Class: Aws::SSM::Types::PatchRule
- Inherits:
-
Struct
- Object
- Struct
- Aws::SSM::Types::PatchRule
- Includes:
- Aws::Structure
- Defined in:
- lib/aws-sdk-ssm/types.rb
Overview
Defines an approval rule for a patch baseline.
Constant Summary collapse
- SENSITIVE =
[]
Instance Attribute Summary collapse
-
#approve_after_days ⇒ Integer
The number of days after the release date of each patch matched by the rule that the patch is marked as approved in the patch baseline.
-
#approve_until_date ⇒ String
The cutoff date for auto approval of released patches.
-
#compliance_level ⇒ String
A compliance severity level for all approved patches in a patch baseline.
-
#enable_non_security ⇒ Boolean
For managed nodes identified by the approval rule filters, enables a patch baseline to apply non-security updates available in the specified repository.
-
#patch_filter_group ⇒ Types::PatchFilterGroup
The patch filter group that defines the criteria for the rule.
Instance Attribute Details
#approve_after_days ⇒ Integer
The number of days after the release date of each patch matched by the rule that the patch is marked as approved in the patch baseline. For example, a value of ‘7` means that patches are approved seven days after they are released.
This parameter is marked as ‘Required: No`, but your request must include a value for either `ApproveAfterDays` or `ApproveUntilDate`.
Not supported for Debian Server or Ubuntu Server.
Use caution when setting this value for Windows Server patch baselines. Because patch updates that are replaced by later updates are removed, setting too broad a value for this parameter can result in crucial patches not being installed. For more information, see the **Windows Server** tab in the topic [How security patches are selected] in the *Amazon Web Services Systems Manager User Guide*.
[1]: docs.aws.amazon.com/systems-manager/latest/userguide/patch-manager-selecting-patches.html
14960 14961 14962 14963 14964 14965 14966 14967 14968 |
# File 'lib/aws-sdk-ssm/types.rb', line 14960 class PatchRule < Struct.new( :patch_filter_group, :compliance_level, :approve_after_days, :approve_until_date, :enable_non_security) SENSITIVE = [] include Aws::Structure end |
#approve_until_date ⇒ String
The cutoff date for auto approval of released patches. Any patches released on or before this date are installed automatically.
Enter dates in the format ‘YYYY-MM-DD`. For example, `2024-12-31`.
This parameter is marked as ‘Required: No`, but your request must include a value for either `ApproveUntilDate` or `ApproveAfterDays`.
Not supported for Debian Server or Ubuntu Server.
Use caution when setting this value for Windows Server patch baselines. Because patch updates that are replaced by later updates are removed, setting too broad a value for this parameter can result in crucial patches not being installed. For more information, see the **Windows Server** tab in the topic [How security patches are selected] in the *Amazon Web Services Systems Manager User Guide*.
[1]: docs.aws.amazon.com/systems-manager/latest/userguide/patch-manager-selecting-patches.html
14960 14961 14962 14963 14964 14965 14966 14967 14968 |
# File 'lib/aws-sdk-ssm/types.rb', line 14960 class PatchRule < Struct.new( :patch_filter_group, :compliance_level, :approve_after_days, :approve_until_date, :enable_non_security) SENSITIVE = [] include Aws::Structure end |
#compliance_level ⇒ String
A compliance severity level for all approved patches in a patch baseline.
14960 14961 14962 14963 14964 14965 14966 14967 14968 |
# File 'lib/aws-sdk-ssm/types.rb', line 14960 class PatchRule < Struct.new( :patch_filter_group, :compliance_level, :approve_after_days, :approve_until_date, :enable_non_security) SENSITIVE = [] include Aws::Structure end |
#enable_non_security ⇒ Boolean
For managed nodes identified by the approval rule filters, enables a patch baseline to apply non-security updates available in the specified repository. The default value is ‘false`. Applies to Linux managed nodes only.
14960 14961 14962 14963 14964 14965 14966 14967 14968 |
# File 'lib/aws-sdk-ssm/types.rb', line 14960 class PatchRule < Struct.new( :patch_filter_group, :compliance_level, :approve_after_days, :approve_until_date, :enable_non_security) SENSITIVE = [] include Aws::Structure end |
#patch_filter_group ⇒ Types::PatchFilterGroup
The patch filter group that defines the criteria for the rule.
14960 14961 14962 14963 14964 14965 14966 14967 14968 |
# File 'lib/aws-sdk-ssm/types.rb', line 14960 class PatchRule < Struct.new( :patch_filter_group, :compliance_level, :approve_after_days, :approve_until_date, :enable_non_security) SENSITIVE = [] include Aws::Structure end |