If, like me, you have to manage several Security Groups on your AWS account, you can make use of the describe-security-groups AWS CLI command for download them as a .json file for backup.
TL;DR
You can jump to the official AWS documentation for the describe-security-groups AWS CLI command on this link: https://docs.aws.amazon.com/cli/latest/reference/ec2/describe-security-groups.html
Prerequisites
You will need to have the AWS CLI command line tool installed and configured on your system.
You can find the necessary information on this two links:
- https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-install.html
- https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-configure.html
How to use
-
Open a terminal window on a local folder and run this command:
aws ec2 describe-security-groups --group-ids sg-123abcd4You will need the ID of the Security Group you want the backup (in this example 'sg-123abcd4').
Done! You can now backup the newly created .json file with GIT or in any other way you want.
About the .json file
As a quick reference here is how the .json file looks:
{ "SecurityGroups": [ { "IpPermissionsEgress": [], "Description": "My security group", "IpPermissions": [ { "PrefixListIds": [], "FromPort": 22, "IpRanges": [ { "CidrIp": "203.0.113.0/24" } ], "ToPort": 22, "IpProtocol": "tcp", "UserIdGroupPairs": [] } ], "GroupName": "MySecurityGroup", "OwnerId": "123456789012", "GroupId": "sg-903004f8", } ] } 
Top comments (2)
Hello Lucas, thanks for you post. Just a quick question can I use this method to copy security groups from one aws account to another?
Nice - this has always been in the back of my mind for needed retention.