Check if Auto Scaling groups associated with a load balancer use ELB health checks.
autoscaling_group_elb_health_check_enabled
This control checks whether an Amazon EC2 Auto Scaling group that is associated with a load balancer uses Elastic Load Balancing (ELB) health checks. The control fails if the Auto Scaling group doesn't use ELB health checks.
Risk
If ELB health checks are not enabled, the Auto Scaling group might not be able to accurately determine the health of instances, which could impact the availability and reliability of the applications running on these instances.
Run this check with Prowler CLI
prowler aws --checks autoscaling_group_elb_health_check_enabled
ARN template
arn:aws:autoscaling:region:account-id:autoScalingGroup/autoScalingGroupName
Remediation
aws autoscaling update-auto-scaling-group --auto-scaling-group-name <auto-scaling-group-name> --health-check-type ELB
https://docs.aws.amazon.com/securityhub/latest/userguide/autoscaling-controls.html#autoscaling-1
Configure your Auto Scaling groups to use ELB health checks to improve the monitoring and availability of your applications.
Source Code
Resource Type
AwsAutoScalingAutoScalingGroup