EC2 Auto Scaling is introducing a new policy condition key autoscaling:ForceDelete. This condition key is used with the DeleteAutoScalingGroup action to control whether the ForceDelete parameter can be used during deletion, which determines if an Auto Scaling group (ASG) can be deleted while it still contains running instances. You can use this condition key in IAM policies to restrict deletion permissions. This provides a safety measure to prevent accidental deletion of ASGs that still have running instances.
Furthermore, EC2 Auto Scaling now offers deletion protection at the group level. The new deletion-protection configuration can be set either when you create your ASGs or update them. This new feature lets you set enhanced controls based on your workload’s criticality, with multiple protection levels available to safeguard against accidental deletions and help maintain application availability.
Combining the autoscaling:ForceDelete condition key with deletion protection at the group level provides a layered defense against unwanted ASG termination by allowing you to both restrict IAM permissions for force-delete operations and set enhanced protection controls directly on critical ASGs.
The features now available in all AWS Regions and AWS GovCloud (US) Regions. To get started, visit the EC2 Auto Scaling console or refer to our technical documentation for deletion protection and policy condition keys for Amazon EC2 Auto Scaling.
Categories: marketing:marchitecture/compute,general:products/amazon-ec2,general:products/aws-govcloud-us
Source: Amazon Web Services
Latest Posts
- (Updated) Microsoft Viva: Copilot Dashboard – Broader access to M365 Copilot Chat insights [MC1191915]
- Microsoft 365 Copilot: AI audio overview support for pages and additional languages in Viva Connections and SharePoint [MC1221924]
- Microsoft Edge: A refreshed profile flyout experience for better clarity and actionability [MC1221918]
- Configuration change to upload diagnostics in Outlook for Android and iOS [MC1221926]
