Terraform AWS Autoscaling
Auto Scaling groups with launch templates, instance refresh, health checks, scaling policies, mixed instance options, IAM instance profiles, and security group based network controls.
Controls enforced
These compliance controls are checked at terraform plan time.
Quick start
See the Get Started guide and Registry Endpoints for details on how to customize the module for your requirements.
Migration from upstream
Already using terraform-aws-modules? Change only the source URL:
module "autoscaling" {
source = "terraform-aws-modules/autoscaling/aws"
version = "1.0"
}module "autoscaling" {
source = "soc2.compliance.tf/terraform-aws-modules/autoscaling/aws"
version = "1.0"
}Same arguments. Same outputs. Controls are checked at terraform plan. See the Migration Guide for step-by-step instructions.
Reversibility
No lock-in. Switch back by reverting the source URL:
module "autoscaling" {
source = "terraform-aws-modules/autoscaling/aws"
}Run terraform init -upgrade. Terraform state is unchanged — same resource addresses, same provider, no compliance.tf-specific resources. Controls you already applied remain in AWS.
Mapped compliance frameworks
Framework coverage
Which controls from this module are active under each framework endpoint.
| Control | PCI DSS v4.0 | SOC 2 |
|---|---|---|
| EC2 launch templates should use Instance Metadata Service Version 2 (IMDSv2) | ○ | ○ |
| EC2 launch templates should not assign public IPs to network interfaces | ● | ● |
● enforced by default · ○ not activated by this endpoint