Skip to main content

Automated Patching

Patching for EC2 Instances

You can use the modernisation-platform-terraform-ssm-patching module to create AWS SSM Patch Manager resources in your account.

The module creates an s3 bucket for log storage, as well as maintenance windows, tasks, resource groups, and patch baselines.

To use this module, you must have instances with the SSM agent installed (Comes as default with many AMIs), as well as have a tag of “Patching: Yes”. Please be aware, if patch_schedule variable is not supplied, the default will power down instances at 10pm on a Monday. Please see the module for guidance on how to implement, and to raise any issues.

This page was last reviewed on 15 December 2023. It needs to be reviewed again on 15 June 2024 by the page owner #modernisation-platform .
This page was set to be reviewed before 15 June 2024 by the page owner #modernisation-platform. This might mean the content is out of date.