Skip to content

Commit 3f61177

Browse files
ThisIsHowieDeWittThisIsHowieDeWitt
authored
Update README.md
1 parent 146d8d2 commit 3f61177

File tree

1 file changed

+20
-3
lines changed
  • aws_sra_examples/solutions/patch_mgmt/patch_mgmt_org

1 file changed

+20
-3
lines changed

aws_sra_examples/solutions/patch_mgmt/patch_mgmt_org/README.md

Lines changed: 20 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -20,8 +20,8 @@ The SRA Patch Manager solution will automate enabling Systems Manager - Patch ma
2020
- Assumes a role in each member account to enable/disable the Patch Manager Solution.
2121
- Creates 3 Maintenance Windows:
2222
- One updates the SSM Agents on all Managed Instances.
23-
- One scans for, or installs, missing patches on Managed Instances tagged as Windows.
24-
- One scans for, or installs, missing patches on Managed Instances tagged as Linux.
23+
- One scans for, or installs, missing **Security patches rated Critical or Important** and **Bugfixes** on Managed Instances tagged as Windows.
24+
- One scans for, or installs, missing **Security patches rated Critical or Important** and **Bugfixes** on Managed Instances tagged as Linux.
2525
- Configures the [Default Host Configuration](https://docs.aws.amazon.com/systems-manager/latest/userguide/quick-setup-default-host-management-configuration.html) feature.
2626
- Ability to disable Patch Manager within all accounts and regions via a parameter and CloudFormation update event.
2727

@@ -126,7 +126,24 @@ Choose to deploy the Patch Manager solution from within the chosen deployment ty
126126

127127
---
128128

129-
#### Troubleshooting<!-- omit in toc -->
129+
## Viewing Results
130+
131+
### 1.0 Viewing Node Compliance<!-- omit in toc -->
132+
133+
Navigate to 'Systems Manager' then 'Patch Manager'. From the Dashboard select the 'Compliance Reporting' tab. This will show you all your managed instances, the Compliance Status, and the Non-Compliant Count of patches.
134+
135+
![Node-Compliance](./documentation/node-compliance.png)
136+
137+
### 1.0 Viewing Missing Patches<!-- omit in toc -->
138+
139+
Navigate to 'Systems Manager' then 'Patch Manager'. From the Dashboard select the 'Compliance Reporting' tab. This will show you all your managed instances, the Compliance Status, and the Non-Compliant Count of patches.
140+
141+
![Missing-Patch-Summary](./documentation/missing-patch-summary.png)
142+
143+
144+
---
145+
146+
## Troubleshooting<!-- omit in toc -->
130147

131148
Q: Its been more than 24 hours and the Instances are still not appearing in Fleet Manager (and therefore not being scanned).
132149
A: Attach the `patch-mgr-ec2-profile` to the EC2 instances.

0 commit comments

Comments
 (0)