Launch Configuration Referencing Missing Security Groups
Ensures that Auto Scaling launch configurations are not utilizing missing security groups.
Auto Scaling launch configuration should utilize an active security group to ensure safety of managed instances.
Recommended Actions
Follow the appropriate remediation steps below to resolve the issue.
-
Log in to the AWS Management Console.
-
Select the “Services” option and search for EC2.
-
In the EC2 Management console, scroll down and click on the “Launch Configurations” at the bottom.
-
On the “Launch Configuration” page, scroll down and copy the Security Groups attribute value.
-
Click on the “Security Group” name showing as a link to check whether the attached Security group exist or not.
-
If the “Security group” page is displaying the message that “The security group ‘sg-000’ does not exist” then the Auto Scaling launch configurations are utilizing missing security groups.
-
Repeat steps number 2 - 7 to check other groups in the account.
-
Navigate to the EC2 console using the link https://console.aws.amazon.com/ec2/ .
-
In the left navigation panel, choose “Launch Configuration” and select the ASG launch configuration that need to modify.
-
On the “Launch Configuration” page, scroll down and click on the “Copy launch configuration” button.
-
On the “Create launch configuration” page, scroll down and select the “Create a new Security group” option and open the Inbound ports as per the requirements.
-
Click on the “Create launch configuration” button at the bottom to make the changes.
-
Repeat steps number 8 - 12 to ensure that the launch configuration security group has not been deleted.