Control: AWS > PCI v3.2.1 > Auto Scaling > 1 Auto Scaling groups associated with a load balancer should use health checks
This control checks whether your Auto Scaling groups that are associated with a load balancer are using Elastic Load Balancing health checks.
PCI DSS does not require load balancing or highly available configurations. However, this check aligns with AWS best practices.
Remediation
To enable Elastic Load Balancing health checks
- Open the Amazon EC2 console
- On the navigation pane, under
Auto Scaling, choose Auto Scaling Groups - To select the group from the list, choose the right box
- Choose Edit
- For
Health Check Type, choose ELB - For
Health Check Grace Period, enter300 - Choose Save
PCI requirement(s): 2.2
Resource Types
This control targets the following resource types:
Category
In Your Workspace
Developers
- tmod:@turbot/aws-pciv3-2-1#/control/types/autoScalingGroupWithLbUseHealthCheck
- tmod:@turbot/turbot#/control/categories/compliancePci
- turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-pciv3-2-1#/control/types/autoScalingGroupWithLbUseHealthCheck"
Get Controls
Control Type URI
Category URI
GraphQL
CLI