Update the solution

Upgrading from versions prior to v1.4

If you have previously deployed the solution prior to v1.4.x, uninstall, then install the latest version:

Uninstall the previously deployed solution. Refer to Uninstall the solution.
Launch the latest template. Refer to Deploy the solution.

Note
If you are upgrading from v1.2.1 or earlier to v1.3.0 or later, set Use existing Orchestrator Log Group to No. If you are reinstalling v1.3.0 or later, you can select Yes for this option. This option allows you to continue to log to the same Log Group for the Orchestrator Step Functions.

If you are upgrading from v1.4.x, update all stacks or StackSets as follows:

Update the stack in the Security Hub admin account using the latest template.
In each member account, update the permissions from the latest template.
In each member account in all Regions where currently deployed, update the member stack from the latest template.

If you are upgrading from v2.0.x, upgrade to v2.1.2 or later. Updating to v2.1.0 - v2.1.1 will fail in CloudFormation.

When updating the solution, automated remediation rules may need to be re-enabled manually in the Admin account. Refer to Enable fully-automated remediations.
If you are using the Reuse Orchestrator Log Group parameter to retain logs, ensure it is set appropriately during stack update to avoid log group recreation or loss of log retention settings. Refer to Deploy the solution. If you are performing a stack update to v2.3.0+ from an earlier version choose "no"

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Subscribing to Alarm notifications

Troubleshooting