By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Centralised patch management in and Organisation

0

Is it possible to designate an account within and organisation that is not the management account as the centralised patching account? Currently only the management account gives the option within patch manager to set the targets to be in different accounts.

Thanks

Topics
Management & GovernanceAWS Well-Architected Framework
Tags
AWS Systems ManagerAWS OrganizationsSecurityAWS Account Management
Language
English
Patrick
asked 8 months ago353 views
1 Answer
0
Accepted Answer

Hello Patrick.

You cannot delegate patch management to a different account. Patch Manager is part of node management, and according to the documentation:

When you set up an organization in AWS Organizations, you assign a management account to perform all administrative tasks for all AWS services. The management account user can assign a delegated administrator account only for Systems Manager to perform administrative tasks for Change Manager, Explorer, and OpsCenter. AWS Organizations is an account management service that you can use to create an organization and assign AWS accounts to manage these accounts centrally.

I hope this helps.

profile pictureAWS
EXPERT
Jose Guay
answered 8 months ago
profile pictureAWS
EXPERT
secondabhi_aws
reviewed 8 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content