HI,
I tried to use AWS SSM Patch manager for a Windows 2019 instance.
I' used S3 VPC Endpoint with a private route53 hosted Zone.
The SG of the S3 endpoint allow https and http.
In the SSM logs it seams I have a SSL certificate issue but I do not know how to solve this issue.
Preparing to download PatchBaselineOperations PowerShell module from S3.
Downloading PatchBaselineOperations PowerShell module from https://s3-eu-west-3.amazonaws.com/aws-ssm-eu-west-3/patchbaselineoperations/Amazon.PatchBaselineOperations-1.35.zip to C:\ProgramData\Amazon\SSM\InstanceData\i-0e71b155c8a6cbe29\document\orchestration\84e87dc6-d218-45de-bb2a-e3d855cabe3b\PatchWindows\Amazon.PatchBaselineOperations-1.35.zip.
C:\ProgramData\Amazon\SSM\InstanceData\i-0e71b155c8a6cbe29\document\orchestration\84e87dc6-d218-45de-bb2a-e3d855cabe3b\
PatchWindows_script.ps1 : An error occurred when executing PatchBaselineOperations: The underlying connection was
closed: Could not establish trust relationship for the SSL/TLS secure channel.
-
CategoryInfo : NotSpecified: (:) [Write-Error], WriteErrorException
-
FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,_script.ps1
failed to run commands: exit status 0xffffffff
The instance profile is set to AdministratorRole for the test.
Have you ever encountered this issue ?
Thanks