AWS Patch manager using internal patch repo

I believe Patch manager uses the operating systems configured repositories. As it does with windows updates.

I believe you just need to update the source repositories as you would if it was on premise to point to an internal server.

The patch baselines are still controlled by patch manager.

Yes, it is possible to get the patches from an internal patch repository via the internal network for Red Hat servers when using AWS Patch Manager.

Patch Manager uses the operating system's configured repositories to get patches. You can update the repository sources in the same way you would if patching servers on-premises, to point to an internal patch server instead of external internet locations.

The steps would be:

• Set up the internal patch repository server and ensure it has the necessary Red Hat patches.
• Configure the Red Hat servers to use the internal repository server as their package source.
• Create an AWS Patch Baseline specifying the alternative repository source location.
• Apply the Patch Baseline to target servers using Patch Manager. It will then get patches from the internal repository instead of over the internet.
• As long as the necessary AWS services like SSM Agent, S3 and VPC endpoints are configured to allow internal access, Patch Manager should be able to use the internal repository source to patch Red Hat servers without internet access.