Setting an existing patch baseline as the default
Important
Any default patch baseline selections you make here do not apply to patching operations that are based on a patch policy. Patch policies use their own patch baseline specifications. For more information about patch policies, see Patch policy configurations in Quick Setup.
When you create a custom patch baseline in Patch Manager, a capability of AWS Systems Manager, you can set the baseline as the default for the associated operating system type as soon as you create it. For information, see Working with custom patch baselines.
You can also set an existing patch baseline as the default for an operating system type.
Note
The steps you follow depend on whether you first accessed Patch Manager before or after the patch policies release on December 22, 2022. If you used Patch Manager before that date, you can use the console procedure. Otherwise, use the AWS CLI procedure. The Actions menu referenced in the console procedure is not displayed in Regions where Patch Manager wasn't used before the patch policies release.
To set a patch baseline as the default
Open the AWS Systems Manager console at https://console.aws.amazon.com/systems-manager/
. In the navigation pane, choose Patch Manager.
-
Choose the Patch baselines tab.
-
In the patch baselines list, choose the button of a patch baseline that isn't currently set as the default for an operating system type.
The Default baseline column indicates which baselines are currently set as the defaults.
-
In the Actions menu, choose Set default patch baseline.
Important
The Actions menu is not available if you didn't work with Patch Manager in the current AWS account and Region before December 22, 2022. See the Note earlier in this topic for more information.
-
In the confirmation dialog box, choose Set default.
To set a patch baseline as the default (AWS CLI)
-
Run the describe-patch-baselines command to view a list of available patch baselines and their IDs and Amazon Resource Names (ARNs).
aws ssm describe-patch-baselines
-
Run the register-default-patch-baseline command to set a baseline as the default for the operating system it's associated with. Replace
baseline-id-or-ARN
with the ID of the custom patch baseline or predefined baseline to use.