Managing VM updates with Maintenance Configurations
Applies to: ✔️ Linux VMs ✔️ Windows VMs ✔️ Flexible scale sets ✔️ Uniform scale sets
Maintenance Configurations give you the ability to control and manage updates for many Azure virtual machine resources since Azure frequently updates its infrastructure to improve reliability, performance, security or launch new features. Most updates are transparent to users, but some sensitive workloads, like gaming, media streaming, and financial transactions, can't tolerate even few seconds of a VM freezing or disconnecting for maintenance. Maintenance configurations is integrated with Azure Resource Graph (ARG) for low latency and high scale customer experience.
Users are required to have a role of at least contributor in order to use maintenance configurations.
Maintenance Configurations currently supports three (3) scopes: Host, OS image, and Guest. While each scope allows scheduling and managing updates, the major difference lies in the resource they each support. This section outlines the details on the various scopes and their supported types:
|Host||Isolated Virtual Machines, Isolated Virtual Machine Scale Sets, Dedicated Hosts|
|OS Image||Virtual Machine Scale Sets|
|Guest||Virtual Machines, Azure Arc Servers|
With this scope, you can manage platform updates that do not require a reboot on your isolated VMs, isolated Virtual Machine Scale Set instances and dedicated hosts. Some features and limitations unique to the host scope are:
- Schedules can be set anytime within 35 days. After 35 days, updates are automatically applied.
- A minimum of a 2 hour maintenance window is required for this scope.
Using this scope with maintenance configurations lets you decide when to apply upgrades to OS disks in your virtual machine scale sets through an easier and more predictable experience. An upgrade works by replacing the OS disk of a VM with a new disk created using the latest image version. Any configured extensions and custom data scripts are run on the OS disk, while data disks are retained. Some features and limitations unique to this scope are:
- Scale sets need to have automatic OS upgrades enabled in order to use maintenance configurations.
- Schedule recurrence is defaulted to daily
- A minimum of 5 hours is required for the maintenance window
This scope is integrated with update management center which allows you to save recurring deployment schedules to install updates for your Windows Server and Linux machines in Azure, in on-premises environments, and in other cloud environments connected using Azure Arc-enabled servers. Some features and limitations unique to this scope include:
- Patch orchestration for virtual machines need to be set to AutomaticByPlatform
- A minimum of 1 hour and 10 minutes is required for the maintenance window.
- There is no limit to the recurrence of your schedule
To learn more about this topic, checkout update management center and scheduled patching
You can create and manage maintenance configurations using any of the following options:
For an Azure Functions sample, see Scheduling Maintenance Updates with Maintenance Configurations and Azure Functions.
To learn more, see Maintenance and updates.
Submit and view feedback for