AWS Systems Manager Enables History and Change Tracking for Patch and Configuration Compliance
AWS Systems Manager now adds AWS Config support to record history and track changes in patch and configuration compliance status of managed instances.
AWS Systems Manager helps you maintain security and compliance of your fleet by scanning and taking action on your managed instances against your patch and configuration compliance policies. When you use Patch Manager for patching or State Manager for maintaining desired configuration of a managed instance, AWS Systems Manager maintains current patch or configuration compliance state for the instance.
Now, AWS Systems Manager enables you to record patch or configuration compliance state changes to AWS Config. This enables you to have a historical view of when patch or configuration compliance state of a managed instance has changed. This also makes it easier to assess patch and configuration compliance state of a managed instance at any given time in the past, often required for auditing and troubleshooting purposes.
This feature is available in all AWS Regions where AWS Systems Manager is offered. For more details about this capability visit our documentation. To learn more visit AWS Systems Manager product page. To learn more about AWS Config and AWS Config pricing, visit AWS Config product page.