteOps)

278
Amazon EC2 Auto Scaling User Guide
Logging API calls with AWS CloudTrail

• Network In (based on NetworkIn)

• Network Out (based on NetworkOut)
• Status Check Failed (Any) (based on StatusCheckFailed)
• Status Check Failed (Instance) (based on StatusCheckFailed_Instance)
• Status Check Failed (System) (based on StatusCheckFailed_System)

Note
For more information about the data source for the EC2 graph metrics, see List the available
CloudWatch metrics for your instances in the Amazon EC2 User Guide for Linux Instances.
To view graph metrics for individual instances, see Graph metrics for your instances in the
Amazon EC2 User Guide for Linux Instances.

You can use the next set of Auto Scaling graph metrics to measure speciﬁc features of speciﬁc groups.

The following metric data is available for groups where instances have weights that deﬁne how many
units each instance contributes to the desired capacity of the group:

• In Service Capacity Units (based on GroupInServiceCapacity)

• Pending Capacity Units (based on GroupPendingCapacity)
• Standby Capacity Units (based on GroupStandbyCapacity)
• Terminating Capacity Units (based on GroupTerminatingCapacity)
• Total Capacity Units (based on GroupTotalCapacity)

The following metric data is available if the group uses the warm pool (p. 220) feature:

• Warm Pool Minimum Size (based on WarmPoolMinSize)

• Warm Pool Desired Capacity (based on WarmPoolDesiredCapacity)
• Warm Pool Pending Capacity Units (based on WarmPoolPendingCapacity)
• Warm Pool Terminating Capacity Units (based on WarmPoolTerminatingCapacity)
• Warm Pool Warmed Capacity Units (based on WarmPoolWarmedCapacity)
• Warm Pool Total Capacity Units Launched (based on WarmPoolTotalCapacity)
• Group and Warm Pool Desired Capacity (based on GroupAndWarmPoolDesiredCapacity)
• Group and Warm Pool Total Capacity Units Launched (based on
GroupAndWarmPoolTotalCapacity)

Logging Amazon EC2 Auto Scaling API calls with

AWS CloudTrail
Amazon EC2 Auto Scaling is integrated with AWS CloudTrail, a service that provides a record of actions
taken by a user, role, or a service using Amazon EC2 Auto Scaling. CloudTrail captures all API calls for
Amazon EC2 Auto Scaling as events. The calls captured include calls from the Amazon EC2 Auto Scaling
console and code calls to the Amazon EC2 Auto Scaling API.

If you create a trail, you can enable continuous delivery of CloudTrail events to an Amazon S3 bucket,
including events for Amazon EC2 Auto Scaling. If you don't conﬁgure a trail, you can still view the most
recent events in the CloudTrail console in Event history. Using the information collected by CloudTrail,
you can determine the request that was made to Amazon EC2 Auto Scaling, the IP address from which
the request was made, who made the request, when it was made, and additional details.

To learn more about CloudTrail, see the AWS CloudTrail User Guide.

279
Amazon EC2 Auto Scaling User Guide
Amazon EC2 Auto Scaling information in CloudTrail

Amazon EC2 Auto Scaling information in CloudTrail

CloudTrail is enabled on your Amazon Web Services account when you create the account. When activity
occurs in Amazon EC2 Auto Scaling, that activity is recorded in a CloudTrail event along with other
Amazon Web Services events in Event history. You can view, search, and download recent events in your
Amazon Web Services account. For more information, see Viewing events with CloudTrail event history.

For an ongoing record of events in your Amazon Web Services account, including events for Amazon
EC2 Auto Scaling, create a trail. A trail enables CloudTrail to deliver log files to an Amazon S3 bucket. By
default, when you create a trail in the console, the trail applies to all Regions. The trail logs events from
all Regions in the Amazon Web Services partition and delivers the log files to the Amazon S3 bucket that
you specify. Additionally, you can configure other Amazon Web Services to further analyze and act upon
the event data collected in CloudTrail logs. For more information, see the following:

• Overview for creating a trail

• CloudTrail supported services and integrations
• Configuring Amazon SNS notifications for CloudTrail
• Receiving CloudTrail log files from multiple regions and Receiving CloudTrail log files from multiple
accounts

All Amazon EC2 Auto Scaling actions are logged by CloudTrail and are documented in the
Amazon EC2 Auto Scaling API Reference. For example, calls to the CreateLaunchConﬁguration,
DescribeAutoScalingGroup, and UpdateAutoScalingGroup actions generate entries in the CloudTrail
log ﬁles.

Every event or log entry contains information about who generated the request. The identity
information helps you determine the following:

• Whether the request was made with root or AWS Identity and Access Management (IAM) user
credentials.
• Whether the request was made with temporary security credentials for a role or federated user.
• Whether the request was made by another service.

For more information, see the CloudTrail userIdentity element.

Understanding Amazon EC2 Auto Scaling log ﬁle

entries
A trail is a configuration that enables delivery of events as log files to an Amazon S3 bucket that you
specify. CloudTrail log files contain one or more log entries. An event represents a single request from
any source and includes information about the requested action, the date and time of the action, request
parameters, and so on. CloudTrail log files aren't an ordered stack trace of the public API calls, so they
don't appear in any specific order.

The following example shows a CloudTrail log entry that demonstrates the CreateLaunchConﬁguration
action.

{
"eventVersion": "1.05",
"userIdentity": {
"type": "Root",
"principalId": "123456789012",
"arn": "arn:aws:iam::123456789012:root",

280
Amazon EC2 Auto Scaling User Guide
Monitoring with Amazon SNS notiﬁcations

"accountId": "123456789012",
"accessKeyId": "AKIAIOSFODNN7EXAMPLE",
"sessionContext": {
"attributes": {
"mfaAuthenticated": "false",
"creationDate": "2018-08-21T17:05:42Z"
}
}
},
"eventTime": "2018-08-21T17:07:49Z",
"eventSource": "autoscaling.amazonaws.com",
"eventName": "CreateLaunchConfiguration",
"awsRegion": "us-west-2",
"sourceIPAddress": "192.0.2.0",
"userAgent": "Coral/Jakarta",
"requestParameters": {
"ebsOptimized": false,
"instanceMonitoring": {
"enabled": false
},
"instanceType": "t2.micro",
"keyName": "EC2-key-pair-oregon",
"blockDeviceMappings": [
{
"deviceName": "/dev/xvda",
"ebs": {
"deleteOnTermination": true,
"volumeSize": 8,
"snapshotId": "snap-01676e0a2c3c7de9e",
"volumeType": "gp2"
}
}
],
"launchConfigurationName": "launch_configuration_1",
"imageId": "ami-6cd6f714d79675a5",
"securityGroups": [
"sg-00c429965fd921483"
]
},
"responseElements": null,
"requestID": "0737e2ea-fb2d-11e3-bfd8-99133058e7bb",
"eventID": "3fcfb182-98f8-4744-bd45-b38835ab61cb",
"eventType": "AwsApiCall",
"recipientAccountId": "123456789012"
}

Getting Amazon SNS notiﬁcations when your Auto

Scaling group scales
You can be notified when Amazon EC2 Auto Scaling is launching or terminating the EC2 instances in your
Auto Scaling group. You manage notifications using Amazon Simple Notification Service (Amazon SNS).

Amazon SNS coordinates and manages the delivery or sending of notifications to subscribing clients
or endpoints. Amazon SNS offers a variety of notification options, including the ability to deliver
notifications as HTTP or HTTPS POST, email (SMTP, either plaintext or in JSON format), or as a message
posted to an Amazon SQS queue, which enables you to handle these notifications programmatically. For
more information, see Amazon Simple Notification Service Developer Guide.

For example, if you conﬁgure your Auto Scaling group to use the autoscaling:
EC2_INSTANCE_TERMINATE notiﬁcation type, and your Auto Scaling group terminates an instance,

281
Amazon EC2 Auto Scaling User Guide
SNS notiﬁcations

it sends an email notiﬁcation. This email contains the details of the terminated instance, such as the
instance ID and the reason that the instance was terminated.

Notiﬁcations are useful for designing event-driven applications. If you use notiﬁcations to check
that a resource enters a desired state, you can eliminate polling, and you won't encounter the
RequestLimitExceeded error that sometimes results from polling.

AWS provides various tools that you can use to send notifications. Alternatively, you can use EventBridge
and Amazon SNS to send notifications when your Auto Scaling groups launch or terminate instances.
In EventBridge, the rule describes which events you're notified about. In Amazon SNS, the topic
describes what kind of notification you receive. Using this option, you can decide if certain events should
trigger a Lambda function instead. For more information, see Using Amazon EC2 Auto Scaling with
EventBridge (p. 285).

Contents
• SNS notifications (p. 282)
• Configuring Amazon SNS notifications for Amazon EC2 Auto Scaling (p. 283)
• Create an Amazon SNS topic (p. 283)
• Subscribe to the Amazon SNS topic (p. 283)
• Confirm your Amazon SNS subscription (p. 283)
• Configure your Auto Scaling group to send notifications (p. 283)
• Test the notification (p. 284)
• Delete the notification configuration (p. 284)

SNS notiﬁcations
Amazon EC2 Auto Scaling supports sending Amazon SNS notiﬁcations when the following events occur.

Event Description

autoscaling:EC2_INSTANCE_LAUNCH Successful instance launch

autoscaling:EC2_INSTANCE_LAUNCH_ERROR Failed instance launch

autoscaling:EC2_INSTANCE_TERMINATE Successful instance termination

autoscaling:EC2_INSTANCE_TERMINATE_ERRORFailed instance termination

The message includes the following information:

• Event — The event.

• AccountId — The Amazon Web Services account ID.
• AutoScalingGroupName — The name of the Auto Scaling group.
• AutoScalingGroupARN — The ARN of the Auto Scaling group.
• EC2InstanceId — The ID of the EC2 instance.

For example:

Service: AWS Auto Scaling

Time: 2016-09-30T19:00:36.414Z
RequestId: 4e6156f4-a9e2-4bda-a7fd-33f2ae528958
Event: autoscaling:EC2_INSTANCE_LAUNCH

282
Amazon EC2 Auto Scaling User Guide
Conﬁguring Amazon SNS notiﬁcations
for Amazon EC2 Auto Scaling

AccountId: 123456789012
AutoScalingGroupName: my-asg
AutoScalingGroupARN: arn:aws:autoscaling:region:123456789012:autoScalingGroup...
ActivityId: 4e6156f4-a9e2-4bda-a7fd-33f2ae528958
Description: Launching a new EC2 instance: i-0598c7d356eba48d7
Cause: At 2016-09-30T18:59:38Z a user request update of AutoScalingGroup constraints to ...
StartTime: 2016-09-30T19:00:04.445Z
EndTime: 2016-09-30T19:00:36.414Z
StatusCode: InProgress
StatusMessage:
Progress: 50
EC2InstanceId: i-0598c7d356eba48d7
Details: {"Subnet ID":"subnet-id","Availability Zone":"zone"}

Conﬁguring Amazon SNS notiﬁcations for Amazon

EC2 Auto Scaling
To use Amazon SNS to send email notiﬁcations, you must ﬁrst create a topic and then subscribe your
email addresses to the topic.

Create an Amazon SNS topic

An SNS topic is a logical access point, a communication channel your Auto Scaling group uses to send the
notiﬁcations. You create a topic by specifying a name for your topic.

When you create a topic name, the name must meet the following requirements:

• Between 1 and 256 characters long

• Contain uppercase and lowercase ASCII letters, numbers, underscores, or hyphens

For more information, see Creating an Amazon SNS topic in the Amazon Simple Notiﬁcation Service
Developer Guide.

Subscribe to the Amazon SNS topic

For more information, see Subscribing to an Amazon SNS topic in the Amazon Simple Notiﬁcation Service
Developer Guide.

Conﬁrm your Amazon SNS subscription

Amazon SNS sends a conﬁrmation email to the email address you speciﬁed in the previous step.

Make sure that you open the email from AWS Notiﬁcations and choose the link to conﬁrm the
subscription before you continue with the next step.

You will receive an acknowledgment message from AWS. Amazon SNS is now configured to receive
notifications and send the notification as an email to the email address that you specified.

Conﬁgure your Auto Scaling group to send notiﬁcations

You can configure your Auto Scaling group to send notifications to Amazon SNS when a scaling event,
such as launching instances or terminating instances, takes place. Amazon SNS sends a notification with
information about the instances to the email address that you specified.

283
Amazon EC2 Auto Scaling User Guide
Conﬁguring Amazon SNS notiﬁcations
for Amazon EC2 Auto Scaling

To conﬁgure Amazon SNS notiﬁcations for your Auto Scaling group (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens up in the bottom part of the page, showing information about the group that's
selected.
3. On the Activity tab, choose Activity notifications, Create notification.
4. On the Create notifications pane, do the following:

a. For SNS Topic, select your SNS topic.

b. For Event types, select the events to send the notiﬁcations.
c. Choose Create.

To conﬁgure Amazon SNS notiﬁcations for your Auto Scaling group (AWS CLI)

Use the following put-notiﬁcation-conﬁguration command.

aws autoscaling put-notification-configuration --auto-scaling-group-name my-

asg --topic-arn arn --notification-types "autoscaling:EC2_INSTANCE_LAUNCH"
"autoscaling:EC2_INSTANCE_TERMINATE"

Test the notiﬁcation

To generate a notiﬁcation for a launch event, update the Auto Scaling group by increasing the desired
capacity of the Auto Scaling group by 1. You receive a notiﬁcation within a few minutes after instance
launch.

To change the desired capacity (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select the check box next to your Auto Scaling group.

A split pane opens up in the bottom part of the Auto Scaling groups page, showing information
about the group that's selected.
3. On the Details tab, choose Group details, Edit.
4. For Desired capacity, increase the current value by 1. If this value exceeds Maximum capacity, you
must also increase the value of Maximum capacity by 1.
5. Choose Update.
6. After a few minutes, you'll receive notiﬁcation for the event. If you do not need the additional
instance that you launched for this test, you can decrease Desired capacity by 1. After a few
minutes, you'll receive notiﬁcation for the event.

Delete the notiﬁcation conﬁguration

You can delete your Amazon EC2 Auto Scaling notiﬁcation conﬁguration if it is no longer being used.

To delete Amazon EC2 Auto Scaling notiﬁcation conﬁguration (console)

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. Select your Auto Scaling group.
3. On the Activity tab, select the check box next to the notiﬁcation you want to delete and then
choose Actions, Delete.

284
Amazon EC2 Auto Scaling User Guide
Using EventBridge

To delete Amazon EC2 Auto Scaling notiﬁcation conﬁguration (AWS CLI)

Use the following delete-notiﬁcation-conﬁguration command.

aws autoscaling delete-notification-configuration --auto-scaling-group-name my-asg --topic-

arn arn

For information about deleting the Amazon SNS topic and all subscriptions associated with your Auto
Scaling group, see Deleting an Amazon SNS subscription and topic in the Amazon Simple Notiﬁcation
Service Developer Guide.

Using Amazon EC2 Auto Scaling with EventBridge

Amazon EventBridge, formerly called CloudWatch Events, helps you set up event-driven rules that
monitor resources and initiate target actions that use other AWS services.

Events from Amazon EC2 Auto Scaling are delivered to EventBridge in near real time. You can establish
EventBridge rules that trigger programmatic actions and notifications in response to a variety of these
events. For example, while instances are in the process of launching or terminating, you can trigger
an AWS Lambda function to perform a preconfigured task. Or, you can trigger notifications to an
Amazon SNS topic to monitor the progress of an instance refresh and to perform validations at specific
checkpoints.

In addition to invoking Lambda functions and notifying Amazon SNS topics, EventBridge supports other
types of targets and actions, such as relaying events to Amazon Kinesis streams, activating AWS Step
Functions state machines, and invoking the AWS Systems Manager run command. For information about
supported targets, see Amazon EventBridge targets in the Amazon EventBridge User Guide.

For more information about EventBridge, see Getting started with Amazon EventBridge in the Amazon
EventBridge User Guide. Note that you can also create rules that trigger on Amazon EC2 Auto Scaling API
calls. For more information, see Creating an EventBridge rule that triggers on an AWS API call using AWS
CloudTrail in the Amazon EventBridge User Guide.

Contents
• Auto Scaling events (p. 285)
• Using AWS Lambda to handle events (p. 291)
• See also (p. 293)

Auto Scaling events

The following are example events from Amazon EC2 Auto Scaling. Events are emitted on a best eﬀort
basis.

For examples of the events delivered from Amazon EC2 Auto Scaling to EventBridge when you use a
warm pool, see Warm pool events (p. 227).

For an example of the event for a Spot Instance interruption, see Spot Instance interruption notices in
the Amazon EC2 User Guide for Linux Instances.

Events
• EC2 Instance-launch Lifecycle Action (p. 286)
• EC2 Instance Launch Successful (p. 286)
• EC2 Instance Launch Unsuccessful (p. 287)
• EC2 Instance-terminate Lifecycle Action (p. 287)

285
Amazon EC2 Auto Scaling User Guide
Auto Scaling events

• EC2 Instance Terminate Successful (p. 288)

• EC2 Instance Terminate Unsuccessful (p. 288)
• EC2 Auto Scaling Instance Refresh Checkpoint Reached (p. 289)
• EC2 Auto Scaling Instance Refresh Started (p. 289)
• EC2 Auto Scaling Instance Refresh Succeeded (p. 290)
• EC2 Auto Scaling Instance Refresh Failed (p. 290)
• EC2 Auto Scaling Instance Refresh Cancelled (p. 291)

EC2 Instance-launch Lifecycle Action

Amazon EC2 Auto Scaling moved an instance to a Pending:Wait state due to a lifecycle hook.

Event Data

The following is example data for this event.

{
"version": "0",
"id": "12345678-1234-1234-1234-123456789012",
"detail-type": "EC2 Instance-launch Lifecycle Action",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "yyyy-mm-ddThh:mm:ssZ",
"region": "us-west-2",
"resources": [
"auto-scaling-group-arn"
],
"detail": {
"LifecycleActionToken": "87654321-4321-4321-4321-210987654321",
"AutoScalingGroupName": "my-asg",
"LifecycleHookName": "my-lifecycle-hook",
"EC2InstanceId": "i-1234567890abcdef0",
"LifecycleTransition": "autoscaling:EC2_INSTANCE_LAUNCHING",
"NotificationMetadata": "additional-info"
}
}

EC2 Instance Launch Successful

Amazon EC2 Auto Scaling successfully launched an instance.

Event Data

The following is example data for this event.

{
"version": "0",
"id": "12345678-1234-1234-1234-123456789012",
"detail-type": "EC2 Instance Launch Successful",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "yyyy-mm-ddThh:mm:ssZ",
"region": "us-west-2",
"resources": [
"auto-scaling-group-arn",
"instance-arn"
],
"detail": {
"StatusCode": "InProgress",

286
Amazon EC2 Auto Scaling User Guide
Auto Scaling events

"Description": "Launching a new EC2 instance: i-12345678",

"AutoScalingGroupName": "my-auto-scaling-group",
"ActivityId": "87654321-4321-4321-4321-210987654321",
"Details": {
"Availability Zone": "us-west-2b",
"Subnet ID": "subnet-12345678"
},
"RequestId": "12345678-1234-1234-1234-123456789012",
"StatusMessage": "",
"EndTime": "yyyy-mm-ddThh:mm:ssZ",
"EC2InstanceId": "i-1234567890abcdef0",
"StartTime": "yyyy-mm-ddThh:mm:ssZ",
"Cause": "description-text"
}
}

EC2 Instance Launch Unsuccessful

Amazon EC2 Auto Scaling failed to launch an instance.

Event Data

The following is example data for this event.

{
"version": "0",
"id": "12345678-1234-1234-1234-123456789012",
"detail-type": "EC2 Instance Launch Unsuccessful",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "yyyy-mm-ddThh:mm:ssZ",
"region": "us-west-2",
"resources": [
"auto-scaling-group-arn",
"instance-arn"
],
"detail": {
"StatusCode": "Failed",
"AutoScalingGroupName": "my-auto-scaling-group",
"ActivityId": "87654321-4321-4321-4321-210987654321",
"Details": {
"Availability Zone": "us-west-2b",
"Subnet ID": "subnet-12345678"
},
"RequestId": "12345678-1234-1234-1234-123456789012",
"StatusMessage": "message-text",
"EndTime": "yyyy-mm-ddThh:mm:ssZ",
"EC2InstanceId": "i-1234567890abcdef0",
"StartTime": "yyyy-mm-ddThh:mm:ssZ",
"Cause": "description-text"
}
}

EC2 Instance-terminate Lifecycle Action

Amazon EC2 Auto Scaling moved an instance to a Terminating:Wait state due to a lifecycle hook.

Event Data

The following is example data for this event.

287
Amazon EC2 Auto Scaling User Guide
Auto Scaling events

"version": "0",
"id": "12345678-1234-1234-1234-123456789012",
"detail-type": "EC2 Instance-terminate Lifecycle Action",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "yyyy-mm-ddThh:mm:ssZ",
"region": "us-west-2",
"resources": [
"auto-scaling-group-arn"
],
"detail": {
"LifecycleActionToken":"87654321-4321-4321-4321-210987654321",
"AutoScalingGroupName":"my-asg",
"LifecycleHookName":"my-lifecycle-hook",
"EC2InstanceId":"i-1234567890abcdef0",
"LifecycleTransition":"autoscaling:EC2_INSTANCE_TERMINATING",
"NotificationMetadata":"additional-info"
}
}

EC2 Instance Terminate Successful

Amazon EC2 Auto Scaling successfully terminated an instance.

Event Data

The following is example data for this event.

{
"version": "0",
"id": "12345678-1234-1234-1234-123456789012",
"detail-type": "EC2 Instance Terminate Successful",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "yyyy-mm-ddThh:mm:ssZ",
"region": "us-west-2",
"resources": [
"auto-scaling-group-arn",
"instance-arn"
],
"detail": {
"StatusCode": "InProgress",
"Description": "Terminating EC2 instance: i-12345678",
"AutoScalingGroupName": "my-auto-scaling-group",
"ActivityId": "87654321-4321-4321-4321-210987654321",
"Details": {
"Availability Zone": "us-west-2b",
"Subnet ID": "subnet-12345678"
},
"RequestId": "12345678-1234-1234-1234-123456789012",
"StatusMessage": "",
"EndTime": "yyyy-mm-ddThh:mm:ssZ",
"EC2InstanceId": "i-1234567890abcdef0",
"StartTime": "yyyy-mm-ddThh:mm:ssZ",
"Cause": "description-text"
}
}

EC2 Instance Terminate Unsuccessful

Amazon EC2 Auto Scaling failed to terminate an instance.

Event Data

288
Amazon EC2 Auto Scaling User Guide
Auto Scaling events

The following is example data for this event.

{
"version": "0",
"id": "12345678-1234-1234-1234-123456789012",
"detail-type": "EC2 Instance Terminate Unsuccessful",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "yyyy-mm-ddThh:mm:ssZ",
"region": "us-west-2",
"resources": [
"auto-scaling-group-arn",
"instance-arn"
],
"detail": {
"StatusCode": "Failed",
"AutoScalingGroupName": "my-auto-scaling-group",
"ActivityId": "87654321-4321-4321-4321-210987654321",
"Details": {
"Availability Zone": "us-west-2b",
"Subnet ID": "subnet-12345678"
},
"RequestId": "12345678-1234-1234-1234-123456789012",
"StatusMessage": "message-text",
"EndTime": "yyyy-mm-ddThh:mm:ssZ",
"EC2InstanceId": "i-1234567890abcdef0",
"StartTime": "yyyy-mm-ddThh:mm:ssZ",
"Cause": "description-text"
}
}

EC2 Auto Scaling Instance Refresh Checkpoint Reached

During an instance refresh, Amazon EC2 Auto Scaling emits events when the number of instances that
have been replaced reaches the percentage threshold deﬁned for the checkpoint.

Event Data

The following is example data for this event.

{
"version": "0",
"id": "12345678-1234-1234-1234-123456789012",
"detail-type": "EC2 Auto Scaling Instance Refresh Checkpoint Reached",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "yyyy-mm-ddThh:mm:ssZ",
"region": "us-west-2",
"resources": [
"auto-scaling-group-arn"
],
"detail": {
"InstanceRefreshId": "ab00cf8f-9126-4f3c-8010-dbb8cad6fb86",
"AutoScalingGroupName": "my-auto-scaling-group",
"CheckpointPercentage": "50",
"CheckpointDelay": "300"
}
}

EC2 Auto Scaling Instance Refresh Started

Amazon EC2 Auto Scaling emits events when the status of an instance refresh changes to InProgress.

289
Amazon EC2 Auto Scaling User Guide
Auto Scaling events

Event Data

The following is example data for this event.

{
"version": "0",
"id": "12345678-1234-1234-1234-123456789012",
"detail-type": "EC2 Auto Scaling Instance Refresh Started",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "yyyy-mm-ddThh:mm:ssZ",
"region": "us-west-2",
"resources": [
"auto-scaling-group-arn"
],
"detail": {
"InstanceRefreshId": "c613620e-07e2-4ed2-a9e2-ef8258911ade",
"AutoScalingGroupName": "my-auto-scaling-group"
}
}

EC2 Auto Scaling Instance Refresh Succeeded

Amazon EC2 Auto Scaling emits events when the status of an instance refresh changes to Succeeded.

Event Data

The following is example data for this event.

{
"version": "0",
"id": "12345678-1234-1234-1234-123456789012",
"detail-type": "EC2 Auto Scaling Instance Refresh Succeeded",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "yyyy-mm-ddThh:mm:ssZ",
"region": "us-west-2",
"resources": [
"auto-scaling-group-arn"
],
"detail": {
"InstanceRefreshId": "c613620e-07e2-4ed2-a9e2-ef8258911ade",
"AutoScalingGroupName": "my-auto-scaling-group"
}
}

EC2 Auto Scaling Instance Refresh Failed

Amazon EC2 Auto Scaling emits events when the status of an instance refresh changes to Failed.

Event Data

The following is example data for this event.

{
"version": "0",
"id": "12345678-1234-1234-1234-123456789012",
"detail-type": "EC2 Auto Scaling Instance Refresh Failed",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "yyyy-mm-ddThh:mm:ssZ",

290
Amazon EC2 Auto Scaling User Guide
Using AWS Lambda to handle events

"region": "us-west-2",
"resources": [
"auto-scaling-group-arn"
],
"detail": {
"InstanceRefreshId": "c613620e-07e2-4ed2-a9e2-ef8258911ade",
"AutoScalingGroupName": "my-auto-scaling-group"
}
}

EC2 Auto Scaling Instance Refresh Cancelled

Amazon EC2 Auto Scaling emits events when the status of an instance refresh changes to Cancelled.

Event Data

The following is example data for this event.

{
"version": "0",
"id": "12345678-1234-1234-1234-123456789012",
"detail-type": "EC2 Auto Scaling Instance Refresh Cancelled",
"source": "aws.autoscaling",
"account": "123456789012",
"time": "yyyy-mm-ddThh:mm:ssZ",
"region": "us-west-2",
"resources": [
"auto-scaling-group-arn"
],
"detail": {
"InstanceRefreshId": "c613620e-07e2-4ed2-a9e2-ef8258911ade",
"AutoScalingGroupName": "my-auto-scaling-group"
}
}

Using AWS Lambda to handle events

AWS Lambda is a compute service that you can use to run code without provisioning or managing
servers. You package your code and upload it to AWS Lambda as a Lambda function. AWS Lambda
then runs the function when the function is invoked. A function can be invoked manually by you,
automatically in response to events, or in response to requests from applications or services.

To help you get started with Lambda, follow the procedure below. This section shows you how to create
a Lambda function and an EventBridge rule causing all instance launch and terminate events to be
logged in Amazon CloudWatch Logs.

Create a Lambda function

Use the following procedure to create a Lambda function using the hello-world blueprint to serve as the
target for events.

To create a Lambda function

1. Open the AWS Lambda console at https://console.aws.amazon.com/lambda/.

2. If you are new to Lambda, you see a welcome page; choose Get Started Now; otherwise, choose
Create a Lambda function.
3. On the Select blueprint page, enter hello-world for Filter, and then select the hello-world
blueprint.

291
Amazon EC2 Auto Scaling User Guide
Using AWS Lambda to handle events

4. On the Conﬁgure triggers page, choose Next.

5. On the Conﬁgure function page, do the following:

a. Enter a name and description for the Lambda function.

b. Edit the code for the Lambda function. For example, the following code simply logs the event.

console.log('Loading function');

exports.handler = function(event, context) {

console.log("AutoScalingEvent()");
console.log("Event data:\n" + JSON.stringify(event, null, 4));
context.succeed("...");
};

c. For Role, choose Choose an existing role. For Existing role, select your basic execution role.
Otherwise, create a basic execution role.
d. (Optional) For Advanced settings, make any changes that you need.
e. Choose Next.
6. On the Review page, choose Create function.

Route events to your Lambda function

Create a rule that matches selected events and routes them to your Lambda function to take action.

To create a rule that routes events to your Lambda function

1. Open the Amazon EventBridge console at https://console.aws.amazon.com/events/.

2. In the navigation pane, under Events, choose Rules.
3. Choose Create rule.
4. Enter a name and description for the rule.
5. For Deﬁne pattern, do the following:

a. Choose Event Pattern.

b. For Event matching pattern, choose Pre-defined by service.
Tip
You can also create a rule that uses a custom event pattern to detect and act upon only
a subset of Amazon EC2 Auto Scaling events. This subset can be based on specific fields
that Amazon EC2 Auto Scaling includes in its events. For more information, see Event
patterns in the Amazon EventBridge User Guide. For an example event pattern, see Step
3: Create an EventBridge rule (p. 217) in the tutorial for lifecycle hooks.
c. For Service provider, choose Amazon Web Services.
d. For Service Name, choose Auto Scaling.
e. For Event type, choose Instance Launch and Terminate.
f. To capture all successful and unsuccessful instance launch and terminate events, choose Any
instance event.
g. By default, the rule matches any Auto Scaling group in the Region. To make the rule match a
specific Auto Scaling group, choose Specific group name(s) and select one or more Auto Scaling
groups.
6. For Select event bus, choose AWS default event bus. When an AWS service in your account emits an
event, it always goes to your account's default event bus.
7. For Target, choose Lambda function.
8. For Function, select the Lambda function that you created.

292
Amazon EC2 Auto Scaling User Guide
See also

9. Choose Create.

To test your rule, change the size of your Auto Scaling group. If you used the example code for your
Lambda function, it logs the event to CloudWatch Logs.

To test your rule

1. Open the Amazon EC2 Auto Scaling console at https://console.aws.amazon.com/ec2autoscaling/.

2. On the Details tab, choose Edit from the right side of the page.
3. Change the value of Desired capacity, and then choose Update.
4. Open the CloudWatch console at https://console.aws.amazon.com/cloudwatch/.
5. On the navigation pane, choose Logs.
6. Select the log group for your Lambda function (for example, /aws/lambda/my-function).
7. Select a log stream to view the event data. The data is displayed, similar to the following:

See also
For more information about using EventBridge and Amazon EC2 Auto Scaling, see Creating EventBridge
rules for instance refresh events (p. 132) and Creating EventBridge rules for warm pool events (p. 230).

For a step-by-step tutorial that shows you how to create a Lambda function to perform lifecycle actions,
see Tutorial: Conﬁgure a lifecycle hook that invokes a Lambda function (p. 215). This tutorial covers
how to get started with lifecycle hooks. With lifecycle hooks, you can use Lambda to perform tasks on
instances before they are put into service or before they are terminated.

293
Amazon EC2 Auto Scaling User Guide
Data protection

Security in Amazon EC2 Auto Scaling

Cloud security at AWS is the highest priority. As an AWS customer, you beneﬁt from a data center and
network architecture that is built to meet the requirements of the most security-sensitive organizations.

Security is a shared responsibility between AWS and you. The shared responsibility model describes this
as security of the cloud and security in the cloud:

• Security of the cloud – AWS is responsible for protecting the infrastructure that runs AWS services in
the AWS Cloud. AWS also provides you with services that you can use securely. Third-party auditors
regularly test and verify the eﬀectiveness of our security as part of the AWS compliance programs.
To learn about the compliance programs that apply to Amazon EC2 Auto Scaling, see AWS services in
scope by compliance program.
• Security in the cloud – Your responsibility is determined by the AWS service that you use. You are also
responsible for other factors including the sensitivity of your data, your company's requirements, and
applicable laws and regulations.

This documentation helps you understand how to apply the shared responsibility model when using
Amazon EC2 Auto Scaling. The following topics show you how to conﬁgure Amazon EC2 Auto Scaling to
meet your security and compliance objectives. You also learn how to use other AWS services that help
you to monitor and secure your Amazon EC2 Auto Scaling resources.

Topics
• Amazon EC2 Auto Scaling and data protection (p. 294)
• Identity and Access Management for Amazon EC2 Auto Scaling (p. 295)
• Compliance validation for Amazon EC2 Auto Scaling (p. 325)
• Resilience in Amazon EC2 Auto Scaling (p. 326)
• Infrastructure security in Amazon EC2 Auto Scaling (p. 326)
• Amazon EC2 Auto Scaling and interface VPC endpoints (p. 327)

Amazon EC2 Auto Scaling and data protection

The AWS shared responsibility model applies to data protection in Amazon EC2 Auto Scaling. As
described in this model, AWS is responsible for protecting the global infrastructure that runs all
of the AWS Cloud. You are responsible for maintaining control over your content that is hosted on
this infrastructure. This content includes the security conﬁguration and management tasks for the
AWS services that you use. For more information about data privacy, see the Data Privacy FAQ. For
information about data protection in Europe, see the AWS Shared Responsibility Model and GDPR blog
post on the AWS Security Blog.

For data protection purposes, we recommend that you protect AWS account credentials and set up
individual user accounts with AWS Identity and Access Management (IAM). That way each user is given
only the permissions necessary to fulﬁll their job duties. We also recommend that you secure your data
in the following ways:

• Use multi-factor authentication (MFA) with each account.

• Use SSL/TLS to communicate with AWS resources. We recommend TLS 1.2 or later.
• Set up API and user activity logging with AWS CloudTrail.
• Use AWS encryption solutions, along with all default security controls within AWS services.

294
Amazon EC2 Auto Scaling User Guide
Using AWS KMS keys to encrypt Amazon EBS volumes

• Use advanced managed security services such as Amazon Macie, which assists in discovering and
securing personal data that is stored in Amazon S3.
• If you require FIPS 140-2 validated cryptographic modules when accessing AWS through a command
line interface or an API, use a FIPS endpoint. For more information about the available FIPS endpoints,
see Federal Information Processing Standard (FIPS) 140-2.

We strongly recommend that you never put confidential or sensitive information, such as your
customers' email addresses, into tags or free-form fields such as a Name field. This includes when you
work with Amazon EC2 Auto Scaling or other AWS services using the console, API, AWS CLI, or AWS
SDKs. Any data that you enter into tags or free-form fields used for names may be used for billing or
diagnostic logs. If you provide a URL to an external server, we strongly recommend that you do not
include credentials information in the URL to validate your request to that server.

Using AWS KMS keys to encrypt Amazon EBS

volumes
You can conﬁgure your Auto Scaling group to encrypt Amazon EBS volume data stored in the cloud
with AWS KMS keys. Amazon EC2 Auto Scaling supports AWS managed and customer managed keys to
encrypt your data. Note that the KmsKeyId option to specify a customer managed key is not available
when you use a launch conﬁguration. To specify your customer managed key, use a launch template
instead. For more information, see Creating a launch template for an Auto Scaling group (p. 27).

You can also conﬁgure a customer managed key in your EBS-backed AMI before setting up the launch
template or launch conﬁguration, or use encryption by default to enforce the encryption of the new EBS
volumes and snapshot copies that you create.

For information about how to set up the key policy that you need to launch Auto Scaling instances
when you use a customer managed key for encryption, see Required AWS KMS key policy for use with
encrypted volumes (p. 321). For information about how to create, store, and manage your AWS KMS
encryption keys, see What is AWS Key Management Service?

Identity and Access Management for Amazon EC2

Auto Scaling
AWS Identity and Access Management (IAM) is an AWS service that helps an administrator securely
control access to AWS resources. IAM administrators control who can be authenticated (signed in) and
authorized (have permissions) to use Amazon EC2 Auto Scaling resources. IAM is an AWS service that you
can use with no additional charge.

To use Amazon EC2 Auto Scaling, you need an AWS account and credentials. To increase the security
of your account, we recommend that you use an IAM user to provide access credentials instead of using
your AWS account credentials. For more information, see AWS account root user credentials and IAM user
credentials in the AWS General Reference and IAM best practices in the IAM User Guide.

For an overview of IAM users and why they are important for the security of your account, see AWS
security credentials in the AWS General Reference.

295
Amazon EC2 Auto Scaling User Guide
Access control

For details about working with IAM, see the IAM User Guide.

Access control
You can have valid credentials to authenticate your requests, but unless you have permissions you cannot
create or access Amazon EC2 Auto Scaling resources. For example, you must have permissions to create
Auto Scaling groups, create launch conﬁgurations, and so on.

The following sections provide details on how an IAM administrator can use IAM to help secure your
Amazon EC2 Auto Scaling resources, by controlling who can perform Amazon EC2 Auto Scaling actions.

We recommend that you read the Amazon EC2 topics first. See Identity and access management for
Amazon EC2 in the Amazon EC2 User Guide for Linux Instances. After reading the topics in this section,
you should have a good idea what access control permissions Amazon EC2 offers and how they can fit in
with your Amazon EC2 Auto Scaling resource permissions.

Topics
• How Amazon EC2 Auto Scaling works with IAM (p. 296)
• AWS managed policies for Amazon EC2 Auto Scaling (p. 301)
• Service-linked roles for Amazon EC2 Auto Scaling (p. 302)
• Amazon EC2 Auto Scaling identity-based policy examples (p. 307)
• Launch template support (p. 316)
• IAM role for applications that run on Amazon EC2 instances (p. 320)
• Required AWS KMS key policy for use with encrypted volumes (p. 321)

How Amazon EC2 Auto Scaling works with IAM

Before you use IAM to manage access to Amazon EC2 Auto Scaling, you should understand what IAM
features are available to use with Amazon EC2 Auto Scaling. To get a high-level view of how Amazon EC2
Auto Scaling and other Amazon Web Services work with IAM, see Amazon Web Services that work with
IAM in the IAM User Guide.
Note
Speciﬁc IAM permissions and an Amazon EC2 Auto Scaling service-linked role are required so
that users can conﬁgure Auto Scaling groups.

Contents
• Amazon EC2 Auto Scaling identity-based policies (p. 297)
• Actions (p. 297)
• Resources (p. 297)
• Condition keys (p. 299)
• Amazon EC2 Auto Scaling resource-based policies (p. 299)
• Access Control Lists (ACLs) (p. 300)
• Authorization based on Amazon EC2 Auto Scaling tags (p. 300)
• Amazon EC2 Auto Scaling IAM roles (p. 300)
• Using temporary credentials with Amazon EC2 Auto Scaling (p. 300)
• Service-linked roles (p. 300)
• Service roles (p. 300)
• Choosing an IAM role in Amazon EC2 Auto Scaling (p. 300)
• Learn more about IAM permission policies (p. 301)

296
Amazon EC2 Auto Scaling User Guide
How Amazon EC2 Auto Scaling works with IAM

Amazon EC2 Auto Scaling identity-based policies

With IAM identity-based policies, you can specify allowed or denied actions and resources, and the
conditions under which actions are allowed or denied. Amazon EC2 Auto Scaling supports speciﬁc
actions, resources, and condition keys. To learn about all of the elements that you use in a JSON policy,
see IAM JSON policy elements reference in the IAM User Guide.

Actions
Administrators can use AWS JSON policies to specify who has access to what. That is, which principal can
perform actions on what resources, and under what conditions.

The Action element of a JSON policy describes the actions that you can use to allow or deny access in a
policy. Policy actions usually have the same name as the associated AWS API operation. There are some
exceptions, such as permission-only actions that don't have a matching API operation. There are also
some operations that require multiple actions in a policy. These additional actions are called dependent
actions.

Include actions in a policy to grant permissions to perform the associated operation.

Policy actions in Amazon EC2 Auto Scaling use the following preﬁx before the action: autoscaling:.
Policy statements must include either an Action or NotAction element. Amazon EC2 Auto Scaling
deﬁnes its own set of actions that describe tasks that you can perform with this service.

To specify multiple actions in a single statement, separate them with commas as shown in the following
example.

"Action": [
"autoscaling:CreateAutoScalingGroup",
"autoscaling:UpdateAutoScalingGroup"

You can specify multiple actions using wildcards (*). For example, to specify all actions that begin with
the word Describe, include the following action.

"Action": "autoscaling:Describe*"

To see a list of Amazon EC2 Auto Scaling actions, see Actions in the Amazon EC2 Auto Scaling API
Reference.

Resources
Administrators can use AWS JSON policies to specify who has access to what. That is, which principal can
perform actions on what resources, and under what conditions.

The Resource JSON policy element speciﬁes the object or objects to which the action applies.
Statements must include either a Resource or a NotResource element. As a best practice, specify
a resource using its Amazon Resource Name (ARN). You can do this for actions that support a speciﬁc
resource type, known as resource-level permissions.

For actions that don't support resource-level permissions, such as listing operations, use a wildcard (*) to
indicate that the statement applies to all resources.

"Resource": "*"

You can restrict access to speciﬁc Auto Scaling groups and launch conﬁgurations by using their ARNs to
identify the resource that the IAM policy applies to. For more information about the format of ARNs, see
Amazon Resource Names (ARNs) in the AWS General Reference.

297
Amazon EC2 Auto Scaling User Guide
How Amazon EC2 Auto Scaling works with IAM

An Auto Scaling group has the following ARN.

"Resource":
"arn:aws:autoscaling:region:123456789012:autoScalingGroup:uuid:autoScalingGroupName/asg-
name"

A launch conﬁguration has the following ARN.

"Resource":
"arn:aws:autoscaling:region:123456789012:launchConfiguration:uuid:launchConfigurationName/
lc-name"

To specify an Auto Scaling group with the CreateAutoScalingGroup action, you must replace the
UUID with * as shown in the following.

"Resource":
"arn:aws:autoscaling:region:123456789012:autoScalingGroup:*:autoScalingGroupName/asg-name"

To specify a launch conﬁguration with the CreateLaunchConfiguration action, you must replace the
UUID with * as shown in the following.

"Resource":
"arn:aws:autoscaling:region:123456789012:launchConfiguration:*:launchConfigurationName/lc-
name"

Not all Amazon EC2 Auto Scaling actions support resource-level permissions. For actions that don't
support resource-level permissions, you must use "*" as the resource.

The following Amazon EC2 Auto Scaling actions do not support resource-level permissions.

• DescribeAccountLimits
• DescribeAdjustmentTypes
• DescribeAutoScalingGroups
• DescribeAutoScalingInstances
• DescribeAutoScalingNotificationTypes
• DescribeInstanceRefreshes
• DescribeLaunchConfigurations
• DescribeLifecycleHooks
• DescribeLifecycleHookTypes
• DescribeLoadBalancers
• DescribeLoadBalancerTargetGroups
• DescribeMetricCollectionTypes
• DescribeNotificationConfigurations
• DescribePolicies
• DescribeScalingActivities
• DescribeScalingProcessTypes
• DescribeScheduledActions
• DescribeTags
• DescribeTerminationPolicyTypes

To learn with which actions you can specify the ARN of each resource, see Actions, resources, and
condition keys for Amazon EC2 Auto Scaling in the IAM User Guide.

298
Amazon EC2 Auto Scaling User Guide
How Amazon EC2 Auto Scaling works with IAM

Condition keys
Administrators can use AWS JSON policies to specify who has access to what. That is, which principal can
perform actions on what resources, and under what conditions.

The Condition element (or Condition block) lets you specify conditions in which a statement is in
eﬀect. The Condition element is optional. You can create conditional expressions that use condition
operators, such as equals or less than, to match the condition in the policy with values in the request.

If you specify multiple Condition elements in a statement, or multiple keys in a single Condition
element, AWS evaluates them using a logical AND operation. If you specify multiple values for a single
condition key, AWS evaluates the condition using a logical OR operation. All of the conditions must be
met before the statement's permissions are granted.

You can also use placeholder variables when you specify conditions. For example, you can grant an IAM
user permission to access a resource only if it is tagged with their IAM user name. For more information,
see IAM policy elements: variables and tags in the IAM User Guide.

AWS supports global condition keys and service-speciﬁc condition keys. To see all AWS global condition
keys, see AWS global condition context keys in the IAM User Guide.

Amazon EC2 Auto Scaling deﬁnes its own set of condition keys and also supports using some global
condition keys. To see all AWS global condition keys, see AWS global condition context keys in the IAM
User Guide.

The following condition keys are speciﬁc to Amazon EC2 Auto Scaling:

• autoscaling:ImageId
• autoscaling:InstanceType
• autoscaling:InstanceTypes
• autoscaling:LaunchConfigurationName
• autoscaling:LaunchTemplateVersionSpecified
• autoscaling:LoadBalancerNames
• autoscaling:MaxSize
• autoscaling:MetadataHttpEndpoint
• autoscaling:MetadataHttpPutResponseHopLimit
• autoscaling:MetadataHttpTokens
• autoscaling:MinSize
• autoscaling:ResourceTag/key
• autoscaling:SpotPrice
• autoscaling:TargetGroupARNs
• autoscaling:VPCZoneIdentifiers

To learn with which actions and resources you can use a condition key, see Actions, resources, and
condition keys for Amazon EC2 Auto Scaling in the IAM User Guide.

Amazon EC2 Auto Scaling resource-based policies

Other Amazon Web Services, such as Amazon Simple Storage Service, support resource-based
permissions policies. For example, you can attach a permissions policy to an S3 bucket to manage access
permissions to that bucket.

Amazon EC2 Auto Scaling does not support resource-based policies.

299
Amazon EC2 Auto Scaling User Guide
How Amazon EC2 Auto Scaling works with IAM

Access Control Lists (ACLs)

Amazon EC2 Auto Scaling does not support Access Control Lists (ACLs).

Authorization based on Amazon EC2 Auto Scaling tags

You can apply tag-based, resource-level permissions in the identity-based policies that you create for
Amazon EC2 Auto Scaling. This gives you better control over which resources a user can create, modify,
use, or delete.

To use tags with IAM policies, you provide tag information in the condition element of a policy using the
following condition keys:

• Use autoscaling:ResourceTag/tag-key: tag-value to allow (or deny) user actions on Auto

Scaling groups with specific tags.
• Use aws:RequestTag/tag-key: tag-value to require that a specific tag be present (or not
present) in a request.
• Use aws:TagKeys [tag-key, ...] to require that specific tag keys be present (or not present) in a
request.

To see examples of identity-based policies based on tags, see Amazon EC2 Auto Scaling identity-based
policy examples (p. 307).

For more information, see Tagging Auto Scaling groups and instances (p. 93).

Amazon EC2 Auto Scaling IAM roles

An IAM role is an entity within your AWS account that has speciﬁc permissions.

Using temporary credentials with Amazon EC2 Auto Scaling

You can use temporary credentials to sign in with federation, assume an IAM role, or to assume a cross-
account role. You obtain temporary security credentials by calling AWS STS API operations such as
AssumeRole or GetFederationToken.

Amazon EC2 Auto Scaling supports using temporary credentials.

Service-linked roles
Service-linked roles allow Amazon Web Services to access resources in other services to complete an
action on your behalf. Service-linked roles appear in your IAM account and are owned by the service. An
IAM administrator can view but not edit the permissions for service-linked roles.

Amazon EC2 Auto Scaling supports service-linked roles. For details about creating or managing Amazon
EC2 Auto Scaling service-linked roles, see Service-linked roles for Amazon EC2 Auto Scaling (p. 302).

Service roles
This feature allows a service to assume a service role on your behalf. This role allows the service to access
resources in other services to complete an action on your behalf. An IAM administrator can change the
permissions for this role. However, doing so might break the functionality of the service.

Amazon EC2 Auto Scaling supports service roles for lifecycle hook notiﬁcations. For more information,
see Amazon EC2 Auto Scaling lifecycle hooks (p. 204).

Choosing an IAM role in Amazon EC2 Auto Scaling

If you have previously created an IAM role that your applications running on Amazon EC2 can
assume, you can choose this role when you create a launch template or launch conﬁguration. Amazon

300
Amazon EC2 Auto Scaling User Guide
AWS managed policies

EC2 Auto Scaling provides you with a list of roles to choose from. When creating these roles, it's
important to associate least privilege IAM policies that restrict access to the speciﬁc API calls that
the application requires. For more information, see IAM role for applications that run on Amazon EC2
instances (p. 320).

Learn more about IAM permission policies

Use the following topics to learn more about creating IAM permission policies to control who can or
cannot use speciﬁc API actions.

• Amazon EC2 Auto Scaling

• Actions, resources, and condition keys for Amazon EC2 Auto Scaling in the IAM User Guide
• Amazon EC2 Auto Scaling identity-based policy examples (p. 307)
• Amazon EC2 launch templates
• Actions, resources, and condition keys for Amazon EC2 in the IAM User Guide
• Launch template support (p. 316)

AWS managed policies for Amazon EC2 Auto Scaling

To add permissions to users, groups, and roles, it is easier to use AWS managed policies than to write
policies yourself. It takes time and expertise to create IAM customer managed policies that provide your
team with only the permissions they need. To get started quickly, you can use our AWS managed policies.
These policies cover common use cases and are available in your AWS account. For more information
about AWS managed policies, see AWS managed policies in the IAM User Guide.

AWS services maintain and update AWS managed policies. You can't change the permissions in AWS
managed policies. Services occasionally add additional permissions to an AWS managed policy to
support new features. This type of update aﬀects all identities (users, groups, and roles) where the policy
is attached. Services are most likely to update an AWS managed policy when a new feature is launched
or when new operations become available. Services do not remove permissions from an AWS managed
policy, so policy updates won't break your existing permissions.

Additionally, AWS supports managed policies for job functions that span multiple services. For example,
the ViewOnlyAccess AWS managed policy provides read-only access to many AWS services and
resources. When a service launches a new feature, AWS adds read-only permissions for new operations
and resources. For a list and descriptions of job function policies, see AWS managed policies for job
functions in the IAM User Guide.

Amazon EC2 Auto Scaling managed policies

You can attach the following managed policies to your AWS Identity and Access Management (IAM)
entities. Each policy provides access to all or some of the API actions for Amazon EC2 Auto Scaling.

• AutoScalingFullAccess — Grants full access to Amazon EC2 Auto Scaling for users who need full
Amazon EC2 Auto Scaling access from the AWS CLI or SDKs, but not AWS Management Console access.
• AutoScalingReadOnlyAccess — Grants read-only access to Amazon EC2 Auto Scaling for users who are
making calls only to the AWS CLI or SDKs.
• AutoScalingConsoleFullAccess — Grants full access to Amazon EC2 Auto Scaling using the AWS
Management Console. This policy works when you are using launch conﬁgurations, but not when you
are using launch templates.
• AutoScalingConsoleReadOnlyAccess — Grants read-only access to Amazon EC2 Auto Scaling using the
AWS Management Console. This policy works when you are using launch conﬁgurations, but not when
you are using launch templates.

301
Amazon EC2 Auto Scaling User Guide
Service-linked roles

When you are using launch templates from the console, you need to grant additional permissions
speciﬁc to launch templates, which are discussed in Launch template support (p. 316). The Amazon
EC2 Auto Scaling console needs permissions for ec2 actions so it can display information about launch
templates and launch instances using launch templates.

AutoScalingServiceRolePolicy AWS managed policy

You can't attach AutoScalingServiceRolePolicy to your IAM entities. This policy is attached to a
service-linked role that allows Amazon EC2 Auto Scaling to launch and terminate instances. For more
information, see Service-linked roles for Amazon EC2 Auto Scaling (p. 302).

Amazon EC2 Auto Scaling updates to AWS managed policies

View details about updates to AWS managed policies for Amazon EC2 Auto Scaling since this service
began tracking these changes. For automatic alerts about changes to this page, subscribe to the RSS
feed on the Amazon EC2 Auto Scaling Document history page.

Change Description Date

Amazon EC2 Auto Scaling adds To support predictive May 19, 2021
permissions to its service-linked scaling, the
role AutoScalingServiceRolePolicy
policy now includes
permission to call the
cloudwatch:GetMetricData
API action. For more
information, see Service-linked
roles for Amazon EC2 Auto
Scaling (p. 302).

Amazon EC2 Auto Scaling Amazon EC2 Auto Scaling May 19, 2021
started tracking changes started tracking changes for its
AWS managed policies.

Service-linked roles for Amazon EC2 Auto Scaling

Amazon EC2 Auto Scaling uses service-linked roles for the permissions that it requires to call other
Amazon Web Services on your behalf. A service-linked role is a unique type of IAM role that is linked
directly to an AWS service.

Service-linked roles provide a secure way to delegate permissions to Amazon Web Services because only
the linked service can assume a service-linked role. For more information, see Using service-linked roles
in the IAM User Guide. Service-linked roles also enable all API calls to be visible through AWS CloudTrail.
This helps with monitoring and auditing requirements because you can track all actions that Amazon EC2
Auto Scaling performs on your behalf. For more information, see Logging Amazon EC2 Auto Scaling API
calls with AWS CloudTrail (p. 279).

The following sections describe how to create and manage Amazon EC2 Auto Scaling service-linked
roles. Start by conﬁguring permissions to allow an IAM entity (such as a user, group, or role) to create,
edit, or delete a service-linked role. For more information, see Using service-linked roles in the IAM User
Guide.

Contents
• Overview (p. 303)
• Permissions granted by the service-linked role (p. 303)

302
Amazon EC2 Auto Scaling User Guide
Service-linked roles

• Create a service-linked role (automatic) (p. 305)

• Create a service-linked role (manual) (p. 305)
• Edit the service-linked role (p. 306)
• Delete the service-linked role (p. 306)
• Supported regions for Amazon EC2 Auto Scaling service-linked roles (p. 307)

Overview
There are two types of Amazon EC2 Auto Scaling service-linked roles:

• The default service-linked role for your account, named AWSServiceRoleForAutoScaling. This role
is automatically assigned to your Auto Scaling groups unless you specify a diﬀerent service-linked role.
• A service-linked role with a custom suﬃx that you specify when you create the role, for example,
AWSServiceRoleForAutoScaling_mysuffix.

The permissions of a custom suffix service-linked role are identical to those of the default service-linked
role. In both cases, you cannot edit the roles, and you also cannot delete them if they are still in use by
an Auto Scaling group. The only difference is the role name suffix.

You can specify either role when you edit your AWS Key Management Service key policies to allow
instances that are launched by Amazon EC2 Auto Scaling to be encrypted with your customer managed
key. However, if you plan to give granular access to a specific customer managed key, you should use a
custom suffix service-linked role. Using a custom suffix service-linked role provides you with:

• More control over the customer managed key

• The ability to track which Auto Scaling group made an API call in your CloudTrail logs

If you create customer managed keys that not all users should have access to, follow these steps to allow
the use of a custom suﬃx service-linked role:

1. Create a service-linked role with a custom suﬃx. For more information, see Create a service-linked role
(manual) (p. 305).
2. Give the service-linked role access to a customer managed key. For more information about the key
policy that allows the key to be used by a service-linked role, see Required AWS KMS key policy for use
with encrypted volumes (p. 321).
3. Give IAM users or roles access to the service-linked role that you created. For more information about
creating the IAM policy, see Control which service-linked role can be passed (using PassRole) (p. 314).
If users try to specify a service-linked role without permission to pass that role to the service, they
receive an error.

Permissions granted by the service-linked role

Amazon EC2 Auto Scaling uses the AWSServiceRoleForAutoScaling service-linked role or your
custom suﬃx service-linked role to call AWS APIs on your behalf:

The role permissions policy allows Amazon EC2 Auto Scaling to complete the following actions on
resources.

{
"Version":"2012-10-17",
"Statement":[
{
"Sid":"EC2InstanceManagement",

303
Amazon EC2 Auto Scaling User Guide
Service-linked roles

"Effect":"Allow",
"Action":[
"ec2:AttachClassicLinkVpc",
"ec2:CancelSpotInstanceRequests",
"ec2:CreateFleet",
"ec2:CreateTags",
"ec2:DeleteTags",
"ec2:Describe*",
"ec2:DetachClassicLinkVpc",
"ec2:ModifyInstanceAttribute",
"ec2:RequestSpotInstances",
"ec2:RunInstances",
"ec2:StartInstances",
"ec2:StopInstances",
"ec2:TerminateInstances"
],
"Resource":"*"
},
{
"Sid":"EC2InstanceProfileManagement",
"Effect":"Allow",
"Action":[
"iam:PassRole"
],
"Resource":"*",
"Condition":{
"StringLike":{
"iam:PassedToService":"ec2.amazonaws.com*"
}
}
},
{
"Sid":"EC2SpotManagement",
"Effect":"Allow",
"Action":[
"iam:CreateServiceLinkedRole"
],
"Resource":"*",
"Condition":{
"StringEquals":{
"iam:AWSServiceName":"spot.amazonaws.com"
}
}
},
{
"Sid":"ELBManagement",
"Effect":"Allow",
"Action":[
"elasticloadbalancing:Register*",
"elasticloadbalancing:Deregister*",
"elasticloadbalancing:Describe*"
],
"Resource":"*"
},
{
"Sid":"CWManagement",
"Effect":"Allow",
"Action":[
"cloudwatch:DeleteAlarms",
"cloudwatch:DescribeAlarms",
"cloudwatch:GetMetricData",
"cloudwatch:PutMetricAlarm"
],
"Resource":"*"
},
{

304
Amazon EC2 Auto Scaling User Guide
Service-linked roles

"Sid":"SNSManagement",
"Effect":"Allow",
"Action":[
"sns:Publish"
],
"Resource":"*"
},
{
"Sid":"EventBridgeRuleManagement",
"Effect":"Allow",
"Action":[
"events:PutRule",
"events:PutTargets",
"events:RemoveTargets",
"events:DeleteRule",
"events:DescribeRule"
],
"Resource":"*",
"Condition":{
"StringEquals":{
"events:ManagedBy":"autoscaling.amazonaws.com"
}
}
}
]
}

The role trusts the autoscaling.amazonaws.com service to assume it.

Create a service-linked role (automatic)

Amazon EC2 Auto Scaling creates the AWSServiceRoleForAutoScaling service-linked role for you
the ﬁrst time that you create an Auto Scaling group, unless you manually create a custom suﬃx service-
linked role and specify it when creating the group.
Important
You must have IAM permissions to create the service-linked role. Otherwise, the automatic
creation fails. For more information, see Service-linked role permissions in the IAM User Guide
and Required permissions to create a service-linked role (p. 314) in this guide.

Amazon EC2 Auto Scaling began supporting service-linked roles in March 2018. If you created an Auto
Scaling group before then, Amazon EC2 Auto Scaling created the AWSServiceRoleForAutoScaling
role in your account. For more information, see A new role appeared in my AWS account in the IAM User
Guide.

Create a service-linked role (manual)

To create a service-linked role (console)

1. Open the IAM console at https://console.aws.amazon.com/iam/.

2. In the navigation pane, choose Roles, Create role.
3. For Select type of trusted entity, choose AWS service.
4. For Choose the service that will use this role, choose EC2 Auto Scaling and the EC2 Auto Scaling
use case.
5. Choose Next: Permissions, Next: Tags, and then Next: Review. Note: You cannot attach tags to
service-linked roles during creation.
6. On the Review page, leave Role name blank to create a service-linked role with the name
AWSServiceRoleForAutoScaling, or enter a suﬃx to create a service-linked role with the name
AWSServiceRoleForAutoScaling_suffix.
7. (Optional) For Role description, edit the description for the service-linked role.

305
Amazon EC2 Auto Scaling User Guide
Service-linked roles

8. Choose Create role.

To create a service-linked role (AWS CLI)

Use the following create-service-linked-role CLI command to create a service-linked role for Amazon EC2
Auto Scaling with the name AWSServiceRoleForAutoScaling_suffix.

aws iam create-service-linked-role --aws-service-name autoscaling.amazonaws.com --custom-

suffix suffix

The output of this command includes the ARN of the service-linked role, which you can use to give the
service-linked role access to your customer managed key.

{
"Role": {
"RoleId": "ABCDEF0123456789ABCDEF",
"CreateDate": "2018-08-30T21:59:18Z",
"RoleName": "AWSServiceRoleForAutoScaling_suffix",
"Arn": "arn:aws:iam::123456789012:role/aws-service-role/autoscaling.amazonaws.com/
AWSServiceRoleForAutoScaling_suffix",
"Path": "/aws-service-role/autoscaling.amazonaws.com/",
"AssumeRolePolicyDocument": {
"Version": "2012-10-17",
"Statement": [
{
"Action": [
"sts:AssumeRole"
],
"Principal": {
"Service": [
"autoscaling.amazonaws.com"
]
},
"Effect": "Allow"
}
]
}
}
}

For more information, see Creating a service-linked role in the IAM User Guide.

Edit the service-linked role

You cannot edit the service-linked roles that are created for Amazon EC2 Auto Scaling. After you create a
service-linked role, you cannot change the name of the role or its permissions. However, you can edit the
description of the role. For more information, see Editing a service-linked role in the IAM User Guide.

Delete the service-linked role

If you are not using an Auto Scaling group, we recommend that you delete its service-linked role.
Deleting the role prevents you from having an entity that is not used or actively monitored and
maintained.

You can delete a service-linked role only after ﬁrst deleting the related dependent resources. This
protects you from inadvertently revoking Amazon EC2 Auto Scaling permissions to your resources. If a
service-linked role is used with multiple Auto Scaling groups, you must delete all Auto Scaling groups
that use the service-linked role before you can delete it. For more information, see Deleting your Auto
Scaling infrastructure (p. 136).

306
Amazon EC2 Auto Scaling User Guide
Identity-based policy examples

You can use IAM to delete a service-linked role. For more information, see Deleting a service-linked role
in the IAM User Guide.

If you delete the AWSServiceRoleForAutoScaling service-linked role, Amazon EC2 Auto Scaling
creates the role again when you create an Auto Scaling group and do not specify a diﬀerent service-
linked role.

Supported regions for Amazon EC2 Auto Scaling service-linked

roles
Amazon EC2 Auto Scaling supports using service-linked roles in all of the AWS Regions where the service
is available.

Amazon EC2 Auto Scaling identity-based policy

examples
By default, IAM users and roles don't have permission to create or modify Amazon EC2 Auto Scaling
resources. They also can't perform tasks using the AWS Management Console, AWS CLI, or AWS API. An
IAM administrator must create IAM policies that give users and roles permission to perform speciﬁc API
operations on the speciﬁed resources they need. The administrator must then attach those policies to
the IAM users or groups that require those permissions.

To learn how to create an IAM identity-based policy using these example JSON policy documents, see
Creating policies on the JSON tab in the IAM User Guide.

The following shows an example of a permissions policy.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"autoscaling:CreateAutoScalingGroup",
"autoscaling:UpdateAutoScalingGroup",
"autoscaling:DeleteAutoScalingGroup"
],
"Resource": "*",
"Condition": {
"StringEquals": { "autoscaling:ResourceTag/environment": "test" }
}
},
{
"Effect": "Allow",
"Action": [
"autoscaling:*LaunchConfiguration*",
"autoscaling:Describe*"
],
"Resource": "*"
}]
}

This sample policy gives users permissions to create, modify, and delete Auto Scaling groups, but only
if the group uses the tag environment=test. Because launch conﬁgurations do not support tags,
and Describe actions do not support resource-level permissions, you must specify them in a separate
statement without conditions. To learn more about the elements within an IAM policy statement, see
Amazon EC2 Auto Scaling identity-based policies (p. 297).

307
Amazon EC2 Auto Scaling User Guide
Identity-based policy examples

Contents
• Policy best practices (p. 308)
• Customer managed policy examples (p. 308)
• Control which tag keys and tag values can be used (p. 309)
• Control access to Auto Scaling resources based on tags (p. 310)
• Control access to creating and managing Auto Scaling groups and scaling
policies (p. 310)
• Control which scaling policies can be deleted (p. 311)
• Control the minimum and maximum capacity of Auto Scaling groups (p. 311)
• Control which IAM roles can be passed (using PassRole) (p. 311)
• Allow users to change the capacity of Auto Scaling groups (p. 312)
• Allow users to create and use launch conﬁgurations (p. 313)
• Allow users to create and use launch templates (p. 314)
• Required permissions to create a service-linked role (p. 314)
• Control which service-linked role can be passed (using PassRole) (p. 314)
• Required API permissions for Amazon EC2 Auto Scaling (p. 315)

Policy best practices

Identity-based policies are very powerful. They determine whether someone can create, access, or delete
Amazon EC2 Auto Scaling resources in your account. These actions can incur costs for your AWS account.
When you create or edit identity-based policies, follow these guidelines and recommendations:

• Get started using AWS managed policies – To start using Amazon EC2 Auto Scaling quickly, use
AWS managed policies to give your employees the permissions they need. These policies are already
available in your account and are maintained and updated by AWS. For more information, see Get
started using permissions with AWS managed policies in the IAM User Guide.
• Grant least privilege – When you create custom policies, grant only the permissions required
to perform a task. Start with a minimum set of permissions and grant additional permissions as
necessary. Doing so is more secure than starting with permissions that are too lenient and then trying
to tighten them later. For more information, see Grant least privilege in the IAM User Guide.
• Enable MFA for sensitive operations – For extra security, require IAM users to use multi-factor
authentication (MFA) to access sensitive resources or API operations. For more information, see Using
multi-factor authentication (MFA) in AWS in the IAM User Guide.
• Use policy conditions for extra security – To the extent that it's practical, deﬁne the conditions under
which your identity-based policies allow access to a resource. For example, you can write conditions to
specify a range of allowable IP addresses that a request must come from. You can also write conditions
to allow requests only within a speciﬁed date or time range, or to require the use of SSL or MFA. For
more information, see IAM JSON policy elements: Condition in the IAM User Guide.

Note
Some Amazon EC2 Auto Scaling API actions allow you to include specific Auto Scaling groups in
your policy that can be created or modified by the action. You can restrict the target resources
for these actions by specifying individual Auto Scaling group ARNs. As a best practice, however,
we recommend that you use tag-based policies that allow (or deny) actions on Auto Scaling
groups with a specific tag.

Customer managed policy examples

You can create your own custom IAM policies to allow or deny permissions for IAM users or groups to
perform Amazon EC2 Auto Scaling actions. You can attach these custom policies to the IAM users or

308
Amazon EC2 Auto Scaling User Guide
Identity-based policy examples

groups that require the speciﬁed permissions. The following examples show permissions for several
common use cases.

If you are new to creating policies, we recommend that you ﬁrst create an IAM user in your account and
attach policies to the user. You can use the console to verify the eﬀects of each policy as you attach the
policy to the user.

When creating and updating Auto Scaling groups, some actions require that certain other actions be
carried out. You can specify these other actions in the Action element of an IAM policy statement. For
example, there are additional API actions for Elastic Load Balancing, CloudWatch, and Amazon SNS that
might be required depending on the access that you want to provide for a user.

Topics
• Control which tag keys and tag values can be used (p. 309)
• Control access to Auto Scaling resources based on tags (p. 310)
• Control the minimum and maximum capacity of Auto Scaling groups (p. 311)
• Control which IAM roles can be passed (using PassRole) (p. 311)
• Allow users to change the capacity of Auto Scaling groups (p. 312)
• Allow users to create and use launch conﬁgurations (p. 313)
• Allow users to create and use launch templates (p. 314)

Control which tag keys and tag values can be used

You can use conditions in your IAM policies to control the tag keys and tag values that can be applied to
Auto Scaling groups.

To give users permissions to create or tag an Auto Scaling group only if they specify certain tags, use the
aws:RequestTag condition key. To allow only speciﬁc tag keys, use the aws:TagKeys condition key
with the ForAllValues modiﬁer.

The following policy requires users to specify a tag with the key environment in the request. The "?*"
value enforces that there is some value for the tag key. To use a wildcard, you must use the StringLike
condition operator.

{
"Version": "2012-10-17",
"Statement": [{
"Effect": "Allow",
"Action": [
"autoscaling:CreateAutoScalingGroup",
"autoscaling:CreateOrUpdateTags"
],
"Resource": "*",
"Condition": {
"StringLike": { "aws:RequestTag/environment": "?*" }
}
}]
}

The following policy speciﬁes that users can only tag Auto Scaling groups with the tags
purpose=webserver and cost-center=cc123, and allows only the purpose and cost-center tags
(no other tags can be speciﬁed).

{
"Version": "2012-10-17",
"Statement": [{

309
Amazon EC2 Auto Scaling User Guide
Identity-based policy examples

"Effect": "Allow",
"Action": [
"autoscaling:CreateAutoScalingGroup",
"autoscaling:CreateOrUpdateTags"
],
"Resource": "*",
"Condition": {
"StringEquals": {
"aws:RequestTag/purpose": "webserver",
"aws:RequestTag/cost-center": "cc123"
},
"ForAllValues:StringEquals": { "aws:TagKeys": ["purpose", "cost-center"] }
}
}]
}

The following policy requires users to specify at least one tag in the request, and allows only the cost-
center and owner keys.

{
"Version": "2012-10-17",
"Statement": [{
"Effect": "Allow",
"Action": [
"autoscaling:CreateAutoScalingGroup",
"autoscaling:CreateOrUpdateTags"
],
"Resource": "*",
"Condition": {
"ForAnyValue:StringEquals": { "aws:TagKeys": ["cost-center", "owner"] }
}
}]
}

Note
For conditions, the condition key is not case-sensitive and the condition value is case-sensitive.
Therefore, to enforce the case-sensitivity of a tag key, use the aws:TagKeys condition key,
where the tag key is speciﬁed as a value in the condition.

Control access to Auto Scaling resources based on tags

You can also provide tag information in your IAM policies to control access based on the tags that are
attached to the Auto Scaling group by using the autoscaling:ResourceTag condition key.

Control access to creating and managing Auto Scaling groups and scaling policies

The following policy gives users permissions to use all Amazon EC2 Auto Scaling actions that include the
string Scaling in their names, as long as the Auto Scaling group has the tag purpose=webserver.
Because the Describe actions do not support resource-level permissions, you must specify them in a
separate statement without conditions.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": ["autoscaling:*Scaling*"],
"Resource": "*",
"Condition": {
"StringEquals": { "autoscaling:ResourceTag/purpose": "webserver" }
}

310
Amazon EC2 Auto Scaling User Guide
Identity-based policy examples

},
{
"Effect": "Allow",
"Action": "autoscaling:Describe*Scaling*",
"Resource": "*"
}]
}

Control which scaling policies can be deleted

The following policy allows users to use the autoscaling:DeletePolicy action to delete a scaling
policy. However, it also denies the action if the Auto Scaling group being acted upon has the tag
environment=production.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "autoscaling:DeletePolicy",
"Resource": "*"
},
{
"Effect": "Deny",
"Action": "autoscaling:DeletePolicy",
"Resource": "*",
"Condition": {
"StringEquals": { "autoscaling:ResourceTag/environment": "production" }
}
}]
}

Control the minimum and maximum capacity of Auto Scaling groups

Amazon EC2 Auto Scaling allows you to restrict the size of the Auto Scaling groups that can be created.
The following policy gives users permissions to create and update all Auto Scaling groups with the tag
allowed=true, as long as they don't specify a minimum size less than 1 or a maximum size greater than
10.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"autoscaling:CreateAutoScalingGroup",
"autoscaling:UpdateAutoScalingGroup"
],
"Resource": "*",
"Condition": {
"StringEquals": { "autoscaling:ResourceTag/allowed": "true" },
"NumericGreaterThanEqualsIfExists": { "autoscaling:MinSize": 1 },
"NumericLessThanEqualsIfExists": { "autoscaling:MaxSize": 10 }
}
}]
}

Control which IAM roles can be passed (using PassRole)

If you want a user to be able to create Amazon EC2 Auto Scaling resources that specify an instance
proﬁle (a container for an IAM role), you must use a policy that includes a statement allowing the

311
Amazon EC2 Auto Scaling User Guide
Identity-based policy examples

user to pass the role, like the following example. By specifying the ARN, the policy grants the user the
permission to pass only roles whose name begins with qateam-. For more information, see IAM role for
applications that run on Amazon EC2 instances (p. 320).

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "iam:PassRole",
"Resource": "arn:aws:iam::123456789012:role/qateam-*",
"Condition": {
"StringEquals": {
"iam:PassedToService": [
"ec2.amazonaws.com",
"ec2.amazonaws.com.cn"
]
}
}
}
]
}

Allow users to change the capacity of Auto Scaling groups

The following policy gives users permissions to use the SetDesiredCapacity and
TerminateInstanceInAutoScalingGroup API actions. The Resource element uses a wildcard (*) to
indicate that users can change the capacity of any Auto Scaling group.

{
"Version": "2012-10-17",
"Statement": [{
"Effect": "Allow",
"Action": [
"autoscaling:SetDesiredCapacity",
"autoscaling:TerminateInstanceInAutoScalingGroup"
],
"Resource": "*"
}]
}

If you are not using tags to control access to Auto Scaling groups, you can adjust the preceding
statement to give users permissions to change the capacity of only Auto Scaling groups whose name
begins with devteam-. For more information about specifying the ARN value, see Resources (p. 297).

"Resource":
"arn:aws:autoscaling:region:123456789012:autoScalingGroup:*:autoScalingGroupName/devteam-
*"

You can also specify multiple ARNs by enclosing them in a list. Including the UUID ensures that access
is granted to the speciﬁc Auto Scaling group. The UUID for a new group is diﬀerent than the UUID for a
deleted group with the same name.

"Resource": [

"arn:aws:autoscaling:region:123456789012:autoScalingGroup:7fe02b8e-7442-4c9e-8c8e-85fa99e9b5d9:autoSca
devteam-1",
"arn:aws:autoscaling:region:123456789012:autoScalingGroup:9d8e8ea4-22e1-44c7-
a14d-520f8518c2b9:autoScalingGroupName/devteam-2",

312
Amazon EC2 Auto Scaling User Guide
Identity-based policy examples

"arn:aws:autoscaling:region:123456789012:autoScalingGroup:60d6b363-
ae8b-467c-947f-f1d308935521:autoScalingGroupName/devteam-3"
]

Allow users to create and use launch conﬁgurations

The following policy gives users permissions to create a launch configuration if the instance type is
t2.micro, but only if the name of the launch configuration starts with qateam-. For more information
about specifying the ARN value, see Resources (p. 297). They can specify a launch configuration for an
Auto Scaling group only if its name starts with qateam-.

The last part of the statement gives users permissions to describe launch conﬁgurations and to access
certain Amazon EC2 resources in their account. This gives users minimum permissions to create and
manage launch conﬁgurations from the Amazon EC2 Auto Scaling console.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "autoscaling:CreateLaunchConfiguration",
"Resource":
"arn:aws:autoscaling:region:123456789012:launchConfiguration:*:launchConfigurationName/
qateam-*",
"Condition": {
"StringEquals": { "autoscaling:InstanceType": "t2.micro" }
}
},
{
"Effect": "Allow",
"Action": [
"autoscaling:CreateAutoScalingGroup",
"autoscaling:UpdateAutoScalingGroup"
],
"Resource": "*",
"Condition": {
"StringLikeIfExists": { "autoscaling:LaunchConfigurationName": "qateam-*" }
}
},
{
"Effect": "Allow",
"Action": [
"autoscaling:DescribeLaunchConfigurations",
"ec2:DescribeImages",
"ec2:DescribeVolumes",
"ec2:DescribeInstances",
"ec2:DescribeInstanceAttribute",
"ec2:DescribeKeyPairs",
"ec2:DescribeSecurityGroups",
"ec2:DescribeSpotInstanceRequests",
"ec2:DescribeSpotPriceHistory",
"ec2:DescribeVpcClassicLink",
"ec2:DescribeVpcs",
"ec2:DescribeSubnets"
],
"Resource": "*"
}]
}

You can add API actions to this policy to provide more options for users, for example:

• iam:ListInstanceProfiles: To list instance proﬁles.

313
Amazon EC2 Auto Scaling User Guide
Identity-based policy examples

• ec2:CreateSecurityGroup: To create a new security group.

• ec2:AuthorizeSecurityGroupIngress: To add inbound rules.
• ec2:CreateKeyPair: To create a new key pair.

Allow users to create and use launch templates

For example policies, see Launch template support (p. 316).

Required permissions to create a service-linked role

Amazon EC2 Auto Scaling requires permissions to create a service-linked role the ﬁrst time that any user
in your AWS account calls Amazon EC2 Auto Scaling API actions. If the service-linked role does not exist
already, Amazon EC2 Auto Scaling creates it in your account. The service-linked role gives permissions to
Amazon EC2 Auto Scaling so that it can call other services on your behalf.

For automatic role creation to succeed, users must have permissions for the
iam:CreateServiceLinkedRole action.

"Action": "iam:CreateServiceLinkedRole"

The following shows an example of a permissions policy that allows a user to create an Amazon EC2
Auto Scaling service-linked role for Amazon EC2 Auto Scaling.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "iam:CreateServiceLinkedRole",
"Resource": "arn:aws:iam::*:role/aws-service-role/autoscaling.amazonaws.com/
AWSServiceRoleForAutoScaling",
"Condition": {
"StringLike": {
"iam:AWSServiceName":"autoscaling.amazonaws.com"
}
}
}
]
}

Control which service-linked role can be passed (using PassRole)

If your users require the ability to pass custom suﬃx service-linked roles to an Auto Scaling group, you
must attach a policy to the users or roles, based on the access that they need. We recommend that you
restrict this policy to only the service-linked roles that your users must access. For more information
about custom suﬃx service-linked roles, see Service-linked roles for Amazon EC2 Auto Scaling (p. 302).

The following example is helpful for facilitating the security of your AWS KMS customer managed keys
if you give different service-linked roles access to different keys. Depending on your needs, you might
have a key for the development team, another for the QA team, and another for the finance team. First,
create a service-linked role that has access to the required key, for example, a service-linked role named
AWSServiceRoleForAutoScaling_devteamkeyaccess. Then, to grant permissions to pass that
service-linked role to an Auto Scaling group, attach the policy to your IAM users as shown.

The policy in this example gives users permissions to pass the

AWSServiceRoleForAutoScaling_devteamkeyaccess role to create any Auto Scaling group whose
name begins with devteam-. If they try to specify a diﬀerent service-linked role, they receive an error. If

314
Amazon EC2 Auto Scaling User Guide
Identity-based policy examples

they choose not to specify a service-linked role, the default AWSServiceRoleForAutoScaling role is
used instead.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "iam:PassRole",
"Resource": "arn:aws:iam::123456789012:role/aws-service-role/
autoscaling.amazonaws.com/AWSServiceRoleForAutoScaling_devteamkeyaccess",
"Condition": {
"StringEquals": {
"iam:PassedToService": [
"autoscaling.amazonaws.com"
]
},
"StringLike": {
"iam:AssociatedResourceARN": [

"arn:aws:autoscaling:region:123456789012:autoScalingGroup:*:autoScalingGroupName/devteam-
*"
]
}
}
}
]
}

Required API permissions for Amazon EC2 Auto Scaling

When calling the following actions from the Amazon EC2 Auto Scaling API, users must have permissions
from Amazon EC2 and IAM to perform certain actions. You specify the following actions in the Action
element of an IAM policy statement.

Create an Auto Scaling group

• autoscaling:CreateAutoScalingGroup
• iam:CreateServiceLinkedRole (Needed if you are using the default service-linked role and that
role does not yet exist)
• iam:PassRole (Needed if you are using a nondefault service-linked role, you are specifying an IAM
role for the RoleARN parameter for a lifecycle hook, or you are using a launch template that speciﬁes
the IAM role that can be used by the instances in the Auto Scaling group)
• ec2:RunInstance (Needed if you are using a launch template)
• ec2:CreateTags (Needed if you are using a launch template that speciﬁes the tags to apply to your
instances and EBS volumes)

Create a launch conﬁguration

• autoscaling:CreateLaunchConfiguration
• ec2:DescribeImages
• ec2:DescribeInstances
• ec2:DescribeInstanceAttribute
• ec2:DescribeKeyPairs
• ec2:DescribeSecurityGroups
• ec2:DescribeSpotInstanceRequests

315
Amazon EC2 Auto Scaling User Guide
Launch template support

• ec2:DescribeVpcClassicLink
• iam:PassRole (Needed if you are specifying an IAM role for the IamInstanceProfile parameter)

Create a lifecycle hook

• autoscaling:PutLifecycleHook
• iam:PassRole (Only needed if you are specifying an IAM role for the RoleARN parameter)

Launch template support

Amazon EC2 Auto Scaling supports using Amazon EC2 launch templates with your Auto Scaling groups.
We recommend that you allow users to create Auto Scaling groups from launch templates, because
doing so allows them to use the latest features of Amazon EC2 Auto Scaling and Amazon EC2. In
addition, users must specify a launch template to use a mixed instances policy.

You can use the AmazonEC2FullAccess policy to give users complete access to work with Amazon EC2
Auto Scaling resources, launch templates, and other EC2 resources in their account. Or, you can create
your own custom IAM policies to give users ﬁne-grained permissions to work with launch templates, as
described in this topic.

A sample policy that you can tailor for your own use

The following shows an example of a permissions policy that you can tailor for your own use. The policy
allows IAM users to create, modify, and delete all Auto Scaling groups, but only if the group uses the tag
environment=test. It then gives permission for all Describe actions. Because Describe actions do not
support resource-level permissions, you must specify them in a separate statement without conditions.

Users with this policy have permission to create or update an Auto Scaling group using a launch template
because they're also given permission to use the ec2:RunInstances action.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"autoscaling:CreateAutoScalingGroup",
"autoscaling:UpdateAutoScalingGroup",
"autoscaling:DeleteAutoScalingGroup"
],
"Resource": "*",
"Condition": {
"StringEquals": { "autoscaling:ResourceTag/environment": "test" }
}
},
{
"Effect": "Allow",
"Action": [
"autoscaling:Describe*",
"ec2:RunInstances"
],
"Resource": "*"
}
]
}

ec2:RunInstances are checked when an Auto Scaling group is created or updated using a launch
template. If you want to restrict access to the resources that are used to launch an instance or otherwise

316
Amazon EC2 Auto Scaling User Guide
Launch template support

limit what IAM users can do, you must modify this policy to add your own statements that ﬁlter these
permissions.

The following examples show policy statements that you could use to control the permissions that users
have when using launch templates.

Contents
• Require launch templates that have a speciﬁc tag (p. 317)
• Require a launch template and a version number (p. 317)
• Require the use of instance metadata service version 2 (IMDSv2) (p. 318)
• Restrict access to Amazon EC2 resources (p. 318)
• Permissions required to tag instances and volumes (p. 319)
• Additional permissions (p. 319)

Require launch templates that have a speciﬁc tag

The following example restricts access to calling the ec2:RunInstances action with launch templates
that are located in the speciﬁed Region and that have the tag environment=test.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "ec2:RunInstances",
"Resource": "arn:aws:ec2:region:123456789012:launch-template/*",
"Condition": {
"StringEquals": { "ec2:ResourceTag/environment": "test" }
}
}
]
}

Require a launch template and a version number

The following example allows users to create and modify Auto Scaling groups if they specify the version
number of the launch template, and then denies permission to create or modify any Auto Scaling groups
using a launch conﬁguration. If users with this policy omit the version number to specify either the
Latest or Default launch template version, or specify a launch conﬁguration instead, the action fails.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"autoscaling:CreateAutoScalingGroup",
"autoscaling:UpdateAutoScalingGroup"
],
"Resource": "*",
"Condition": {
"Bool": { "autoscaling:LaunchTemplateVersionSpecified": "true" }
}
},
{
"Effect": "Deny",
"Action": [
"autoscaling:CreateAutoScalingGroup",

317
Amazon EC2 Auto Scaling User Guide
Launch template support

"autoscaling:UpdateAutoScalingGroup"
],
"Resource": "*",
"Condition": {
"Null": { "autoscaling:LaunchConfigurationName": "false" }
}
}
]
}

Require the use of instance metadata service version 2 (IMDSv2)

For extra security, you can set your users' permissions to require the use of a launch template that
requires IMDSv2. For more information, see Conﬁguring the instance metadata service in the Amazon
EC2 User Guide for Linux Instances.

The following example speciﬁes that users can't call the ec2:RunInstances
action unless the instance is also opted in to require the use of IMDSv2 (indicated by
"ec2:MetadataHttpTokens":"required").

{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "RequireImdsV2",
"Effect": "Deny",
"Action": "ec2:RunInstances",
"Resource": "arn:aws:ec2:*:*:instance/*",
"Condition": {
"StringNotEquals": { "ec2:MetadataHttpTokens": "required" }
}
}
]
}

Tip
To force replacement Auto Scaling instances to launch that use a new launch template or a new
version of a launch template with the instance metadata options conﬁgured, you can terminate
existing instances in the group. Amazon EC2 Auto Scaling immediately starts launching new
instances to replace the instances that you terminated. Alternatively, you can start an instance
refresh to do a rolling update of your group. For more information, see Replacing Auto Scaling
instances based on an instance refresh (p. 118).

Restrict access to Amazon EC2 resources

The following example controls the conﬁguration of the instances that a user can launch by restricting
access to Amazon EC2 resources.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "ec2:RunInstances",
"Resource": [
"arn:aws:ec2:region:123456789012:subnet/subnet-1a2b3c4d",
"arn:aws:ec2:region:123456789012:security-group/sg-903004f88example",
"arn:aws:ec2:region:123456789012:network-interface/*",
"arn:aws:ec2:region:123456789012:volume/*",
"arn:aws:ec2:region::image/ami-04d5cc9b88example"

318
Amazon EC2 Auto Scaling User Guide
Launch template support

]
},
{
"Effect": "Allow",
"Action": "ec2:RunInstances",
"Resource": "arn:aws:ec2:region:123456789012:instance/*",
"Condition": {
"StringEquals": { "ec2:InstanceType": "t2.micro" }
}
}
]
}

In this example, there are two statements:

• The first statement requires that users launch instances into a specific subnet (subnet-1a2b3c4d),
using a specific security group (sg-903004f88example), and using a specific AMI
(ami-04d5cc9b88example). It also gives users access to additional resources that they need to
launch instances: network interfaces and volumes.
• The second statement allows users to launch instances only of a specific instance type (t2.micro).

Permissions required to tag instances and volumes

The following example allows users to tag instances and volumes on creation. This policy is needed
if there are tags speciﬁed in the launch template. For more information, see Grant permission to tag
resources during creation in the Amazon EC2 User Guide for Linux Instances.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "ec2:CreateTags",
"Resource": "arn:aws:ec2:region:123456789012:*/*",
"Condition": {
"StringEquals": { "ec2:CreateAction": "RunInstances" }
}
}
]
}

Additional permissions
Depending on which scenarios you want to support, you can specify these additional actions in the
Action element of an IAM policy statement.

For a user to have the ability to pass an IAM role to provisioned instances, that user must have
permission for iam:PassRole. You can use an iam:PassRole policy to allow (or deny) users to pass a
role to Amazon EC2 if the launch template speciﬁes an instance proﬁle with an IAM role. For an example
policy, see Control which IAM roles can be passed (using PassRole) (p. 311).

You must give your console users permissions for the ec2:DescribeLaunchTemplates and
ec2:DescribeLaunchTemplateVersions actions. Without these permissions, launch template
data cannot load in the Auto Scaling group wizard, and users cannot step through the wizard to launch
instances using a launch template.

To control access to the ec2:CreateLaunchTemplate and ec2:CreateLaunchTemplateVersion

actions, see Control the use of launch templates and Example: Work with launch templates in the
Amazon EC2 User Guide for Linux Instances.

319
Amazon EC2 Auto Scaling User Guide
IAM role for applications that run on Amazon EC2 instances

Note
For groups that are conﬁgured to use the Latest or Default launch template version,
permissions for actions to be completed when launching instances are not checked by Amazon
EC2 Auto Scaling when a new version of the launch template is created. This is an important
consideration when setting up your permissions for who can create and manage launch
template versions.

IAM role for applications that run on Amazon EC2

instances
Applications that run on Amazon EC2 instances need credentials to access other Amazon Web Services.
To provide these credentials in a secure way, use an IAM role. The role supplies temporary permissions
that the application can use when it accesses other AWS resources. The role's permissions determine
what the application is allowed to do.

For instances in an Auto Scaling group, you must create a launch template or launch configuration and
choose an instance profile to associate with the instances. An instance profile is a container for an IAM
role that allows Amazon EC2 to pass the IAM role to an instance when the instance is launched. First,
create an IAM role that has all of the permissions required to access the AWS resources. Then, create the
instance profile and assign the role to it.
Note
As a best practice, we strongly recommend that you create the role so that it has the minimum
permissions to other AWS services that your application requires.

Contents
• Prerequisites (p. 320)
• Create a launch template (p. 321)
• Create a launch conﬁguration (p. 321)
• See also (p. 321)

Prerequisites
Create the IAM role that your application running on Amazon EC2 can assume. Choose the appropriate
permissions so that the application that is subsequently given the role can make the speciﬁc API calls
that it needs.

If you use the IAM console instead of the AWS CLI or one of the AWS SDKs, the console creates an
instance proﬁle automatically and gives it the same name as the role to which it corresponds.

To create an IAM role (console)

1. Open the IAM console at https://console.aws.amazon.com/iam/.

2. In the navigation pane, choose Roles, Create role.
3. For Select type of trusted entity, choose AWS service.
4. For Choose the service that will use this role, choose EC2 and the EC2 use case. Choose Next:
Permissions.
5. For Attach permissions policies, choose the AWS managed policies that contain the required
permissions. Choose Next: Tags and then Next: Review.
6. On the Review page, enter a name for the role (for example) and choose Create role.

Use user permissions to control access to your new IAM role. The iam:PassRole permission is needed
on the IAM user who creates or updates an Auto Scaling group using a launch template that speciﬁes

320
Amazon EC2 Auto Scaling User Guide
AWS KMS key policy for use with encrypted volumes

an instance profile, or who creates a launch configuration that specifies an instance profile. For an
example policy that grants users specific permissions, see Control which IAM roles can be passed (using
PassRole) (p. 311).

Create a launch template

When you create the launch template using the AWS Management Console, in the Advanced details
section, select the role from IAM instance proﬁle. For more information, see Conﬁguring advanced
settings for your launch template (p. 31).

When you create the launch template using the create-launch-template command from the AWS CLI,
specify the instance proﬁle name of your IAM role as shown in the following example.

aws ec2 create-launch-template --launch-template-name my-lt-with-instance-profile --

version-description version1 \
--launch-template-data
'{"ImageId":"ami-04d5cc9b88example","InstanceType":"t2.micro","IamInstanceProfile":
{"Name":"my-instance-profile"}}'

Create a launch conﬁguration

When you create the launch configuration using the AWS Management Console, in the Additional
configuration section, select the role from IAM instance profile. For more information, see Creating a
launch configuration (p. 44).

When you create the launch configuration using the create-launch-configuration command from the
AWS CLI, specify the instance profile name of your IAM role as shown in the following example.

aws autoscaling create-launch-configuration --launch-configuration-name my-lc-with-

instance-profile \
--image-id ami-04d5cc9b88example --instance-type t2.micro \
--iam-instance-profile my-instance-profile

See also
For more information to help you start learning about and using IAM roles for Amazon EC2, see:

• IAM roles for Amazon EC2 in the Amazon EC2 User Guide for Linux Instances
• Using instance proﬁles and Using an IAM role to grant permissions to applications running on Amazon
EC2 instances in the IAM User Guide

Required AWS KMS key policy for use with encrypted

volumes
Amazon EC2 Auto Scaling supports service-linked roles (p. 302), a new type of IAM role that gives you
a more secure and transparent way to delegate permissions to Amazon Web Services. Amazon EC2 Auto
Scaling service-linked roles are predeﬁned by Amazon EC2 Auto Scaling and include permissions that
the service requires to call other AWS services on your behalf. The predeﬁned permissions also include
access to your AWS managed keys. However, they do not include access to your customer managed keys,
allowing you to maintain full control over these keys.

This topic describes how to set up the key policy that you need to launch Auto Scaling instances when
you specify a customer managed key for Amazon EBS encryption.

321
Amazon EC2 Auto Scaling User Guide
AWS KMS key policy for use with encrypted volumes

Note
Amazon EC2 Auto Scaling does not need additional authorization to use the default AWS
managed key to protect the encrypted volumes in your account.

Contents
• Overview (p. 322)
• Conﬁguring key policies (p. 322)
• Example 1: Key policy sections that allow access to the customer managed key (p. 323)
• Example 2: Key policy sections that allow cross-account access to the customer managed
key (p. 324)
• Editing key policies in the AWS KMS console (p. 325)

Overview
The following AWS KMS keys can be used for Amazon EBS encryption when Amazon EC2 Auto Scaling
launches instances:

• AWS managed key — An encryption key in your account that Amazon EBS creates, owns, and manages.
This is the default encryption key for a new account. The AWS managed key is used for encryption
unless you specify a customer managed key.
• Customer managed key — A custom encryption key that you create, own, and manage. For more
information, see Creating keys in the AWS Key Management Service Developer Guide.

Note: The key must be symmetric. Amazon EBS does not support asymmetric customer managed keys.

You conﬁgure customer managed keys when creating encrypted snapshots or a launch template that
speciﬁes encrypted volumes, or enabling encryption by default.

Conﬁguring key policies

Your KMS keys must have a key policy that allows Amazon EC2 Auto Scaling to launch instances with
Amazon EBS volumes encrypted with a customer managed key.

Use the examples on this page to conﬁgure a key policy to give Amazon EC2 Auto Scaling access to your
customer managed key. You can modify the customer managed key's key policy either when the key is
created or at a later time.

You must, at minimum, add two policy statements to your key policy for it to work with Amazon EC2
Auto Scaling.

• The first statement allows the IAM identity specified in the Principal element to use the customer
managed key directly. It includes permissions to perform the AWS KMS Encrypt, Decrypt,
ReEncrypt*, GenerateDataKey*, and DescribeKey operations on the key.
• The second statement allows the IAM identity specified in the Principal element to use grants to
delegate a subset of its own permissions to Amazon Web Services that are integrated with AWS KMS
or another principal. This allows them to use the key to create encrypted resources on your behalf.

When you add the new policy statements to your key policy, do not change any existing statements in
the policy.

For each of the following examples, arguments that must be replaced, such as a key ID or the name
of a service-linked role, are shown as replaceable text in italics. In most cases, you can
replace the name of the service-linked role with the name of an Amazon EC2 Auto Scaling service-

322
Amazon EC2 Auto Scaling User Guide
AWS KMS key policy for use with encrypted volumes

linked role. However, when using a launch conﬁguration to launch Spot Instances, use the role named
AWSServiceRoleForEC2Spot.

For more information, see the following resources:

• To create a key with the AWS CLI, see create-key.

• To update a key policy with the AWS CLI, see put-key-policy.
• To ﬁnd a key ID and Amazon Resource Name (ARN), see Finding the key ID and ARN in the AWS Key
Management Service Developer Guide.
• For information about Amazon EC2 Auto Scaling service-linked roles, see Service-linked roles for
Amazon EC2 Auto Scaling (p. 302).
• For more information about Amazon EBS and KMS, Amazon EBS Encryption in the Amazon EC2 User
Guide for Linux Instances and the AWS Key Management Service Developer Guide.

Example 1: Key policy sections that allow access to the customer

managed key
Add the following two policy statements to the key policy of the customer managed key, replacing the
example ARN with the ARN of the appropriate service-linked role that is allowed access to the key. In this
example, the policy sections give the service-linked role named AWSServiceRoleForAutoScaling
permissions to use the customer managed key.

{
"Sid": "Allow service-linked role use of the customer managed key",
"Effect": "Allow",
"Principal": {
"AWS": [
"arn:aws:iam::123456789012:role/aws-service-role/
autoscaling.amazonaws.com/AWSServiceRoleForAutoScaling"
]
},
"Action": [
"kms:Encrypt",
"kms:Decrypt",
"kms:ReEncrypt*",
"kms:GenerateDataKey*",
"kms:DescribeKey"
],
"Resource": "*"
}

{
"Sid": "Allow attachment of persistent resources",
"Effect": "Allow",
"Principal": {
"AWS": [
"arn:aws:iam::123456789012:role/aws-service-role/
autoscaling.amazonaws.com/AWSServiceRoleForAutoScaling"
]
},
"Action": [
"kms:CreateGrant"
],
"Resource": "*",
"Condition": {
"Bool": {
"kms:GrantIsForAWSResource": true
}

323
Amazon EC2 Auto Scaling User Guide
AWS KMS key policy for use with encrypted volumes

}
}

Example 2: Key policy sections that allow cross-account access

to the customer managed key
If your customer managed key is in a diﬀerent account than the Auto Scaling group, you must use a
grant in combination with the key policy to allow access to the key. For more information, see Using
grants in the AWS Key Management Service Developer Guide.

First, add the following two policy statements to the customer managed key's key policy, replacing the
example ARN with the ARN of the external account, and specifying the account in which the key can be
used. This allows you to use IAM policies to give an IAM user or role in the speciﬁed account permission
to create a grant for the key using the CLI command that follows. Giving the AWS account full access to
the key does not by itself give any IAM users or roles access to the key.

{
"Sid": "Allow external account 111122223333 use of the customer managed key",
"Effect": "Allow",
"Principal": {
"AWS": [
"arn:aws:iam::111122223333:root"
]
},
"Action": [
"kms:Encrypt",
"kms:Decrypt",
"kms:ReEncrypt*",
"kms:GenerateDataKey*",
"kms:DescribeKey"
],
"Resource": "*"
}

{
"Sid": "Allow attachment of persistent resources in external account 111122223333",
"Effect": "Allow",
"Principal": {
"AWS": [
"arn:aws:iam::111122223333:root"
]
},
"Action": [
"kms:CreateGrant"
],
"Resource": "*"
}

Then, from the external account, create a grant that delegates the relevant permissions to the
appropriate service-linked role. The Grantee Principal element of the grant is the ARN of the
appropriate service-linked role. The key-id is the ARN of the key. The following is an example create-
grant CLI command that gives the service-linked role named AWSServiceRoleForAutoScaling in
account 111122223333 permissions to use the customer managed key in account 444455556666.

aws kms create-grant \

--region us-west-2 \
--key-id arn:aws:kms:us-west-2:444455556666:key/1a2b3c4d-5e6f-1a2b-3c4d-5e6f1a2b3c4d \
--grantee-principal arn:aws:iam::111122223333:role/aws-service-role/
autoscaling.amazonaws.com/AWSServiceRoleForAutoScaling \

324
Amazon EC2 Auto Scaling User Guide
Compliance validation

--operations "Encrypt" "Decrypt" "ReEncryptFrom" "ReEncryptTo" "GenerateDataKey"

"GenerateDataKeyWithoutPlaintext" "DescribeKey" "CreateGrant"

For this command to succeed, the user making the request must have permissions for the CreateGrant
action. The following example IAM policy allows an IAM user or role in account 111122223333 to create
a grant for the customer managed key in account 444455556666.

{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AllowCreationOfGrantForTheKMSKeyinExternalAccount444455556666",
"Effect": "Allow",
"Action": "kms:CreateGrant",
"Resource": "arn:aws:kms:us-
west-2:444455556666:key/1a2b3c4d-5e6f-1a2b-3c4d-5e6f1a2b3c4d"
}
]
}

After you grant these permissions, everything should work as expected. For more information, see this
forum post.

Editing key policies in the AWS KMS console

The examples in the previous sections show only how to add statements to a key policy, which is
just one way of changing a key policy. The easiest way to change a key policy is to use the AWS KMS
console's default view for key policies and make an IAM entity (user or role) one of the key users for the
appropriate key policy. For more information, see Using the AWS Management Console default view in
the AWS Key Management Service Developer Guide.
Important
Be cautious. The console's default view policy statements include permissions to perform AWS
KMS Revoke operations on the customer managed key. If you give an AWS account access to a
customer managed key in your account, and you accidentally revoke the grant that gave them
this permission, external users can no longer access their encrypted data or the key that was
used to encrypt their data.

Compliance validation for Amazon EC2 Auto

Scaling
Third-party auditors assess the security and compliance of Amazon EC2 Auto Scaling as part of multiple
AWS compliance programs. These include SOC, PCI, FedRAMP, HIPAA, and others.

To learn whether Amazon EC2 Auto Scaling or other AWS services are in scope of speciﬁc compliance
programs, see AWS Services in Scope by Compliance Program. For general information, see AWS
Compliance Programs.

You can download third-party audit reports using AWS Artifact. For more information, see Downloading
Reports in AWS Artifact.

Your compliance responsibility when using AWS services is determined by the sensitivity of your data,
your company's compliance objectives, and applicable laws and regulations. AWS provides the following
resources to help with compliance:

325
Amazon EC2 Auto Scaling User Guide
PCI DSS compliance

• Security and Compliance Quick Start Guides – These deployment guides discuss architectural
considerations and provide steps for deploying baseline environments on AWS that are security and
compliance focused.
• Architecting for HIPAA Security and Compliance Whitepaper – This whitepaper describes how
companies can use AWS to create HIPAA-eligible applications.
Note
Not all AWS services are HIPAA eligible. For more information, see the HIPAA Eligible Services
Reference.
• AWS Compliance Resources – This collection of workbooks and guides might apply to your industry
and location.
• Evaluating Resources with Rules in the AWS Config Developer Guide – The AWS Config service assesses
how well your resource configurations comply with internal practices, industry guidelines, and
regulations.
• AWS Security Hub – This AWS service provides a comprehensive view of your security state within AWS
that helps you check your compliance with security industry standards and best practices.
• AWS Audit Manager – This AWS service helps you continuously audit your AWS usage to simplify how
you manage risk and compliance with regulations and industry standards.

PCI DSS compliance

Amazon EC2 Auto Scaling supports the processing, storage, and transmission of credit card data by a
merchant or service provider, and has been validated as being compliant with Payment Card Industry
(PCI) Data Security Standard (DSS). For more information about PCI DSS, including how to request a copy
of the AWS PCI Compliance Package, see PCI DSS Level 1.

For information on achieving PCI DSS compliance for your AWS workloads, refer to the following
compliance guide:

• Payment Card Industry Data Security Standard (PCI DSS) 3.2.1 on AWS

Resilience in Amazon EC2 Auto Scaling

The AWS global infrastructure is built around AWS Regions and Availability Zones.

AWS Regions provide multiple physically separated and isolated Availability Zones, which are connected
with low-latency, high-throughput, and highly redundant networking.

With Availability Zones, you can design and operate applications and databases that automatically fail
over between zones without interruption. Availability Zones are more highly available, fault tolerant, and
scalable than traditional single or multiple data center infrastructures.

For more information about AWS Regions and Availability Zones, see AWS global infrastructure.

Infrastructure security in Amazon EC2 Auto Scaling

As a managed service, Amazon EC2 Auto Scaling is protected by the AWS global network security
procedures that are described in the Amazon Web Services: Overview of security processes whitepaper.

326
Amazon EC2 Auto Scaling User Guide
Using VPC endpoints for private connectivity

You use AWS published API calls to access Amazon EC2 Auto Scaling through the network. Clients must
support Transport Layer Security (TLS) 1.0 or later. We recommend TLS 1.2 or later. Clients must also
support cipher suites with perfect forward secrecy (PFS) such as Ephemeral Diﬃe-Hellman (DHE) or
Elliptic Curve Ephemeral Diﬃe-Hellman (ECDHE). Most modern systems such as Java 7 and later support
these modes.

Additionally, requests must be signed by using an access key ID and a secret access key that is associated
with an IAM principal. Or you can use the AWS Security Token Service (AWS STS) to generate temporary
security credentials to sign requests.

Amazon EC2 Auto Scaling and interface VPC

endpoints
You can improve the security posture of your VPC by conﬁguring Amazon EC2 Auto Scaling to use an
interface VPC endpoint. Interface endpoints are powered by AWS PrivateLink, a technology that enables
you to privately access Amazon EC2 Auto Scaling APIs by restricting all network traﬃc between your VPC
and Amazon EC2 Auto Scaling to the Amazon network. With interface endpoints, you also don't need an
internet gateway, a NAT device, or a virtual private gateway.

You are not required to conﬁgure AWS PrivateLink, but it's recommended. For more information about
AWS PrivateLink and VPC endpoints, see Interface VPC Endpoints (AWS PrivateLink).

Topics
• Create an interface VPC endpoint (p. 327)
• Create a VPC endpoint policy (p. 328)

Create an interface VPC endpoint

You can create a VPC endpoint for the Amazon EC2 Auto Scaling service using either the Amazon VPC
console or the AWS Command Line Interface (AWS CLI).

Create an endpoint for Amazon EC2 Auto Scaling using the following service name:

• com.amazonaws.region.autoscaling — Creates an endpoint for the Amazon EC2 Auto Scaling API
operations.
• cn.com.amazonaws.region.autoscaling — Creates an endpoint for the Amazon EC2 Auto Scaling API
operations in the AWS China (Beijing) Region and AWS China (Ningxia) Region.

For more information, see Creating an interface endpoint in the Amazon VPC User Guide.

Enable private DNS for the endpoint to make API requests to the supported service using its default DNS
hostname (for example, autoscaling.us-east-1.amazonaws.com). When creating an endpoint for
AWS services, this setting is enabled by default. For more information, see Accessing a service through an
interface endpoint in the Amazon VPC User Guide.

You do not need to change any Amazon EC2 Auto Scaling settings. Amazon EC2 Auto Scaling calls other
AWS services using either service endpoints or private interface VPC endpoints, whichever are in use.

327
Amazon EC2 Auto Scaling User Guide
Create a VPC endpoint policy

Create a VPC endpoint policy

You can attach a policy to your VPC endpoint to control access to the Amazon EC2 Auto Scaling API. The
policy speciﬁes:

• The principal that can perform actions.

• The actions that can be performed.
• The resource on which the actions can be performed.

The following example shows a VPC endpoint policy that denies everyone permission to delete a scaling
policy through the endpoint. The example policy also grants everyone permission to perform all other
actions.

{
"Statement": [
{
"Action": "*",
"Effect": "Allow",
"Resource": "*",
"Principal": "*"
},
{
"Action": "autoscaling:DeleteScalingPolicy",
"Effect": "Deny",
"Resource": "*",
"Principal": "*"
}
]
}

For more information, see Using VPC endpoint policies in the Amazon VPC User Guide.

328
Amazon EC2 Auto Scaling User Guide
Retrieving an error message

Troubleshooting Amazon EC2 Auto

Scaling
Amazon EC2 Auto Scaling provides speciﬁc and descriptive errors to help you troubleshoot issues. You
can ﬁnd the error messages in the description of the scaling activities.

Topics
• Retrieving an error message from scaling activities (p. 329)
• Additional troubleshooting resources (p. 332)
• Troubleshooting Amazon EC2 Auto Scaling: EC2 instance launch failures (p. 332)
• Troubleshooting Amazon EC2 Auto Scaling: AMI issues (p. 338)
• Troubleshooting Amazon EC2 Auto Scaling: Load balancer issues (p. 339)
• Troubleshooting Amazon EC2 Auto Scaling: Launch templates (p. 341)
• Troubleshooting Amazon EC2 Auto Scaling: Health checks (p. 341)

Retrieving an error message from scaling activities

To retrieve an error message from the description of scaling activities, use the describe-scaling-activities
command. You have a record of scaling activities that dates back 6 weeks. Scaling activities are ordered
by start time, with the latest scaling activities listed ﬁrst.

To see the scaling activities for a speciﬁc Auto Scaling group, use the following command.

aws autoscaling describe-scaling-activities --auto-scaling-group-name my-asg

The following is an example response, where StatusCode contains the current status of the activity and
StatusMessage contains the error message.

{
"Activities": [
{
"ActivityId": "3b05dbf6-037c-b92f-133f-38275269dc0f",
"AutoScalingGroupName": "my-asg",
"Description": "Launching a new EC2 instance: i-003a5b3ffe1e9358e. Status
Reason: Instance failed to complete user's Lifecycle Action: Lifecycle Action with token
e85eb647-4fe0-4909-b341-a6c42d8aba1f was abandoned: Lifecycle Action Completed with
ABANDON Result",
"Cause": "At 2021-01-11T00:35:52Z a user request created an AutoScalingGroup
changing the desired capacity from 0 to 1. At 2021-01-11T00:35:53Z an instance was
started in response to a difference between desired and actual capacity, increasing the
capacity from 0 to 1.",
"StartTime": "2021-01-11T00:35:55.542Z",
"EndTime": "2021-01-11T01:06:31Z",
"StatusCode": "Cancelled",
"StatusMessage": "Instance failed to complete user's Lifecycle Action:
Lifecycle Action with token e85eb647-4fe0-4909-b341-a6c42d8aba1f was abandoned: Lifecycle
Action Completed with ABANDON Result",
"Progress": 100,
"Details": "{\"Subnet ID\":\"subnet-5ea0c127\",\"Availability Zone\":\"us-
west-2b\"...}",
"AutoScalingGroupARN": "arn:aws:autoscaling:us-
west-2:123456789012:autoScalingGroup:283179a2-
f3ce-423d-93f6-66bb518232f7:autoScalingGroupName/my-asg"

329
Amazon EC2 Auto Scaling User Guide
Retrieving an error message

},
...
]
}

For a description of the ﬁelds in the output, see Activity in the Amazon EC2 Auto Scaling API Reference.

To view scaling activities for a deleted Auto Scaling group, add the --include-deleted-groups
option to the describe-scaling-activities command as follows.

aws autoscaling describe-scaling-activities --auto-scaling-group-name my-asg --include-

deleted-groups

The following is an example response, with a scaling activity for a deleted group.

{
"Activities": [
{
"ActivityId": "e1f5de0e-f93e-1417-34ac-092a76fba220",
"AutoScalingGroupName": "my-asg",
"Description": "Launching a new EC2 instance. Status Reason: Your Spot request
price of 0.001 is lower than the minimum required Spot request fulfillment price of
0.0031. Launching EC2 instance failed.",
"Cause": "At 2021-01-13T20:47:24Z a user request update of AutoScalingGroup
constraints to min: 1, max: 5, desired: 3 changing the desired capacity from 0 to 3. At
2021-01-13T20:47:27Z an instance was started in response to a difference between desired
and actual capacity, increasing the capacity from 0 to 3.",
"StartTime": "2021-01-13T20:47:30.094Z",
"EndTime": "2021-01-13T20:47:30Z",
"StatusCode": "Failed",
"StatusMessage": "Your Spot request price of 0.001 is lower than the minimum
required Spot request fulfillment price of 0.0031. Launching EC2 instance failed.",
"Progress": 100,
"Details": "{\"Subnet ID\":\"subnet-5ea0c127\",\"Availability Zone\":\"us-
west-2b\"...}",
"AutoScalingGroupState": "Deleted",
"AutoScalingGroupARN": "arn:aws:autoscaling:us-
west-2:123456789012:autoScalingGroup:283179a2-
f3ce-423d-93f6-66bb518232f7:autoScalingGroupName/my-asg"
},
...
]
}

The following tables list the types of error messages and provide links to the troubleshooting resources
that you can use to troubleshoot issues.

Launch issues

Issue Error message

Availability Zone The requested Availability Zone is no longer supported. Please retry your
request... (p. 334)

Block device mapping Invalid device name <device name> / Invalid device name upload. Launching
EC2 instance failed. (p. 335)

Block device mapping Value (<name associated with the instance storage device>) for parameter
virtualName is invalid... (p. 335)

Block device mapping EBS block device mappings not supported for instance-store AMIs. (p. 336)

330
Amazon EC2 Auto Scaling User Guide
Retrieving an error message

Issue Error message

Instance conﬁguration The requested conﬁguration is currently not supported. (p. 333)

Instance type and Your requested instance type (<instance type>) is not supported in your
Availability Zone requested Availability Zone (<instance Availability Zone>)... (p. 334)

Insuﬃcient instance We currently do not have suﬃcient <instance type> capacity in the
capacity in Availability Availability Zone you requested... Launching EC2 instance failed. (p. 337)
Zone

Insuﬃcient instance There is no Spot capacity available that matches your request. Launching
capacity for a Spot EC2 instance failed. (p. 337)
request

Key pair The key pair <key pair associated with your EC2 instance> does not exist.
Launching EC2 instance failed. (p. 334)

Placement group Placement groups may not be used with instances of type 'm1.large'.
Launching EC2 instance failed. (p. 336)

Quota limits <number of instances> instance(s) are already running. Launching EC2
instance failed. (p. 338)

Security group The security group <name of the security group> does not exist. Launching
EC2 instance failed. (p. 334)

Service-linked role Client.InternalError: Client error on launch. (p. 336)

Spot price too low Your Spot request price of 0.015 is lower than the minimum required Spot
request fulﬁllment price of 0.0735... (p. 335)

AMI issues

Issue Error message

AMI ID The AMI ID <ID of your AMI> does not exist. Launching EC2 instance
failed. (p. 338)

AMI ID AMI <AMI ID> is pending, and cannot be run. Launching EC2 instance
failed. (p. 339)

AMI ID Value (<ami ID>) for parameter virtualName is invalid. (p. 339)

Architecture mismatch The requested instance type's architecture (i386) does not match the
architecture in the manifest for ami-6622f00f (x86_64). Launching EC2
instance failed. (p. 339)

Load balancer issues

Issue Error message

Cannot find load Cannot find Load Balancer <your launch environment>. Validating load
balancer balancer configuration failed. (p. 340)

Instances in VPC EC2 instance <instance ID> is not in VPC. Updating load balancer
conﬁguration failed. (p. 340)

331
Amazon EC2 Auto Scaling User Guide
Additional troubleshooting resources

Issue Error message

No active load balancer There is no ACTIVE Load Balancer named <load balancer name>. Updating
load balancer conﬁguration failed. (p. 340)

Additional troubleshooting resources

The following pages provide additional information for troubleshooting issues with Amazon EC2 Auto
Scaling.

• Amazon EC2 Auto Scaling service quotas (p. 10)

• Verifying a scaling activity for an Auto Scaling group (p. 176)
• Viewing monitoring graphs in the Amazon EC2 Auto Scaling console (p. 277)
• Health checks for Auto Scaling instances (p. 259)
• Considerations and limitations (p. 205) (lifecycle hooks)
• Completing a lifecycle action (p. 213) (lifecycle hooks)
• Launching Auto Scaling instances in a VPC (p. 112)
• Temporarily removing instances from your Auto Scaling group (p. 248)
• Disabling a scaling policy for an Auto Scaling group (p. 177)
• Suspending and resuming a process for an Auto Scaling group (p. 253)
• Controlling which Auto Scaling instances terminate during scale in (p. 236)
• Deleting your Auto Scaling infrastructure (p. 136)

The following AWS resources can also be of help:

• Amazon EC2 Auto Scaling topics in the AWS Knowledge Center

• Amazon EC2 Auto Scaling questions on AWS re:Post
• Amazon EC2 Auto Scaling Discussion Forums
• Amazon EC2 Auto Scaling posts in the AWS Compute Blog
• Troubleshooting CloudFormation in the AWS CloudFormation User Guide

Troubleshooting often requires iterative query and discovery by an expert or from a community of
helpers. If you continue to experience issues after trying the suggestions on this page, contact AWS
Support (in the AWS Management Console, click Support, Support Center) or ask a question on AWS
re:Post using the Amazon EC2 Auto Scaling tag.

Troubleshooting Amazon EC2 Auto Scaling: EC2

instance launch failures
This page provides information about your EC2 instances that fail to launch, potential causes, and the
steps you can take to resolve the issues.

To retrieve an error message, see Retrieving an error message from scaling activities (p. 329).

When your EC2 instances fail to launch, you might get one or more of the following error messages:

332
Amazon EC2 Auto Scaling User Guide
The requested conﬁguration is currently not supported.

Launch issues
• The requested configuration is currently not supported. (p. 333)
• The security group <name of the security group> does not exist. Launching EC2 instance
failed. (p. 334)
• The key pair <key pair associated with your EC2 instance> does not exist. Launching EC2 instance
failed. (p. 334)
• The requested Availability Zone is no longer supported. Please retry your request... (p. 334)
• Your requested instance type (<instance type>) is not supported in your requested Availability Zone
(<instance Availability Zone>)... (p. 334)
• Your Spot request price of 0.015 is lower than the minimum required Spot request fulfillment price
of 0.0735... (p. 335)
• Invalid device name <device name> / Invalid device name upload. Launching EC2 instance
failed. (p. 335)
• Value (<name associated with the instance storage device>) for parameter virtualName is
invalid... (p. 335)
• EBS block device mappings not supported for instance-store AMIs. (p. 336)
• Placement groups may not be used with instances of type 'm1.large'. Launching EC2 instance
failed. (p. 336)
• Client.InternalError: Client error on launch. (p. 336)
• We currently do not have sufficient <instance type> capacity in the Availability Zone you requested...
Launching EC2 instance failed. (p. 337)
• There is no Spot capacity available that matches your request. Launching EC2 instance
failed. (p. 337)
• <number of instances> instance(s) are already running. Launching EC2 instance failed. (p. 338)

The requested conﬁguration is currently not

supported.
• Cause: Some options in your launch template or launch conﬁguration might not be compatible with
the instance type, or the instance conﬁguration might not be supported in your requested AWS Region
or Availability Zones.
• Solution:

Try a diﬀerent instance conﬁguration. To search for an instance type that meets your requirements, see
Finding an Amazon EC2 instance type in the Amazon EC2 User Guide for Linux Instances.

For further guidance to resolve this issue, check the following:

• Ensure that you have chosen an AMI that is supported by your instance type. For example, if the
instance type uses an Arm-based AWS Graviton processor instead of an Intel Xeon processor, you
need an Arm-compatible AMI.
• Test that the instance type is available in your requested Region and Availability Zones. The newest
generation instance types might not yet be available in a given Region or Availability Zone. The
older generation instance types might not be available in newer Regions and Availability Zones. To
search for instance types oﬀered by location (Region or Availability Zone), use the describe-instance-
type-oﬀerings command. For more information, see Finding an Amazon EC2 instance type in the
Amazon EC2 User Guide for Linux Instances.
• If you use Dedicated Instances or Dedicated Hosts, ensure that you have chosen an instance type
that's supported as a Dedicated Instance or Dedicated Host.

333
Amazon EC2 Auto Scaling User Guide
The security group <name of the security group>
does not exist. Launching EC2 instance failed.

The security group <name of the security group>

does not exist. Launching EC2 instance failed.
• Cause: The security group specified in your launch template or launch configuration might have been
deleted.
• Solution:
1. Use the describe-security-groups command to get the list of the security groups associated with
your account.
2. From the list, select the security groups to use. To create a security group instead, use the create-
security-group command.
3. Create a new launch template or launch configuration.
4. Update your Auto Scaling group with the new launch template or launch configuration using the
update-auto-scaling-group command.

The key pair <key pair associated with your EC2

instance> does not exist. Launching EC2 instance
failed.
• Cause: The key pair that was used when launching the instance might have been deleted.
• Solution:
1. Use the describe-key-pairs command to get the list of the key pairs available to you.
2. From the list, select the key pair to use. To create a key pair instead, use the create-key-pair
command.
3. Create a new launch template or launch conﬁguration.
4. Update your Auto Scaling group with the new launch template or launch conﬁguration using the
update-auto-scaling-group command.

The requested Availability Zone is no longer

supported. Please retry your request...
• Error message: The requested Availability Zone is no longer supported. Please retry your request by
not specifying an Availability Zone or choosing <list of available Availability Zones>. Launching EC2
instance failed.
• Cause: The Availability Zone associated with your Auto Scaling group might not be currently available.
• Solution: Update your Auto Scaling group with the recommendations in the error message.

Your requested instance type (<instance type>) is

not supported in your requested Availability Zone
(<instance Availability Zone>)...
• Error message: Your requested instance type (<instance type>) is not supported in your requested
Availability Zone (<instance Availability Zone>). Please retry your request by not specifying an

334
Amazon EC2 Auto Scaling User Guide
Your Spot request price of 0.015 is
lower than the minimum required Spot
request fulﬁllment price of 0.0735...
Availability Zone or choosing <list of Availability Zones that supports the instance type>. Launching
EC2 instance failed.
• Cause: The instance type you chose might not be currently available in the Availability Zones speciﬁed
in your Auto Scaling group.
• Solution: Update your Auto Scaling group with the recommendations in the error message.

Your Spot request price of 0.015 is lower than the

minimum required Spot request fulﬁllment price of
0.0735...
• Cause: The Spot maximum price in your request is lower than the Spot price for the instance type that
you selected.
• Solution: Submit a new request with a higher Spot maximum price (possibly the On-Demand price).
Previously, the Spot price you paid was based on bidding. Today, you pay the current Spot price. By
setting your maximum price higher, it gives the Amazon EC2 Spot service a better chance of launching
and maintaining your required amount of capacity.

Invalid device name <device name> / Invalid device

name upload. Launching EC2 instance failed.
• Cause 1: The block device mappings in your launch template or launch configuration might contain
block device names that are not available or currently not supported.
• Solution:
1. Verify which device names are available for your specific instance configuration. For more details
on device naming, see Device names on Linux instances in the Amazon EC2 User Guide for Linux
Instances.
2. Manually create an Amazon EC2 instance that is not part of the Auto Scaling group and investigate
the problem. If the block device naming configuration conflicts with the names in the Amazon
Machine Image (AMI), the instance will fail during launch. For more information, see Block device
mappings in the Amazon EC2 User Guide for Linux Instances.
3. After you confirm that your instance launched successfully, use the describe-volumes command to
see how the volumes are exposed to the instance.
4. Create a new launch template or launch configuration using the device name listed in the volume
description.
5. Update your Auto Scaling group with the new launch template or launch configuration using the
update-auto-scaling-group command.

Value (<name associated with the instance storage

device>) for parameter virtualName is invalid...
• Error message: Value (<name associated with the instance storage device>) for parameter virtualName
is invalid. Expected format: 'ephemeralNUMBER'. Launching EC2 instance failed.
• Cause: The format speciﬁed for the virtual name associated with the block device is incorrect.
• Solution:

335
Amazon EC2 Auto Scaling User Guide
EBS block device mappings not
supported for instance-store AMIs.

1. Create a new launch template or launch conﬁguration by specifying the device name in the
virtualName parameter. For information about the device name format, see Device naming on
Linux instances in the Amazon EC2 User Guide for Linux Instances.
2. Update your Auto Scaling group with the new launch template or launch conﬁguration using the
update-auto-scaling-group command.

EBS block device mappings not supported for

instance-store AMIs.
• Cause: The block device mappings specified in the launch template or launch configuration are not
supported on your instance.
• Solution:
1. Create a new launch template or launch configuration with block device mappings supported by
your instance type. For more information, see Block device mapping in the Amazon EC2 User Guide
for Linux Instances.
2. Update your Auto Scaling group with the new launch template or launch configuration using the
update-auto-scaling-group command.

Placement groups may not be used with instances of

type 'm1.large'. Launching EC2 instance failed.
• Cause: Your cluster placement group contains an invalid instance type.
• Solution:
1. For information about valid instance types supported by the placement groups, see Placement
groups in the Amazon EC2 User Guide for Linux Instances.
2. Follow the instructions detailed in the Placement groups to create a new placement group.
3. Alternatively, create a new launch template or launch conﬁguration with the supported instance
type.
4. Update your Auto Scaling group with a new placement group, launch template, or launch
conﬁguration using the update-auto-scaling-group command.

Client.InternalError: Client error on launch.

• Problem: Amazon EC2 Auto Scaling tries to launch an instance that has an encrypted EBS volume, but
the service-linked role does not have access to the AWS KMS customer managed key used to encrypt
it. For more information, see Required AWS KMS key policy for use with encrypted volumes (p. 321).
• Cause 1: You need a key policy that gives permission to use the customer managed key to the proper
service-linked role.
• Solution 1: Allow the service-linked role to use the customer managed key as follows:
1. Determine which service-linked role to use for this Auto Scaling group.
2. Update the key policy on the customer managed key and allow the service-linked role to use the
customer managed key.
3. Update the Auto Scaling group to use the service-linked role.

For an example of a key policy that lets the service-linked role use the customer managed key, see
Example 1: Key policy sections that allow access to the customer managed key (p. 323).

336
Amazon EC2 Auto Scaling User Guide
We currently do not have sufficient <instance
type> capacity in the Availability Zone you
requested... Launching EC2 instance failed.
• Cause 2: If the customer managed key and Auto Scaling group are in different AWS accounts, you need
to configure cross-account access to the customer managed key in order to give permission to use the
customer managed key to the proper service-linked role.
• Solution 2: Allow the service-linked role in the external account to use the customer managed key in
the local account as follows:
1. Update the key policy on the customer managed key to allow the Auto Scaling group account access
to the customer managed key.
2. Define an IAM user or role in the Auto Scaling group account that can create a grant.
3. Determine which service-linked role to use for this Auto Scaling group.
4. Create a grant to the customer managed key with the proper service-linked role as the grantee
principal.
5. Update the Auto Scaling group to use the service-linked role.

For more information, see Example 2: Key policy sections that allow cross-account access to the
customer managed key (p. 324).
• Solution 3: Use a customer managed key in the same AWS account as the Auto Scaling group.
1. Copy and re-encrypt the snapshot with another customer managed key that belongs to the same
account as the Auto Scaling group.
2. Allow the service-linked role to use the new customer managed key. See the steps for Solution 1.

We currently do not have suﬃcient <instance type>

capacity in the Availability Zone you requested...
Launching EC2 instance failed.
• Error message: We currently do not have suﬃcient <instance type> capacity in the Availability Zone
you requested (<requested Availability Zone>). Our system will be working on provisioning additional
capacity. You can currently get <instance type> capacity by not specifying an Availability Zone in your
request or choosing <list of Availability Zones that currently supports the instance type>. Launching
EC2 instance failed.
• Cause: At this time, Amazon EC2 cannot support your instance type in your requested Availability
Zone.
• Solution:

To resolve the issue, try the following:

• Wait a few minutes and then submit your request again; capacity can shift frequently.
• Submit a new request following the recommendations in the error message.
• Submit a new request with a reduced number of instances (which you can increase at a later stage).

There is no Spot capacity available that matches your

request. Launching EC2 instance failed.
• Cause: At this time, there isn't enough spare capacity to fulﬁll your request for Spot Instances.
• Solution:

To resolve the issue, try the following:

• Wait a few minutes; capacity can shift frequently. The Spot request continues to automatically make
the launch request until capacity becomes available. When capacity becomes available, the Amazon
EC2 Spot service fulﬁlls the Spot request.

337
Amazon EC2 Auto Scaling User Guide
<number of instances> instance(s) are already
running. Launching EC2 instance failed.

• Follow the best practice of using a diverse set of instance types so that you are not reliant on
one speciﬁc instance type. For more information, including a list of best practices for using
Spot Instances successfully, see Auto Scaling groups with multiple instance types and purchase
options (p. 55).
• Submit a new request with a reduced number of instances (which you can increase at a later stage).

<number of instances> instance(s) are already

running. Launching EC2 instance failed.
• Cause: You have reached the limit on the number of instances that you can launch in a Region. When
you create your AWS account, we set default limits on the number of instances you can run on a per-
Region basis.
• Solution:

To resolve the issue, try the following:

• If your current limits aren't adequate for your needs, you can request a quota increase on a per-
Region basis. For more information, see Amazon EC2 service quotas in the Amazon EC2 User Guide
for Linux Instances.
• Submit a new request with a reduced number of instances (which you can increase at a later stage).

Troubleshooting Amazon EC2 Auto Scaling: AMI

issues
This page provides information about the issues associated with your AMIs, potential causes, and the
steps you can take to resolve the issues.

To retrieve an error message, see Retrieving an error message from scaling activities (p. 329).

When your EC2 instances fail to launch due to issues with your AMI, you might get one or more of the
following error messages.

AMI issues
• The AMI ID <ID of your AMI> does not exist. Launching EC2 instance failed. (p. 338)
• AMI <AMI ID> is pending, and cannot be run. Launching EC2 instance failed. (p. 339)
• Value (<ami ID>) for parameter virtualName is invalid. (p. 339)
• The requested instance type's architecture (i386) does not match the architecture in the manifest for
ami-6622f00f (x86_64). Launching EC2 instance failed. (p. 339)

The AMI ID <ID of your AMI> does not exist.

Launching EC2 instance failed.
• Cause: The AMI might have been deleted after creating the launch template or launch configuration.
• Solution:
1. Create a new launch template or launch configuration using a valid AMI.
2. Update your Auto Scaling group with the new launch template or launch configuration using the
update-auto-scaling-group command.

338
Amazon EC2 Auto Scaling User Guide
AMI <AMI ID> is pending, and cannot
be run. Launching EC2 instance failed.

AMI <AMI ID> is pending, and cannot be run.

Launching EC2 instance failed.
• Cause: You might have just created your AMI (by taking a snapshot of a running instance or any other
way), and it might not be available yet.
• Solution: You must wait for your AMI to be available and then create your launch template or launch
conﬁguration.

Value (<ami ID>) for parameter virtualName is

invalid.
• Cause: Incorrect value. The virtualName parameter refers to the virtual name associated with the
device.
• Solution:
1. Create a new launch template or launch conﬁguration by specifying the name of the virtual device
of your instance for the virtualName parameter.
2. Update your Auto Scaling group with the new launch template or launch conﬁguration using the
update-auto-scaling-group command.

The requested instance type's architecture (i386)

does not match the architecture in the manifest for
ami-6622f00f (x86_64). Launching EC2 instance
failed.
• Cause: The architecture of the InstanceType mentioned in your launch template or launch
configuration does not match the image architecture.
• Solution:
1. Create a new launch template or launch configuration using the AMI architecture that matches the
architecture of the requested instance type.
2. Update your Auto Scaling group with the new launch template or launch configuration using the
update-auto-scaling-group command.

Troubleshooting Amazon EC2 Auto Scaling: Load

balancer issues
This page provides information about issues caused by the load balancer associated with your Auto
Scaling group, potential causes, and the steps you can take to resolve the issues.

To retrieve an error message, see Retrieving an error message from scaling activities (p. 329).

When your EC2 instances fail to launch due to issues with the load balancer associated with your Auto
Scaling group, you might get one or more of the following error messages.

Load balancer issues

339
Amazon EC2 Auto Scaling User Guide
Cannot ﬁnd Load Balancer <your launch environment>.
Validating load balancer conﬁguration failed.

• Cannot find Load Balancer <your launch environment>. Validating load balancer configuration
failed. (p. 340)
• There is no ACTIVE Load Balancer named <load balancer name>. Updating load balancer
configuration failed. (p. 340)
• EC2 instance <instance ID> is not in VPC. Updating load balancer configuration failed. (p. 340)
• EC2 instance <instance ID> is in VPC. Updating load balancer configuration failed. (p. 340)

Cannot ﬁnd Load Balancer <your launch

environment>. Validating load balancer conﬁguration
failed.
• Cause 1: The load balancer has been deleted.
• Solution 1:
1. Check to see if your load balancer still exists. You can use the describe-load-balancers command.
2. If you see your load balancer listed in the response, see Cause 2.
3. If you do not see your load balancer listed in the response, you can either create a new load
balancer and then create a new Auto Scaling group or you can create a new Auto Scaling group
without the load balancer.
• Cause 2: The load balancer name was not speciﬁed in the right order when creating the Auto Scaling
group.
• Solution 2: Create a new Auto Scaling group and specify the load balancer name at the end.

There is no ACTIVE Load Balancer named

<load balancer name>. Updating load balancer
conﬁguration failed.
• Cause: The speciﬁed load balancer might have been deleted.
• Solution: You can either create a new load balancer and then create a new Auto Scaling group or
create a new Auto Scaling group without the load balancer.

EC2 instance <instance ID> is not in VPC. Updating

load balancer conﬁguration failed.
• Cause: The speciﬁed instance does not exist in the VPC.
• Solution: You can either delete your load balancer associated with the instance or create a new Auto
Scaling group.

EC2 instance <instance ID> is in VPC. Updating load

balancer conﬁguration failed.
• Cause: The load balancer is in EC2-Classic but the Auto Scaling group is in a VPC.

340
Amazon EC2 Auto Scaling User Guide
Launch template issues

• Solution: Ensure that the load balancer and the Auto Scaling group are in the same network (EC2-
Classic or a VPC).

Troubleshooting Amazon EC2 Auto Scaling: Launch

templates
Use the following information to help you diagnose and ﬁx common permission issues that you might
encounter when using a launch template with your Auto Scaling group.
Note
For other errors that you might receive during Auto Scaling group creation that are associated
with your launch template, see Troubleshooting Amazon EC2 Auto Scaling: EC2 instance launch
failures (p. 332).

You are not authorized to perform this operation

Problem: When you try to specify a launch template, you get the "You are not authorized to perform this
operation" error.

Cause 1: If you are attempting to use a launch template, and the IAM credentials that you are using
do not have suﬃcient permissions, you receive an error that you're not authorized to use the launch
template.

Solution 1: Verify that the IAM user or role that you are using to make the request has permissions to
call the EC2 API actions you need, including the ec2:RunInstances action. If you speciﬁed any tags in
your launch template, you must also have permission to use the ec2:CreateTags action. For a topic
that shows how you might create your own policy to allow just what you want your IAM user or role to
be able to do, see Launch template support (p. 316).

Solution 2: Verify that your IAM user or role is using the AmazonEC2FullAccess policy. This AWS
managed policy grants full access to all Amazon EC2 resources and related services, including Amazon
EC2 Auto Scaling, CloudWatch, and Elastic Load Balancing.

Cause 2: If you are attempting to use a launch template that specifies an instance profile, you must have
IAM permission to pass the IAM role that is associated with the instance profile.

Solution 3: Verify that the IAM user or role that you are using to make the request has the correct
permissions to pass the speciﬁed role to the Amazon EC2 Auto Scaling service. For more information, see
IAM role for applications that run on Amazon EC2 instances (p. 320).

For further troubleshooting topics related to instance proﬁles, see Troubleshooting Amazon EC2 and IAM
in the IAM User Guide.

Troubleshooting Amazon EC2 Auto Scaling: Health

checks
This page provides information about your EC2 instances that terminate due to a health check. It
describes potential causes, and the steps that you can take to resolve the issues.

To retrieve an error message, see Retrieving an error message from scaling activities (p. 329).

Health check issues

341
Amazon EC2 Auto Scaling User Guide
An instance was taken out of service in
response to an EC2 instance status check failure

• An instance was taken out of service in response to an EC2 instance status check failure (p. 342)
• An instance was taken out of service in response to an EC2 scheduled reboot (p. 342)
• An instance was taken out of service in response to an EC2 health check that indicated it had been
terminated or stopped (p. 343)
• An instance was taken out of service in response to an ELB system health check failure (p. 343)

Note
You can be notified when Amazon EC2 Auto Scaling terminates the instances in your Auto
Scaling group, including when the cause of instance termination is not the result of a scaling
activity. For more information, see Getting Amazon SNS notifications when your Auto Scaling
group scales (p. 281).
The sections that follow describe the most common health check errors and causes that you'll
encounter. If you have a different issue, see the following AWS Knowledge Center articles for
additional troubleshooting help:

• Why did Amazon EC2 Auto Scaling terminate an instance?

• Why didn’t Amazon EC2 Auto Scaling terminate an unhealthy instance?

An instance was taken out of service in response to

an EC2 instance status check failure
Problem: Auto Scaling instances fail the Amazon EC2 status checks.

Cause 1: If there are issues that cause Amazon EC2 to consider the instances in your Auto Scaling group
impaired, Amazon EC2 Auto Scaling automatically replaces the impaired instances as part of its health
check. Status checks are built into Amazon EC2, so they cannot be disabled or deleted. When an instance
status check fails, you typically must address the problem yourself by making instance conﬁguration
changes until your application is no longer exhibiting any problems.

Solution 1: To address this issue, follow these steps:

1. Manually create an Amazon EC2 instance that is not part of the Auto Scaling group and investigate
the problem. For general help with investigating impaired instances, see Troubleshoot instances with
failed status checks in the Amazon EC2 User Guide for Linux Instances and Troubleshooting Windows
Instances in the Amazon EC2 User Guide for Windows Instances.
2. After you conﬁrm that your instance launched successfully and is healthy, deploy a new, error-free
instance conﬁguration to the Auto Scaling group.
3. Delete the instance that you created to avoid ongoing charges to your AWS account.

Cause 2: There is a mismatch between the health check grace period and the instance startup time.

Solution 2: Edit the health check grace period for your Auto Scaling group to an appropriate time period
for your application. Instances launched in an Auto Scaling group require suﬃcient warm-up time (grace
period) to prevent early termination due to a health check replacement. For more information, see
Health check grace period (p. 261).

An instance was taken out of service in response to

an EC2 scheduled reboot
Problem: Auto Scaling instances are replaced immediately when a scheduled event indicates a problem
with the instance.

342
Amazon EC2 Auto Scaling User Guide
An instance was taken out of service in
response to an EC2 health check that
indicated it had been terminated or stopped
Cause: Amazon EC2 Auto Scaling replaces instances with a future scheduled maintenance or retirement
event before the scheduled time.

Solution: These events do not occur frequently. If you do not want instances to be replaced due to
a scheduled event, you can suspend the health check process for an Auto Scaling group. For more
information, see Suspending and resuming a process for an Auto Scaling group (p. 253).

Alternatively, if you need something to happen on the instance that is terminating, or on the instance
that is starting up, you can use lifecycle hooks. These hooks allow you to perform a custom action as
Amazon EC2 Auto Scaling launches or terminates instances. For more information, see Amazon EC2 Auto
Scaling lifecycle hooks (p. 204).

An instance was taken out of service in response

to an EC2 health check that indicated it had been
terminated or stopped
Problem: Auto Scaling instances that have been stopped, rebooted, or terminated are replaced.

Cause 1: A user manually stopped, rebooted, or terminated the instance.

Solution 1: If a health check fails because a user manually stopped, rebooted, or terminated the
instance, this is due to how Amazon EC2 Auto Scaling health checks work. The instance must be healthy
and reachable. If you need to reboot the instances in your Auto Scaling group, we recommend that you
put the instances on standby ﬁrst. For more information, see Temporarily removing instances from your
Auto Scaling group (p. 248).

Note that when you terminate instances manually, termination lifecycle hooks and Elastic Load
Balancing deregistration (and connection draining) must be completed before the instance is actually
terminated.

Cause 2: Amazon EC2 Auto Scaling attempts to replace Spot Instances after the Amazon EC2 Spot
service interrupts the instances, because the Spot price increases above your maximum price or capacity
is no longer available.

Solution 2: There is no guarantee that a Spot Instance exists to fulﬁll the request at any given point in
time. However, you can try the following:

• Use a higher Spot maximum price (possibly the On-Demand price). By setting your maximum price
higher, it gives the Amazon EC2 Spot service a better chance of launching and maintaining your
required amount of capacity.
• Increase the number of diﬀerent capacity pools that you can launch instances from by running
multiple instance types in multiple Availability Zones. For more information, see Auto Scaling groups
with multiple instance types and purchase options (p. 55).
• If you use multiple instance types, consider enabling the Capacity Rebalancing feature. This is
useful if you want the Amazon EC2 Spot service to attempt to launch a new Spot Instance before
a running instance is terminated. For more information, see Amazon EC2 Auto Scaling Capacity
Rebalancing (p. 263).

An instance was taken out of service in response to

an ELB system health check failure
Problem: Auto Scaling instances might pass the EC2 status checks. But they might fail the Elastic Load
Balancing health checks for the target groups or Classic Load Balancers with which the Auto Scaling
group is registered.

343
Amazon EC2 Auto Scaling User Guide
An instance was taken out of service in
response to an ELB system health check failure

Cause: If your Auto Scaling group relies on health checks provided by Elastic Load Balancing, Amazon
EC2 Auto Scaling determines the health status of your instances by checking the results of both the EC2
status checks and the Elastic Load Balancing health checks. The load balancer performs health checks by
sending a request to each instance and waiting for the correct response, or by establishing a connection
with the instance. An instance might fail the Elastic Load Balancing health check because an application
running on the instance has issues that cause the load balancer to consider the instance out of service.
For more information, see Adding Elastic Load Balancing health checks to an Auto Scaling group (p. 105).

Solution 1: To pass the Elastic Load Balancing health checks:

• Make note of the success codes that the load balancer is expecting, and verify that your application is
configured correctly to return these codes on success.
• Verify that the security groups for your load balancer and Auto Scaling group are correctly configured.
• Verify that the health check settings of your target groups are correctly configured. You define health
check settings for your load balancer per target group.
• Set the health check grace period for your Auto Scaling group to a long enough time period to support
the number of consecutive successful health checks required before Elastic Load Balancing considers a
newly launched instance healthy.
• Consider adding a launch lifecycle hook to the Auto Scaling group to ensure that the applications on
the instances are ready to accept traffic before they are registered to the load balancer at the end of
the lifecycle hook.
• Verify that the load balancer is configured in the same Availability Zones as your Auto Scaling group.

For more information, see the following topics:

• Health checks for your target groups in the User Guide for Application Load Balancers
• Health checks for your target groups in the User Guide for Network Load Balancers
• Health checks for your target groups in the User Guide for Gateway Load Balancers
• Conﬁgure health checks for your Classic Load Balancer in the User Guide for Classic Load Balancers

Solution 2: Update the Auto Scaling group to disable Elastic Load Balancing health checks.

344
Amazon EC2 Auto Scaling User Guide

Amazon EC2 Auto Scaling resources

The following related resources can help you as you work with this service.

• Amazon EC2: How to connect to your Linux instance – Learn how to connect to the Linux instances
that you launch.
• Amazon EC2: How to connect to your Windows instance – Learn how to connect to the Windows
instances that you launch.
• CloudWatch: Creating a billing alarm to monitor your estimated AWS charges – Learn how to
monitor your estimated charges using CloudWatch.
• CloudFormation: Amazon EC2 Auto Scaling resource type reference – Amazon EC2 Auto Scaling
is integrated with AWS CloudFormation, a service that helps you to model and set up your AWS
resources so that you can spend less time creating and managing your resources and infrastructure.
You create a template that describes all the AWS resources that you want, AWS CloudFormation
provisions and conﬁgures those resources for you. When you use AWS CloudFormation, you can reuse
your template to set up your Amazon EC2 Auto Scaling resources consistently and repeatedly. Describe
your resources once, and then provision the same resources over and over in multiple AWS accounts
and Regions.
• CloudFormation: Auto scaling template snippets – We provide a variety of JSON and YAML
template snippets that you can use to understand how to create your stack templates. You can
ﬁnd additional examples in the Amazon EC2 Auto Scaling resource type reference section of
the AWS CloudFormation User Guide. For examples of Amazon EC2 launch templates, see the
AWS::EC2::LaunchTemplate reference in the AWS CloudFormation User Guide.

The following additional resources are available to help you learn more about Amazon Web Services.

• Classes & Workshops – Links to role-based and specialty courses, in addition to self-paced labs to help
sharpen your AWS skills and gain practical experience.
• AWS Developer Tools – Links to developer tools, SDKs, IDE toolkits, and command line tools for
developing and managing AWS applications.
• AWS Whitepapers – Links to a comprehensive list of technical AWS whitepapers, covering topics such
as architecture, security, and economics and authored by AWS Solutions Architects or other technical
experts.
• AWS Support Center – The hub for creating and managing your AWS Support cases. Also includes
links to other helpful resources, such as forums, technical FAQs, service health status, and AWS Trusted
Advisor.
• AWS Support – The primary webpage for information about AWS Support, a one-on-one, fast-
response support channel to help you build and run applications in the cloud.
• Contact Us – A central contact point for inquiries concerning AWS billing, account, events, abuse, and
other issues.
• AWS Site Terms – Detailed information about our copyright and trademark; your account, license, and
site access; and other topics.

345
Amazon EC2 Auto Scaling User Guide

Document history
The following table describes important additions to the Amazon EC2 Auto Scaling documentation,
beginning in July 2018. For notiﬁcation about updates to this documentation, you can subscribe to the
RSS feed.

update-history-change update-history-description update-history-date

Support for new warm pool You can now hibernate instances February 24, 2022
functionality (p. 346) in a warm pool to stop instances
without deleting their memory
contents (RAM). You can now
also return instances to the
warm pool on scale in, instead
of always terminating instance
capacity that you will need later.
For more information, see Warm
pools for Amazon EC2 Auto
Scaling in the Amazon EC2 Auto
Scaling User Guide.

Guide changes (p. 346) The Amazon EC2 Auto Scaling February 3, 2022
console has been updated with
additional options to help you
start an instance refresh with
skip matching enabled and a
desired conﬁguration speciﬁed.
For more information, see Start
or cancel an instance refresh
(console) in the Amazon EC2
Auto Scaling User Guide.

Custom metrics for predictive You can now choose whether November 24, 2021
scaling policies (p. 346) to use custom metrics when
you create predictive scaling
policies. You can also use metric
math to further customize the
metrics that you include in your
policy. For more information,
see Advanced predictive scaling
policy conﬁgurations using
custom metrics.

New On-Demand allocation You can now choose whether to October 27, 2021
strategy (p. 346) launch On-Demand Instances
based on price (lowest priced
instance types ﬁrst) when you
create an Auto Scaling group
that uses a mixed instances
policy. For more information,
see Allocation strategies in the
Amazon EC2 Auto Scaling User
Guide.

346
Amazon EC2 Auto Scaling User Guide

Attribute-based instance type Amazon EC2 Auto Scaling October 27, 2021
selection (p. 346) adds support for attribute-
based instance type selection.
Instead of manually choosing
instance types, you can express
your instance requirements
as a set of attributes, such as
vCPU, memory, and storage. For
more information, see Creating
an Auto Scaling group using
attribute-based instance type
selection in the Amazon EC2
Auto Scaling User Guide.

Support for filtering groups by You can now filter your Auto October 14, 2021
tags (p. 346) Scaling groups using tag filters
when you retrieve information
about your Auto Scaling groups
using the describe-auto-
scaling-groups command.
For more information, see Use
tags to filter Auto Scaling groups
in the Amazon EC2 Auto Scaling
User Guide.

Guide changes (p. 346) The Amazon EC2 Auto Scaling October 14, 2021
console has been updated
to help you create custom
termination policies with
AWS Lambda. The console
documentation has been
revised accordingly. For more
information, see Using diﬀerent
termination policies (console).

Support for copying launch You can now copy all launch August 9, 2021
configurations to launch configurations in an AWS Region
templates (p. 346) to new launch templates from
the Amazon EC2 Auto Scaling
console. For more information,
see Copy launch configurations
to launch templates in the
Amazon EC2 Auto Scaling User
Guide.

347
Amazon EC2 Auto Scaling User Guide

Expands instance refresh You can now include updates, August 5, 2021
functionality (p. 346) such as a new version of a
launch template, when replacing
instances by adding your desired
conﬁguration to the start-
instance-refresh command.
You can also skip replacing
instances that already have
your desired conﬁguration by
enabling skip matching. For
more information, see Replacing
Auto Scaling instances based
on an instance refresh in the
Amazon EC2 Auto Scaling User
Guide.

Support for custom termination You can now create custom July 29, 2021
policies (p. 346) termination policies with
AWS Lambda. For more
information, see Creating a
custom termination policy with
Lambda. The documentation for
specifying termination policies
has been updated accordingly.

Guide changes (p. 346) The Amazon EC2 Auto Scaling June 3, 2021
console has been updated
and enhanced with additional
features to help you create
scheduled actions with a
time zone speciﬁed. The
documentation for Scheduled
scaling has been revised
accordingly.

gp3 volumes in launch You can now specify gp3 June 2, 2021
conﬁgurations (p. 346) volumes in the block
device mappings for launch
conﬁgurations.

Support for predictive You can now use predictive May 19, 2021
scaling (p. 346) scaling to proactively scale
your Amazon EC2 Auto Scaling
groups using a scaling policy.
For more information, see
Predictive scaling for Amazon
EC2 Auto Scaling in the
Amazon EC2 Auto Scaling User
Guide. With this update, the
AutoScalingServiceRolePolicy
managed policy now includes
permission to call the
cloudwatch:GetMetricData
API action.

348
Amazon EC2 Auto Scaling User Guide

Guide changes (p. 346) You can now access example April 9, 2021
templates for lifecycle hooks
from GitHub. For more
information, see Amazon EC2
Auto Scaling lifecycle hooks in
the Amazon EC2 Auto Scaling
User Guide.

Support for warm You can now balance April 8, 2021

pools (p. 346) performance (minimize cold
starts) and cost (stop over-
provisioning instance capacity)
for applications with long ﬁrst
boot times by adding warm
pools to Auto Scaling groups.
For more information, see Warm
pools for Amazon EC2 Auto
Scaling in the Amazon EC2 Auto
Scaling User Guide.

Support for You can now add checkpoints March 18, 2021
checkpoints (p. 346) to an instance refresh to
replace instances in phases and
perform veriﬁcations on your
instances at speciﬁc points. For
more information, see Adding
checkpoints to an instance
refresh in the Amazon EC2 Auto
Scaling User Guide.

Guide changes (p. 346) Improved documentation March 18, 2021

for using EventBridge with
Amazon EC2 Auto Scaling
events and lifecycle hooks. For
more information, see Using
Amazon EC2 Auto Scaling
with EventBridge and Tutorial:
Conﬁgure a lifecycle hook that
invokes a Lambda function in
the Amazon EC2 Auto Scaling
User Guide.

Support for local time You can now create recurring March 9, 2021
zones (p. 346) scheduled actions in the local
time zone by adding the --
time-zone option to the put-
scheduled-update-group-
action command. If your time
zone observes Daylight Saving
Time (DST), the recurring
action automatically adjusts
for Daylight Saving Time. For
more information, see Scheduled
scaling in the Amazon EC2 Auto
Scaling User Guide.

349
Amazon EC2 Auto Scaling User Guide

Expands functionality for mixed You can now prioritize instance March 8, 2021
instances policies (p. 346) types for your Spot capacity
when you use a mixed instances
policy. Amazon EC2 Auto Scaling
attempts to fulfill priorities on a
best-effort basis but optimizes
for capacity first. For more
information, see Auto Scaling
groups with multiple instance
types and purchase options in
the Amazon EC2 Auto Scaling
User Guide.

Scaling activities for deleted You can now view scaling February 23, 2021
groups (p. 346) activities for deleted Auto
Scaling groups by adding
the --include-deleted-
groups option to the describe-
scaling-activities command.
For more information, see
Troubleshooting Amazon EC2
Auto Scaling in the Amazon EC2
Auto Scaling User Guide.

Console improvements (p. 346) You can now create and attach November 24, 2020
an Application Load Balancer
or Network Load Balancer from
the Amazon EC2 Auto Scaling
console. For more information,
see Create and attach a new
Application Load Balancer or
Network Load Balancer (console)
in the Amazon EC2 Auto Scaling
User Guide.

Multiple network You can now conﬁgure a launch November 23, 2020
interfaces (p. 346) template for an Auto Scaling
group that speciﬁes multiple
network interfaces. For more
information, see Network
interfaces in a VPC.

Multiple launch Multiple launch templates can November 19, 2020

templates (p. 346) now be used with Auto Scaling
groups. For more information,
see Specifying a diﬀerent launch
template for an instance type
in the Amazon EC2 Auto Scaling
User Guide.

350
Amazon EC2 Auto Scaling User Guide

Gateway Load Updated guide to show how to November 10, 2020

Balancers (p. 346) attach a Gateway Load Balancer
to an Auto Scaling group to
ensure that appliance instances
launched by Amazon EC2
Auto Scaling are automatically
registered and deregistered
from the load balancer. For more
information, see Elastic Load
Balancing types and Attaching
a load balancer to your Auto
Scaling group in the Amazon EC2
Auto Scaling User Guide.

Maximum instance You can now reduce the November 9, 2020

lifetime (p. 346) maximum instance lifetime to
one day (86,400 seconds). For
more information, see Replacing
Auto Scaling instances based on
maximum instance lifetime in
the Amazon EC2 Auto Scaling
User Guide.

Capacity Rebalancing (p. 346) You can conﬁgure your Auto November 4, 2020
Scaling group to launch a
replacement Spot Instance
when Amazon EC2 emits a
rebalance recommendation. For
more information, see Amazon
EC2 Auto Scaling Capacity
Rebalancing in the Amazon EC2
Auto Scaling User Guide.

Instance metadata service You can require the use of July 28, 2020
version 2 (p. 346) Instance Metadata Service
Version 2, which is a session-
oriented method for requesting
instance metadata, when using
launch conﬁgurations. For more
information, see Conﬁguring the
instance metadata options in the
Amazon EC2 Auto Scaling User
Guide.

Guide changes (p. 346) Various improvements and July 28, 2020
new console procedures in the
Controlling which Auto Scaling
instances terminate during
scale in, Monitoring your Auto
Scaling instances and groups,
Launch templates, and Launch
conﬁgurations sections of the
Amazon EC2 Auto Scaling User
Guide.

351
Amazon EC2 Auto Scaling User Guide

Instance refresh (p. 346) Start an instance refresh to June 16, 2020
update all instances in your Auto
Scaling group when you make a
conﬁguration change. For more
information, see Replacing Auto
Scaling instances based on an
instance refresh in the Amazon
EC2 Auto Scaling User Guide.

Guide changes (p. 346) Various improvements in the May 6, 2020

Replacing Auto Scaling instances
based on maximum instance
lifetime, Auto Scaling groups
with multiple instance types
and purchase options, Scaling
based on Amazon SQS, and
Tagging Auto Scaling groups and
instances sections of the Amazon
EC2 Auto Scaling User Guide.

Guide changes (p. 346) Various improvements to IAM March 4, 2020

documentation. For more
information, see Launch
template support and Amazon
EC2 Auto Scaling identity-based
policy examples in the Amazon
EC2 Auto Scaling User Guide.

Disable scaling policies (p. 346) You can now disable and February 18, 2020
re-enable scaling policies.
This feature allows you to
temporarily disable a scaling
policy while preserving the
conﬁguration details so that
you can enable the policy again
later. For more information, see
Disabling a scaling policy for
an Auto Scaling group in the
Amazon EC2 Auto Scaling User
Guide.

Add notiﬁcation Amazon EC2 Auto Scaling now February 12, 2020
functionality (p. 346) sends events to your AWS Health
Dashboard when your Auto
Scaling groups cannot scale out
due to a missing security group
or launch template. For more
information, see AWS Health
Dashboard notiﬁcations for
Amazon EC2 Auto Scaling in the
Amazon EC2 Auto Scaling User
Guide.

352
Amazon EC2 Auto Scaling User Guide

Guide changes (p. 346) Various improvements and February 10, 2020
corrections in the How Amazon
EC2 Auto Scaling works with
IAM, Amazon EC2 Auto Scaling
identity-based policy examples,
Required CMK key policy for use
with encrypted volumes, and
Monitoring your Auto Scaling
instances and groups sections
of the Amazon EC2 Auto Scaling
User Guide.

Guide changes (p. 346) Improved documentation for February 6, 2020

Auto Scaling groups that use
instance weighting. Learn
how to use scaling policies
when using "capacity units" to
measure desired capacity. For
more information, see How
scaling policies work and Scaling
adjustment types in the Amazon
EC2 Auto Scaling User Guide.

New "Security" chapter (p. 346) A new Security chapter in the February 4, 2020
Amazon EC2 Auto Scaling User
Guide helps you understand
how to apply the shared
responsibility model when using
Amazon EC2 Auto Scaling. As
part of this update, the user
guide chapter "Controlling
Access to Your Amazon EC2 Auto
Scaling Resources" has been
replaced by a new, more useful
section, Identity and access
management for Amazon EC2
Auto Scaling.

Recommendations for instance AWS Compute Optimizer December 3, 2019

types (p. 346) provides Amazon EC2 instance
recommendations to help
you improve performance,
save money, or both. For
more information, see Getting
recommendations for an
instance type in the Amazon EC2
Auto Scaling User Guide.

353
Amazon EC2 Auto Scaling User Guide

Dedicated Hosts and host Updated guide to show how December 3, 2019
resource groups (p. 346) to create a launch template
that speciﬁes a host resource
group. This allows you to create
an Auto Scaling group with a
launch template that speciﬁes a
BYOL AMI to use on Dedicated
Hosts. For more information,
see Creating a launch template
for an Auto Scaling group in the
Amazon EC2 Auto Scaling User
Guide.

Support for Amazon VPC You can now establish a private November 22, 2019
endpoints (p. 346) connection between your VPC
and Amazon EC2 Auto Scaling.
For more information, see
Amazon EC2 Auto Scaling and
interface VPC endpoints in the
Amazon EC2 Auto Scaling User
Guide.

Maximum instance You can now replace instances November 19, 2019
lifetime (p. 346) automatically by specifying the
maximum length of time that an
instance can be in service. If any
instances are approaching this
limit, Amazon EC2 Auto Scaling
gradually replaces them. For
more information, see Replacing
Auto Scaling instances based on
maximum instance lifetime in
the Amazon EC2 Auto Scaling
User Guide.

Instance weighting (p. 346) For Auto Scaling groups with November 19, 2019
multiple instance types, you
can now optionally specify the
number of capacity units that
each instance type contributes
to the capacity of the group. For
more information, see Instance
weighting for Amazon EC2 Auto
Scaling in the Amazon EC2 Auto
Scaling User Guide.

Minimum number of instance You no longer have to specify September 16, 2019
types (p. 346) additional instance types for
groups of Spot, On-Demand,
and Reserved Instances. For
all Auto Scaling groups, the
minimum is now one instance
type. For more information,
see Auto Scaling groups with
multiple instance types and
purchase options in the Amazon
EC2 Auto Scaling User Guide.

354
Amazon EC2 Auto Scaling User Guide

Support for new Spot allocation Amazon EC2 Auto Scaling now August 12, 2019
strategy (p. 346) supports a new Spot allocation
strategy "capacity-optimized"
that fulﬁlls your request using
Spot Instance pools that are
optimally chosen based on the
available Spot capacity. For more
information, see Auto Scaling
groups with multiple instance
types and purchase options in
the Amazon EC2 Auto Scaling
User Guide.

Guide changes (p. 346) Improved Amazon EC2 Auto August 1, 2019
Scaling documentation in
the Service-linked roles and
Required CMK key policy for use
with encrypted volumes topics.

Support for tagging Amazon EC2 Auto Scaling July 26, 2019
enhancement (p. 346) now adds tags to Amazon EC2
instances as part of the same API
call that launches the instances.
For more information, see
Tagging Auto Scaling groups and
instances.

Guide changes (p. 346) Improved Amazon EC2 Auto June 13, 2019
Scaling documentation in the
Suspending and resuming
scaling processes topic. Updated
Customer managed policy
examples to include an example
policy that allows users to pass
only speciﬁc custom suﬃx
service-linked roles to Amazon
EC2 Auto Scaling.

Support for new Amazon EBS Added support for new Amazon May 13, 2019
feature (p. 346) EBS feature in the launch
template topic. Change the
encryption state of an EBS
volume while restoring from a
snapshot. For more information,
see Creating a launch template
for an Auto Scaling group in the
Amazon EC2 Auto Scaling User
Guide.

355
Amazon EC2 Auto Scaling User Guide

Guide changes (p. 346) Improved Amazon EC2 Auto March 12, 2019
Scaling documentation in the
following sections: Controlling
which Auto Scaling instances
terminate during scale in, Auto
Scaling groups, Auto Scaling
groups with multiple instance
types and purchase options, and
Dynamic scaling for Amazon EC2
Auto Scaling.

Support for combining Provision and automatically November 13, 2018

instance types and purchase scale instances across purchase
options (p. 346) options (Spot, On-Demand,
and Reserved Instances) and
instance types within a single
Auto Scaling group. For more
information, see Auto Scaling
groups with multiple instance
types and purchase options in
the Amazon EC2 Auto Scaling
User Guide.

Updated topic for scaling based Updated guide to explain how July 26, 2018
on Amazon SQS (p. 346) you can use custom metrics to
scale an Auto Scaling group in
response to changing demand
from an Amazon SQS queue. For
more information, see Scaling
based on Amazon SQS in the
Amazon EC2 Auto Scaling User
Guide.

The following table describes important changes to the Amazon EC2 Auto Scaling documentation before
July 2018.

Feature Description Release date

Support for target Set up dynamic scaling for your application in just a few 12 July 2017
tracking scaling steps. For more information, see Target tracking scaling
policies policies for Amazon EC2 Auto Scaling.

Support for Create IAM policies to control access at the resource level. 15 May 2017
resource-level For more information, see Controlling access to your
permissions Amazon EC2 Auto Scaling resources.

Monitoring Auto Scaling group metrics no longer require that you 18 August 2016
improvements enable detailed monitoring. You can now enable group
metrics collection and view metrics graphs from the
Monitoring tab in the console. For more information, see
Monitoring your Auto Scaling groups and instances using
Amazon CloudWatch.

Support for Attach one or more target groups to a new or existing Auto 11 August 2016
Application Load Scaling group. For more information, see Attaching a load
Balancers balancer to your Auto Scaling group.

356
Amazon EC2 Auto Scaling User Guide

Feature Description Release date

Events for lifecycle Amazon EC2 Auto Scaling sends events to EventBridge when 24 February 2016
hooks it calls lifecycle hooks. For more information, see Getting
EventBridge when your Auto Scaling group scales.

Instance Prevent Amazon EC2 Auto Scaling from selecting speciﬁc 07 December
protection instances for termination when scaling in. For more 2015
information, see Instance protection.

Step scaling Create a scaling policy that enables you to scale based on 06 July 2015
policies the size of the alarm breach. For more information, see
Scaling policy types.

Update load Attach a load balancer to or detach a load balancer from 11 June 2015
balancer an existing Auto Scaling group. For more information, see
Attaching a load balancer to your Auto Scaling group.

Support for Link EC2-Classic instances in your Auto Scaling group to a 19 January 2015
ClassicLink VPC, enabling communication between these linked EC2-
Classic instances and instances in the VPC using private IP
addresses. For more information, see Linking EC2-Classic
instances to a VPC.

Lifecycle hooks Hold your newly launched or terminating instances in a 30 July 2014
pending state while you perform actions on them. For more
information, see Amazon EC2 Auto Scaling lifecycle hooks.

Detach instances Detach instances from an Auto Scaling group. For more 30 July 2014
information, see Detach EC2 instances from your Auto
Scaling group.

Put instances into Put instances that are in an InService state into a 30 July 2014
a Standby state Standby state. For more information, see Temporarily
removing instances from your Auto Scaling group.

Manage tags Manage your Auto Scaling groups using the AWS 01 May 2014
Management Console. For more information, see Tagging
Auto Scaling groups and instances.

Support for Launch Dedicated Instances by specifying a placement 23 April 2014

Dedicated tenancy attribute when you create a launch conﬁguration.
Instances For more information, see Instance placement tenancy.

Create a group Create an Auto Scaling group or a launch configuration using 02 January 2014
or launch an EC2 instance. For information about creating a launch
configuration from configuration using an EC2 instance, see Creating a launch
an EC2 instance configuration using an EC2 instance. For information about
creating an Auto Scaling group using an EC2 instance, see
Creating an Auto Scaling group using an EC2 instance.

Attach instances Enable automatic scaling for an EC2 instance by attaching 02 January 2014
the instance to an existing Auto Scaling group. For more
information, see Attach EC2 instances to your Auto Scaling
group.

View account View the limits on Auto Scaling resources for your account. 02 January 2014
limits For more information, see Auto Scaling limits.

357
Amazon EC2 Auto Scaling User Guide

Feature Description Release date

Console support Access Amazon EC2 Auto Scaling using the AWS 10 December
for Amazon EC2 Management Console. For more information, see Getting 2013
Auto Scaling started with Amazon EC2 Auto Scaling.

Assign a public IP Assign a public IP address to an instance launched into a 19 September

address VPC. For more information, see Launching Auto Scaling 2013
instances in a VPC.

Instance Specify an instance termination policy for Amazon EC2 Auto 17 September
termination policy Scaling to use when terminating EC2 instances. For more 2012
information, see Controlling which Auto Scaling instances
terminate during scale in.

Support for IAM Launch EC2 instances with an IAM instance proﬁle. You 11 June 2012
roles can use this feature to assign IAM roles to your instances,
allowing your applications to access other Amazon Web
Services securely. For more information, see Launch Auto
Scaling instances with an IAM role.

Support for Spot Launch Spot Instances with a launch conﬁguration. For more 7 June 2012
Instances information, see Requesting Spot Instances for fault-tolerant
and ﬂexible applications.

Tag groups and Tag Auto Scaling groups and specify that the tag also applies 26 January 2012
instances to EC2 instances launched after the tag was created. For
more information, see Tagging Auto Scaling groups and
instances.

Support for Use Amazon SNS to receive notiﬁcations whenever Amazon 20 July 2011
Amazon SNS EC2 Auto Scaling launches or terminates EC2 instances. For
more information, see Getting SNS notiﬁcations when your
Auto Scaling group scales.

Amazon EC2 Auto Scaling also added the following new

features:

• The ability to set up recurring scaling activities

using cron syntax. For more information, see the
PutScheduledUpdateGroupAction API operation.
• A new configuration setting that allows you to scale
out without adding the launched instance to the load
balancer (LoadBalancer). For more information, see the
ProcessType API data type.
• The ForceDelete flag in the
DeleteAutoScalingGroup operation that tells Amazon
EC2 Auto Scaling to delete the Auto Scaling group with
the instances associated to it without waiting for the
instances to be terminated first. For more information, see
the DeleteAutoScalingGroup API operation.

Scheduled scaling Added support for scheduled scaling actions. For more 2 December 2010
actions information, see Scheduled scaling for Amazon EC2 Auto
Scaling.

Support for Added support for Amazon VPC. For more information, see 2 December 2010
Amazon VPC Launching Auto Scaling instances in a VPC.

358
Amazon EC2 Auto Scaling User Guide

Feature Description Release date

Support for HPC Added support for high performance computing (HPC) 2 December 2010
clusters clusters.

Support for health Added support for using Elastic Load Balancing health 2 December 2010
checks checks with Amazon EC2 Auto Scaling-managed EC2
instances. For more information, see Using ELB health checks
with Auto Scaling.

Support for Removed the older trigger mechanism and redesigned 2 December 2010
CloudWatch Amazon EC2 Auto Scaling to use the CloudWatch alarm
alarms feature. For more information, see Dynamic scaling for
Amazon EC2 Auto Scaling.

Suspend and Added support to suspend and resume scaling processes. 2 December 2010
resume scaling

Support for IAM Added support for IAM. For more information, see 2 December 2010
Controlling access to your Amazon EC2 Auto Scaling
resources.

359

The C# Player's Guide - 5th Edition - 5.0.0
83% (18)
The C# Player's Guide - 5th Edition - 5.0.0
497 pages
Corce
70% (46)
Corce
206 pages
Introduction To Computer Theory by Cohen Solutions Manual
80% (5)
Introduction To Computer Theory by Cohen Solutions Manual
198 pages
Ap Computer Science Principles Practice Exam and Notes 2021
100% (6)
Ap Computer Science Principles Practice Exam and Notes 2021
108 pages
The Ethical Slut PDF
55% (69)
The Ethical Slut PDF
298 pages
Hacking The Art of Exploitation 2nd Edition Jon Erickson
100% (20)
Hacking The Art of Exploitation 2nd Edition Jon Erickson
492 pages
PrepTest 83 - Print and Take Test - 7sage Lsat
100% (3)
PrepTest 83 - Print and Take Test - 7sage Lsat
46 pages
Typography For Lawyers
20% (5)
Typography For Lawyers
9 pages
50 Phone Hacks DR - Brad
58% (19)
50 Phone Hacks DR - Brad
29 pages
One-Page Mythic GME
100% (8)
One-Page Mythic GME
11 pages
AWS Lab Workbook v1.0
93% (14)
AWS Lab Workbook v1.0
127 pages
C# Cheat Sheet
100% (6)
C# Cheat Sheet
12 pages
Learn Python in A Day
100% (14)
Learn Python in A Day
141 pages
All Codes Mobile
100% (1)
All Codes Mobile
53 pages
Behringer X-Touch Editor Preset MIDI2LR User Guide and Installation v2.03
50% (2)
Behringer X-Touch Editor Preset MIDI2LR User Guide and Installation v2.03
2 pages
As DG
No ratings yet
As DG
382 pages
Amazon EC2 Autoscaling
No ratings yet
Amazon EC2 Autoscaling
212 pages
Ec2 Auto Scaling
No ratings yet
Ec2 Auto Scaling
189 pages
Auto Scalling PDF
No ratings yet
Auto Scalling PDF
165 pages
Immersion Day - Auto Scaling Lab
No ratings yet
Immersion Day - Auto Scaling Lab
25 pages
AWS - EC2 Autoscaling
No ratings yet
AWS - EC2 Autoscaling
7 pages
AWS Autoscaling and Load Balancer
No ratings yet
AWS Autoscaling and Load Balancer
5 pages
Auto Scaling FAQs
No ratings yet
Auto Scaling FAQs
10 pages
4.AutoScaling-Elastic Load Balancing
No ratings yet
4.AutoScaling-Elastic Load Balancing
53 pages
Auto Scaling Using Amazon Web Services
No ratings yet
Auto Scaling Using Amazon Web Services
74 pages
Aws Auto Scaling
No ratings yet
Aws Auto Scaling
7 pages
Auto Scaling
No ratings yet
Auto Scaling
16 pages
Auto Scaling
No ratings yet
Auto Scaling
21 pages
05 Auto Scaling
No ratings yet
05 Auto Scaling
13 pages
Autoscaling - Aws
No ratings yet
Autoscaling - Aws
20 pages
Auto Scaling
No ratings yet
Auto Scaling
22 pages
Awsservice
No ratings yet
Awsservice
12 pages
CNC Machining Handbook: Building, Programming, and Implementation
From Everand
CNC Machining Handbook: Building, Programming, and Implementation
Alan Overby
No ratings yet
Auto Scaling
No ratings yet
Auto Scaling
2 pages
Amazon EC2 Autoscaling Groups and Network Load Balancer
No ratings yet
Amazon EC2 Autoscaling Groups and Network Load Balancer
24 pages
Teardowns: Learn How Electronics Work by Taking Them Apart
From Everand
Teardowns: Learn How Electronics Work by Taking Them Apart
Bryan Bergeron
No ratings yet
Implementing Auto Scaling in AWS
No ratings yet
Implementing Auto Scaling in AWS
17 pages
Autoscaling With AWS
No ratings yet
Autoscaling With AWS
15 pages
04 - AWS Basics - Auto Scaling - 20130517
No ratings yet
04 - AWS Basics - Auto Scaling - 20130517
32 pages
Unit III Tcs 750
No ratings yet
Unit III Tcs 750
37 pages
Auto Scaling
No ratings yet
Auto Scaling
13 pages
DevOps-Ultimate-Guide-bbfgrw
No ratings yet
DevOps-Ultimate-Guide-bbfgrw
112 pages
LA 3 Week 3 (1)
No ratings yet
LA 3 Week 3 (1)
5 pages
my
No ratings yet
my
31 pages
Auto Scaling Web Application-group3
No ratings yet
Auto Scaling Web Application-group3
15 pages
10K Blueprint
From Everand
10K Blueprint
Cian O Farrell
5/5 (2)
Amazon EC2 Auto Scaling
No ratings yet
Amazon EC2 Auto Scaling
5 pages
EC2 Autoscalling
No ratings yet
EC2 Autoscalling
27 pages
As Api
No ratings yet
As Api
224 pages
1.4-Amazon EC2 Auto Scaling - Digital Cloud Training
No ratings yet
1.4-Amazon EC2 Auto Scaling - Digital Cloud Training
12 pages
Cloud Computing Seminar
No ratings yet
Cloud Computing Seminar
25 pages
Session-1 AWS Compute (EC2-Auto Scaleing)
No ratings yet
Session-1 AWS Compute (EC2-Auto Scaleing)
19 pages
AWS Cheat Sheet - AWS Auto Scaling
No ratings yet
AWS Cheat Sheet - AWS Auto Scaling
11 pages
Setting Up VM Auto Scaling in AWS Using Stress Test on CPU Utilization
No ratings yet
Setting Up VM Auto Scaling in AWS Using Stress Test on CPU Utilization
3 pages
AWS Sysops Course Labs Guide: Sameh Tawfik
No ratings yet
AWS Sysops Course Labs Guide: Sameh Tawfik
3 pages
ChatGPT for Business: Strategies for Success
From Everand
ChatGPT for Business: Strategies for Success
Matthew C. Smith
1/5 (1)
Autoscaling On AWS - Explained
No ratings yet
Autoscaling On AWS - Explained
37 pages
Amazon Auto Scaling: Developer Guide API Version 2009-05-15
No ratings yet
Amazon Auto Scaling: Developer Guide API Version 2009-05-15
115 pages
as-api
No ratings yet
as-api
225 pages
Amazon EC2 Auto Scaling api reference
No ratings yet
Amazon EC2 Auto Scaling api reference
309 pages
AWS Auto Scaling Group Interview Questions and Answers - Telugu DevOps Guru - Muralidhara Reddy Moole
No ratings yet
AWS Auto Scaling Group Interview Questions and Answers - Telugu DevOps Guru - Muralidhara Reddy Moole
31 pages
Master Blue-Green Deployment in AWS
No ratings yet
Master Blue-Green Deployment in AWS
35 pages
Exercise 7 - ELB
No ratings yet
Exercise 7 - ELB
8 pages
Gray Hat Hacking the Ethical Hacker's
From Everand
Gray Hat Hacking the Ethical Hacker's
Çağatay Şanlı
5/5 (1)
Tips & Traps for Building Decks, Patios, and Porches
From Everand
Tips & Traps for Building Decks, Patios, and Porches
R. Dodge Woodson
No ratings yet
0050+-+Start+and+Stop+Autoscaling
No ratings yet
0050+-+Start+and+Stop+Autoscaling
18 pages
AWS Solution Architect Practical Assignments
No ratings yet
AWS Solution Architect Practical Assignments
52 pages
SLIIT - 2019 - 05 - Cloud - Auto Scaling
No ratings yet
SLIIT - 2019 - 05 - Cloud - Auto Scaling
45 pages
Chapter2 Aws Data Management and Computing
No ratings yet
Chapter2 Aws Data Management and Computing
95 pages
4 - AWS ELB & Auto Scaling
No ratings yet
4 - AWS ELB & Auto Scaling
21 pages
MODULE 10
No ratings yet
MODULE 10
37 pages
4.10 Auto Scaling Basics 101
No ratings yet
4.10 Auto Scaling Basics 101
8 pages
ECS DevelopersGuide
No ratings yet
ECS DevelopersGuide
396 pages
Auto Scaling
No ratings yet
Auto Scaling
5 pages
AI Tools and Prompts
100% (4)
AI Tools and Prompts
94 pages
Eat That Frog
100% (10)
Eat That Frog
124 pages
Introduction To Computer Science
100% (6)
Introduction To Computer Science
202 pages
Coding With JavaScript For Dummies Everything To Know About JavaScript (2020) - 40153
100% (1)
Coding With JavaScript For Dummies Everything To Know About JavaScript (2020) - 40153
247 pages
Linux Cheat Sheet
No ratings yet
Linux Cheat Sheet
4 pages
Structured and Unstructured Maintenance With Example
0% (1)
Structured and Unstructured Maintenance With Example
9 pages
Simple Sabotage Field Manual
100% (2)
Simple Sabotage Field Manual
16 pages
NWO, Illuminati, Freemason, Occult, Bible Prophecy, Conspiracy, Secret Society, Etc. Links
No ratings yet
NWO, Illuminati, Freemason, Occult, Bible Prophecy, Conspiracy, Secret Society, Etc. Links
47 pages
Do You Speak Java
No ratings yet
Do You Speak Java
186 pages
Learn To Code Getting Started Guide
100% (4)
Learn To Code Getting Started Guide
23 pages
The JavaScript Beginner's Handbook
90% (10)
The JavaScript Beginner's Handbook
76 pages
Credit Card Processing System
No ratings yet
Credit Card Processing System
18 pages
Python Programming For Beginners - A Crash Course To Learn Python and Other Recommended Coding
83% (6)
Python Programming For Beginners - A Crash Course To Learn Python and Other Recommended Coding
86 pages
Learning Liquid
100% (1)
Learning Liquid
89 pages
LINUX COMMAND LINE An Introduction To Linux Command Line Environment
No ratings yet
LINUX COMMAND LINE An Introduction To Linux Command Line Environment
174 pages
Learn To Code HTML and CSS Develop Style Websites PDF
100% (2)
Learn To Code HTML and CSS Develop Style Websites PDF
595 pages
How To Use PATS Module Initialization Function
No ratings yet
How To Use PATS Module Initialization Function
5 pages
2017.wu & Shing. Can Likert Scales
No ratings yet
2017.wu & Shing. Can Likert Scales
7 pages
Grameen Phone and Banglalink
No ratings yet
Grameen Phone and Banglalink
5 pages
Vívoactive HR: Owner's Manual
No ratings yet
Vívoactive HR: Owner's Manual
24 pages
BRS20 4TX2FX EEC HL - Techdata
No ratings yet
BRS20 4TX2FX EEC HL - Techdata
3 pages
Chapter Three: Interpolation: Curve Fitting: Fit Function& Data Not Exactly Agree
No ratings yet
Chapter Three: Interpolation: Curve Fitting: Fit Function& Data Not Exactly Agree
21 pages
IR Journal (Printable)
No ratings yet
IR Journal (Printable)
20 pages
ICT S2 TG
No ratings yet
ICT S2 TG
192 pages
New Fmt for Grant
No ratings yet
New Fmt for Grant
13 pages
Technical Requirement and Scope of Works: Item # QTY Details
100% (1)
Technical Requirement and Scope of Works: Item # QTY Details
4 pages
GOIP Sim Server en
No ratings yet
GOIP Sim Server en
18 pages
SrinivasuluReddy-Gaddam-Resume.pdf-2
No ratings yet
SrinivasuluReddy-Gaddam-Resume.pdf-2
2 pages
Tips For Planning A Publication
No ratings yet
Tips For Planning A Publication
4 pages
Chapter 4 Information Gathering: Interactive Methods: Systems Analysis and Design, 9e (Kendall/Kendall)
No ratings yet
Chapter 4 Information Gathering: Interactive Methods: Systems Analysis and Design, 9e (Kendall/Kendall)
12 pages
VMS Presentation 2018
0% (1)
VMS Presentation 2018
17 pages
LC1350 Level Controller: Description
No ratings yet
LC1350 Level Controller: Description
3 pages
Software Engineering Xor Data Science 12-1
No ratings yet
Software Engineering Xor Data Science 12-1
6 pages
Competency Assessment Results Summary
No ratings yet
Competency Assessment Results Summary
1 page
Anki
No ratings yet
Anki
38 pages
Soft Starters For Asynchronous Motors: Presentation
No ratings yet
Soft Starters For Asynchronous Motors: Presentation
30 pages
Breit Et Al. 2010 - Digital Simulation in Lean Project Development
No ratings yet
Breit Et Al. 2010 - Digital Simulation in Lean Project Development
11 pages
6264
No ratings yet
6264
8 pages
Profile of VHTP Companies
No ratings yet
Profile of VHTP Companies
33 pages
Instant ebooks textbook (eBook PDF) GO! with Microsoft Office 365, 2019 Edition Introductory, 1st edition download all chapters
100% (12)
Instant ebooks textbook (eBook PDF) GO! with Microsoft Office 365, 2019 Edition Introductory, 1st edition download all chapters
45 pages
Energy Audit of IIT Campus
No ratings yet
Energy Audit of IIT Campus
56 pages
Dfta Ref
No ratings yet
Dfta Ref
404 pages
Relativity+Terran+1+Payload+User's+Guide Rev2.0
No ratings yet
Relativity+Terran+1+Payload+User's+Guide Rev2.0
56 pages
log
No ratings yet
log
3 pages
Other Statements - V5
No ratings yet
Other Statements - V5
34 pages
Concept Note On RWA Activation
100% (1)
Concept Note On RWA Activation
17 pages