AWS Auto Scaling (IAM)

aws compute

Automatically adjusts the number of Amazon EC2 instances or other resources to maintain performance and minimize cost based on demand.

Common permissions

autoscaling:DescribeAutoScalingGroupsautoscaling:DescribeAutoScalingInstancesautoscaling:DescribeScalingActivitiesautoscaling:DescribePoliciesautoscaling:DescribeTagsautoscaling:DescribeAccountLimits

Least-privilege example

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "autoscaling:DescribeAutoScalingGroups",
        "autoscaling:DescribeAutoScalingInstances",
        "autoscaling:DescribeScalingActivities",
        "autoscaling:DescribePolicies",
        "autoscaling:DescribeTags",
        "autoscaling:DescribeAccountLimits"
      ],
      "Resource": "*"
    }
  ]
}

Warnings

Avoid autoscaling:* — grants full control including creating, updating, and deleting Auto Scaling groups and policies.
Avoid autoscaling:DeleteAutoScalingGroup — allows deletion of Auto Scaling groups, potentially terminating all instances.

Resources

AWS referenceservicereference.us-east-1.amazonaws.com/v1/autoscaling/autoscaling.json ↗

API

full doc /v1/iam/autoscaling