By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

How can we do patch compliance reporting for Patching using SSM AWS-PatchAsgInstance document in Patch manager solution.

0

How can we do patch compliance reporting LIKE storing the reports to S3 bucket for Patching using SSM AWS-PatchAsgInstance document. Could you please help me the approach.

We do have compliance reporting in AWS-PatchInstanceWithRollback in SSM document, SO looking for similar approach in ASG Patch group patching. { "name": "SaveComplianceReportToS3", "action": "aws:invokeLambdaFunction", "inputs": { "FunctionName": "SaveRptToS3Lambda-{{automation:EXECUTION_ID}}", "Payload": "{"S3Bucket": "{{ReportS3Bucket}}", "CheckCompliance": {{CheckCompliance.Payload}}}" }

Topics
Management & Governance
Tags
AWS Systems Manager
Language
English
Himanshu Bansal
asked 6 months ago216 views
1 Answer
0

The AWS-PatchAsgInstance document currently does not support compliance reporting. In order to achieve this, I think you will need to create a custom runbook off the AWS-PatchAsgInstance document and add custom steps to achieve the complicance reporting.

AWS
rePost-User-6671038
answered 6 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content