Yandex Cloud
Search
Contact UsGet started
  • Blog
  • Pricing
  • Documentation
  • All Services
  • System Status
    • Featured
    • Infrastructure & Network
    • Data Platform
    • Containers
    • Developer tools
    • Serverless
    • Security
    • Monitoring & Resources
    • ML & AI
    • Business tools
  • All Solutions
    • By industry
    • By use case
    • Economics and Pricing
    • Security
    • Technical Support
    • Customer Stories
    • Gateway to Russia
    • Cloud for Startups
    • Education and Science
  • Blog
  • Pricing
  • Documentation
Yandex project
© 2025 Yandex.Cloud LLC
Yandex Virtual Private Cloud
  • Getting started
    • All guides
      • Creating a security group
      • Changing the name and description
      • Adding a new rule
      • Getting information about a security group
      • Deleting a rule
      • Moving a security group between folders
      • Deleting a security group
    • Enabling a software-accelerated network
    • Chart of network connections
    • Viewing operations with resources
  • DDoS Protection
  • Access management
  • Terraform reference
  • Audit Trails events
  • Release notes
  • FAQ
  1. Step-by-step guides
  2. Security groups
  3. Deleting a security group

Deleting a security group

Written by
Yandex Cloud
Updated at May 5, 2025

Warning

You cannot delete a security group created by default in the network.

To delete a security group:

Management console
CLI
Terraform
API
  1. In the management console, go to the folder where you need to delete a security group.
  2. In the list of services, select Virtual Private Cloud.
  3. In the left-hand panel, select Security groups.
  4. Click in the row of the group you need to delete.
  5. In the menu that opens, click Delete.
  6. In the window that opens, click Delete.

If you do not have the Yandex Cloud CLI yet, install and initialize it.

The folder specified when creating the CLI profile is used by default. To change the default folder, use the yc config set folder-id <folder_ID> command. You can specify a different folder using the --folder-name or --folder-id parameter.

  1. View the description of the CLI command for deleting security groups:

    yc vpc security-group delete --help
    
  2. Get a list of all security groups in the default folder:

    yc vpc security-group list
    

    Result:

    +----------------------+-------------+-------------+----------------------+
    |          ID          |    NAME     | DESCRIPTION |      NETWORK-ID      |
    +----------------------+-------------+-------------+----------------------+
    | enpkf7dbjonf******** | test-sg-cli |             | enpgkbe17td8******** |
    +----------------------+-------------+-------------+----------------------+
    
  3. Select the ID or NAME of the appropriate network.

  4. Delete the network:

    yc vpc security-group delete test-sg-cli
    

With Terraform, you can quickly create a cloud infrastructure in Yandex Cloud and manage it using configuration files. These files store the infrastructure description written in HashiCorp Configuration Language (HCL). If you change the configuration files, Terraform automatically detects which part of your configuration is already deployed, and what should be added or removed.

Terraform is distributed under the Business Source License. The Yandex Cloud provider for Terraform is distributed under the MPL-2.0 license.

For more information about the provider resources, see the documentation on the Terraform website or mirror website.

If you do not have Terraform yet, install it and configure its Yandex Cloud provider.

To delete a security group created with Terraform:

  1. Open the Terraform configuration file and delete the fragment with the security group description.

    Example of a security group description in the Terraform configuration
    ...
    resource "yandex_vpc_security_group" "test-sg" {
      name        = "Test security group"
      description = "Description for security group"
      network_id  = "${yandex_vpc_network.lab-net.id}"
    
      ingress {
        protocol       = "TCP"
        description    = "Rule description 1"
        v4_cidr_blocks = ["10.0.1.0/24", "10.0.2.0/24"]
        port           = 8080
      }
    
      egress {
        protocol       = "ANY"
        description    = "Rule description 2"
        v4_cidr_blocks = ["10.0.1.0/24", "10.0.2.0/24"]
        from_port      = 8090
        to_port        = 8099
      }
    }
    ...
    
  2. In the command line, go to the directory with the Terraform configuration file.

  3. Check the configuration using this command:

    terraform validate
    

    If the configuration is correct, you will get this message:

    Success! The configuration is valid.
    
  4. Run this command:

    terraform plan
    

    The terminal will display a list of resources with their parameters. No changes will be made at this step. If the configuration contains any errors, Terraform will point them out.

  5. Apply the configuration changes:

    terraform apply
    
  6. Confirm the changes: type yes into the terminal and press Enter.

    You can check the updates using the management console or this CLI command:

    yc vpc security-group list
    

Use the delete REST API method for the SecurityGroup resource or the SecurityGroupService/Delete gRPC API call and provide the ID of the security group being deleted in the securityGroupId request parameter.

To get the security group ID, use the list REST API method for the SecurityGroup resource or the SecurityGroupService/List gRPC API call and provide the folder ID in the folderId request parameter.

To learn how to find out the folder ID, see Getting the folder ID.

Was the article helpful?

Previous
Moving a security group between folders
Next
Enabling a software-accelerated network
Yandex project
© 2025 Yandex.Cloud LLC