Hey everyone! I'm trying to figure out if AWS Patch Manager can be used to patch Windows instances that are part of an Active Directory domain and only have private IP addresses. Any insights on how this works? Thanks!
1 Answer
Yes, you can definitely use AWS Patch Manager for that! As long as your Windows instances can connect to the Systems Manager (SSM) service, you're all set. They just need to be able to reach out through a NAT gateway or a private connection. If your instances can communicate with SSM and also access your WSUS server, you'll be good to go.
Exactly! Just make sure the SSM agent is running on those instances.