AWS Systems Manager Patch Manager for Ubuntu 24.04

Question

I am using AWS Systems Manager Patch Manager to manage patching for Ubuntu 24.04 (noble) EC2 instances.

Is it possible to configure a custom patch baseline so that Patch Manager includes updates from other repositories such as noble-updates?

My goal is for Patch Manager to apply updates in the same way as running the following command on the instance:

```
sudo apt upgrade
```

If it is possible, how i can achieve this?

re:Post Agent · Answer

Yes, it is possible to configure Patch Manager to include updates from repositories beyond the default security repository for Ubuntu 24.04. By default, Patch Manager only identifies and installs upgrades from the `noble-security` repository for Ubuntu 24.04 LTS.

However, you can specify an alternative patch source repository on Linux systems to achieve your goal of applying updates similar to running `sudo apt upgrade`. This would allow you to include updates from repositories like `noble-updates` in addition to the default security repository.

To accomplish this, you would need to configure your patch baseline to reference these additional repositories as alternative patch sources. This gives you the flexibility to expand beyond the default security-focused patching approach and include other types of updates that would normally be applied through a standard `apt upgrade` command.

Keep in mind that while Patch Manager's default behavior focuses on security-related updates from the security repository, configuring alternative patch sources allows you to customize the patching scope to meet your specific requirements for Ubuntu 24.04 instances.  
**Sources**  
[How security patches are selected - AWS Systems Manager](https://docs.aws.amazon.com/systems-manager/latest/userguide/patch-manager-selecting-patches.html)

AWS Systems Manager Patch Manager for Ubuntu 24.04

回答を追加する

関連するコンテンツ