Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

What Red Hat Update Installer (RHUI) endpoints should I use for EC2s in AWS GovCloud

0

Hello,

I am looking for:

  1. AWS RHUI destination for EC2s, AMIs in us-govcloud regions.
  2. What would be the best method to setup that private mirror to the AWS RHUI.

thank you.

Topics
Compute
Tags
Amazon EC2Amazon Machine Images (AMI)
Language
English
AWS
asked 9 months ago459 views
2 Answers
1
Accepted Answer

Red Hat provides the RHUI cient packages for customers. The packages themselves are available directly from Red Hat. AWS Support can point customers to the RHUI client updates or provide the Red Hat Knowledgebase article IDs with links to the clients when available. The endpoints are typically associated dynamically, but they are also published in the Red Hat Knowledgebase.

AWS
answered 9 months ago
1

For EC2 instances in AWS GovCloud regions, you need to use the AWS-provided RHUI servers to access updates and patches for your Red Hat Enterprise Linux (RHEL) instances.

  1. AWS RHUI destination for EC2s in GovCloud regions: The AWS-provided RHUI servers are automatically configured when you use RHEL License-Included AMIs from AWS. If you're migrating from a BYOL (Bring Your Own License) instance or need to reconfigure your RHUI access, you'll need to install the appropriate RHUI client configuration package specific to the GovCloud region.

  2. Best method to set up a private mirror to AWS RHUI: To set up access to the AWS RHUI for your instances in a private network, you have a few options:

  • For instances that need to be reconfigured to use AWS RHUI: a. Launch another RHEL instance from AWS Marketplace in the GovCloud region b. Download the RHUI client package from this instance using:
sudo yum install --downloadonly --downloaddir=/tmp rh-amazon-rhui-client -y

or

sudo yumdownloader --downloaddir=/tmp rh-amazon-rhui-client

c. Copy this package to your target instance and install it

  • For patching instances in a private network: a. Use a NAT gateway in your VPC to allow your instances to reach the RHUI servers b. Configure your route tables to direct traffic through the NAT gateway c. Once connected, you can update packages using standard commands:
sudo yum update

or

sudo dnf update

If you're migrating from BYOL to AWS License-Included instances, you'll need to remove the old RHUI configuration and install the new AWS-provided RHUI client packages as described above.

Note that while AWS GovCloud is designed to meet higher compliance requirements, if you require FIPS 140-2 compliance, you should use the specific FIPS endpoints for your AWS services, as the standard GovCloud endpoints are not automatically FIPS-validated by default.
Sources
Migrate RHEL BYOL systems to AWS License-Included instances by using AWS MGN - AWS Prescriptive Guidance
Patch Linux instances in a private network | AWS re:Post
Service Endpoints - AWS GovCloud (US)
Migrate RHEL BYOL instance license to an RHUI license | AWS re:Post

answered 9 months ago
EXPERT
reviewed 9 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content