Maintenance Windows
Start course

This course covers the core learning objective to meet the requirements of the 'Architecting for Management & Governance in AWS - Level 3' skill

Learning Objectives:


  • Analyze how to design a multi-account AWS environment for complex organizations
  • Analyze an effective patch management strategy for your AWS resources
  • Analyze the most effective and appropriate logging and monitoring strategy for multiple resources
  • Evaluate an appropriate AWS offering(s) to enable configuration management automation

You can run administration tasks like a run command document that are potentially disruptive manually or during a predefined maintenance window.  A maintenance window gives you the ability to schedule tasks such as patching an operating system, updating drivers on your ec2 instances, installing software, or schedule tasks on supported resources.  You can set limits for simultaneous executions and allowable error rates. 

A maintenance window is an independent resource that allows you to define and run complex tasks using a Run command document, an AWS Step Functions, or an AWS Lambda Function.  You can also view a history of all tasks executed in a maintenance window if needed. 

How does a maintenance window work? 

First, you need to define a schedule which specifies the time window when potentially disruptive actions can take place.  You can define the start time and the end time. You can also use Cron or Rate expressions to define the time period. 

You can also need to specify the duration of the maintenance window in hours. 

Once a maintenance window is created you can register targets to it by name which assigns a set of instances to your maintenance window. You specify instance tags, choose a resource group or choose instances manually.

You can also Register to run a command document task, register to run an Automation document Task, register to execute a Lambda Function Task or register to execute Step Functions Task.

Maintenance windows can run any number of tasks on your managed instances avoiding operational downtime so that you can run administration tasks that are potentially disruptive during a predefined period where changes can be applied.


About the Author
Jorge Negrón
AWS Content Architect
Learning Paths

Experienced in architecture and delivery of cloud-based solutions, the development, and delivery of technical training, defining requirements, use cases, and validating architectures for results. Excellent leadership, communication, and presentation skills with attention to details. Hands-on administration/development experience with the ability to mentor and train current & emerging technologies, (Cloud, ML, IoT, Microservices, Big Data & Analytics).