AWS
2024-10-30
7 min read
DevOps Daily Team

How to Nuke All AWS Resources in an AWS Account

How to Nuke All AWS Resources in an AWS Account

TLDR

To delete all resources in an AWS account, you can use tools like AWS CLI or third-party tools like aws-nuke. Be cautious when performing this operation, as it is irreversible and can lead to data loss.

There are scenarios where you might need to delete all resources in an AWS account, such as decommissioning an environment or cleaning up after testing. This guide will show you how to safely and efficiently nuke all AWS resources.

Why Nuke All Resources?

  • Cost Management: Remove unused resources to avoid unnecessary charges.
  • Environment Cleanup: Decommission test or staging environments.
  • Account Reuse: Prepare an account for a new project or team.

Using AWS CLI

The AWS CLI provides commands to delete resources, but you'll need to script the process to handle all resource types.

Example: Deleting S3 Buckets 

aws s3 ls | awk '{print $3}' | xargs -I {} aws s3 rb s3://{} --force

This command lists all S3 buckets and deletes them forcefully.

Example: Deleting EC2 Instances 

aws ec2 describe-instances --query 'Reservations[*].Instances[*].InstanceId' --output text | xargs aws ec2 terminate-instances --instance-ids

This command terminates all EC2 instances in the account.

Using aws-nuke

aws-nuke is a third-party tool designed to delete all resources in an AWS account. It is more comprehensive and easier to use than scripting with AWS CLI.

Step 1: Install aws-nuke

Follow the installation instructions from the aws-nuke GitHub repository.

Step 2: Configure aws-nuke

Create a configuration file specifying the account and regions to target.

regions:
  - 'us-east-1'
  - 'us-west-2'

account-blocklist:
  - '123456789012' # Add accounts you want to exclude

accounts:
  '123456789012': {}

Step 3: Run aws-nuke

Run the tool to delete all resources.

aws-nuke -c config.yaml --no-dry-run

Best Practices

  • Use Dry Run: Always perform a dry run before executing destructive commands.
  • Backup Data: Ensure all critical data is backed up before nuking resources.
  • Restrict Access: Limit access to the account to prevent accidental deletions.
  • Monitor Costs: Use AWS Cost Explorer to verify that all resources have been deleted.

By following these steps, you can safely and efficiently delete all resources in an AWS account. Use caution and double-check your configurations to avoid unintended consequences.

Published: 2024-10-30|Last updated: 2024-10-30T09:00:00Z

Tags

AWSAutomationDevOpsResource Management

Found an issue?

Related Posts

Correct way to attach AWS managed policies to a role?

2025-01-02|5 min read

AWS ASG Launch Templates vs Launch Configurations

2024-11-10|6 min read

The provided execution role does not have permissions to call DescribeNetworkInterfaces on EC2

2024-07-15|5 min read