lambda function to shutdown idle EC2 instances for over 30 minuntes To create a fucntion that automatically shuts down an EC2 instance when it's idle for more than 30 minutes, you can use a combination of AWS Lambda, CloudWatch Events, and IAM roles. What we are going to do throughout this project
-
Creating IAM policy and Roles for lambda to stop and describe instances
-
Set Up AWS Lambda function
-
Create a Trigger with Event Rule
-
Identify Idle Instances with a python script in the lambda function
-
Implement the Shutdown by checking the last time they was an activity in the instance and subtracting it from the current time, if its equal to 1800 seconds (30 mins)
-
Test and Monitor your lambda function
-
To create an AWS Lambda Function that automatically shuts down an EC2 instance when it's idle for more than 30 minutes, you can use a combination of AWS Lambda , CloudWatch Events, and IAM roles. Here's a high-level overview of the steps involved:
-
Head over to your AWS management console and search for IAM .
Create an IAM policy:On the pane at the left click policy, at the top right corner click create policy, select and open the json_policy file, copy and paste the JSON code snippet on policy editor. Give a name to policy, review and create.
-
Create an IAM Role for Lambda:Now lets head over and create an IAM role that allows Lambda to stop EC2 instances.
Note: We selected Lambda as the Trusted entity and not EC2 because lambda here access the instance not the instance accessing the Lambda.
Still on left pane select ROLES and click create role at the top right corner, on next page select AWS service as trusted entity, under use case select Lambda.
Attach the following policy you created earlier to the role, review and create role.
-
Create an AWS Lambda Function: Now lets head over to the AWS lambda page, on your AWS management console page search for Lambda.
Write a Lambda function in Python that will be triggered periodically by CloudWatch Events. This function will check the last activity time of your EC2 instance(s) and stop them if they have been idle for more than 1 hour.
import boto3 import datetime def lambda_handler(event, context): ec2 = boto3.client('ec2') # Replace 'your-instance-id' with the ID of your EC2 instance instance_id = 'your-instance-id' # Get the instance's launch time response = ec2.describe_instances(InstanceIds=[instance_id]) launch_time = response['Reservations'][0]['Instances'][0]['LaunchTime'] # Calculate the current time current_time = datetime.datetime.now(launch_time.tzinfo) # Calculate the time difference time_difference = current_time - launch_time # If the instance has been idle for more than 1 hour, stop it if time_difference.total_seconds() > 3600: ec2.stop_instances(InstanceIds=[instance_id]) print(f"EC2 instance {instance_id} has been stopped due to inactivity.") else: print(f"EC2 instance {instance_id} is still active.")
-
Create a Schedule using Event Bridge: Create a schedule rule that triggers the Lambda function periodically ( every 15 minutes).
Name Your Schedule
In schedule pattern under occurrence select recurring schedule.
Under schedule type select rate based schedule.
Here you set the time for the to start and stop
Now we will select the target, the target which the eventbridge schedule invoke will be Lambda
Under Lambda function select the function you created earlier.
In settings under enable state toggle it to enable.
Under permission in execution role select “Create new role for this schedule”, this role will allow eventbridge scheduler to send events to the target we selected.
Review and create!!!. Congratulations you successfully setup a lambda function that shutdown an EC2 Instance that has been idle for more than 30 minutes.