Update the hub stack(s) - Network Orchestration for AWS Transit Gateway
Hub stackService-linked role for AWS RAM hub stack

Update the hub stack(s)

Follow the step-by-step instructions in this section to update the hub stack(s).

Hub stack

Important

To mitigate the AlreadyExists error code for the service-linked role (AWSServiceRoleForResourceAccessManager) in the hub stack, we moved the role to a separate stack for v3.3.1 of this solution. This way, you can upgrade the hub stack in multiple Regions. You must deploy the service-linked role for AWS RAM hub stack after updating the hub stack.

Follow the step-by-step instructions in this section to update the hub stack.

  1. Sign in to the AWS CloudFormation console, select your existing Network Orchestration for AWS Transit Gateway CloudFormation stack, and select Update.

    Note

    This solution was previously called Serverless Transit Network Orchestrator.

  2. Select Replace current template.

  3. Under Specify template:

    1. Select Amazon S3 URL.

    2. Copy the link of the network-orchestration-hub.template CloudFormation template.

    3. Paste the link in the Amazon S3 URL box.

    4. Verify that the correct template URL shows in the Amazon S3 URL text box, and choose Next. Choose Next again.

  4. Under Parameters, review the parameters for the template and modify them as necessary. For details about the parameters, see Step 3: Launch the hub stack (optional).

    Important

    To successfully upgrade from an earlier version of this solution to version 3.3.0 or later, provide input for the two required parameters for the hub stack: Cognito Domain Prefix and Allow Listed Ranges.

  5. Choose Next.

  6. On the Configure stack options page, choose Next.

  7. On the Review page, review and confirm the settings. Choose the box acknowledging that the template creates IAM resources.

  8. Choose View change set and verify the changes.

  9. Choose Update stack to deploy the stack.

You can view the status of the stack in the AWS CloudFormation console in the Status column. You should receive a UPDATE_COMPLETE status in approximately 25 minutes.

Service-linked role for AWS RAM hub stack

The hub stack deletes the AWSServiceRoleForResourceAccessManager service-linked role. Re-deploy the service-linked role using Step 2 of Deploy the solution.