|
Each week, the CMS Hybrid Cloud program provides a list of upcoming changes, maintenance windows, and updates to help customers build awareness and plan effectively and summarizes changes from the previous week.
This newsletter includes:
Completed change summary for the week of 6/4/2026
- 6/6/2026 - Downscale Splunk Prod Indexers to 39 from 45
- 6/7/2026 - Marketplace SSM Patching - PROD
To learn details about previous changes please go to the News and Updates section on cloud.cms.gov. (Secure Access required)
For Patching and Gold Image release schedule please view: Patching and Gold Image Release Calendar - 2026
AWS Patch Tag Naming Update
Beginning July, AWS team will convert patch tags naming from
· Patch Group à Patch_Group
· Patch Window à Patch_Window
The tag name change in AWS will "Allow tags in metadata" setting is enabled on instances, to align with the system requirement and avoid metadata-related issues. The updated tag format will be used going forward.
The patching team will create the ITC changes starting July 22, 2026, according to the following schedule:
· Lower Environments: July 22, 2026
· Production: July 29, 2026
· Marketplace Production: August 9, 2026
As this is a behavioral change in the patching process, Technical Advisors are requested to coordinate with their respective ADOs and hosting coordinators to ensure the new tag format is updated and adopted in all future deployments. This change is specific to AWS patches only.
Please contact Enterprise Patching Team for questions / Concerns.
6/12/2026 - Enterprise JIRA Maintenance
Summary:
Enterprise JIRA (https://jiraent.cms.gov) maintenance activity to address a security vulnerability on June 12, 2026 beginning at 8:00 p.m. ET.
Actions we are taking:
- Upgrade to Jira version 10.3.22
When is this happening?
Start Time: Friday, 6/12/2026 at 8:00 p.m. ET
End Time: Saturday, 6/13/2026 at 4:00 a.m. ET
Who will be impacted?
All Enterprise JIRA Users.
What is the impact?
Enterprise JIRA (https://jiraent.cms.gov/) production instance will be unavailable during the maintenance window outlined above.
Support / Questions:
During the maintenance window, please send an email for any urgent requests/issues.
6/12/2026 - Migrate Splunk Search Heads and Deployer from AL2 to AL2023
Summary:
The current Search Heads and Deployers are on Amazon Linux 2 (AL2), which is approaching its end of life on June 30, 2026. Remaining on AL2 increases operational and security risk over time, so an upgrade to AL2023 is required.
Actions we are taking:
Replace AL-2 Search Heads (5) and Deployer (1) Servers with AL-2023 Servers.
When is this happening?
Start Time: Friday, 6/12/2026 at 5:00 p.m. ET
End Time: Sunday, 6/14/2026 at 10:00 p.m. ET
Who will be impacted?
All users logging to https://splunk.cloud.cms.gov/, https://itsi.cloud.cms.gov/, https://draas-itsi.cloud.cms.gov/.
What is the impact?
Splunk users can experience some latency when performing ad-hoc searches in ITOPS Splunk environment during restarts.
6/17/2026 - Non-Marketplace SSM Patching - DEV/TEST/IMPL
Summary:
As part of our normal patching, the CMS Hybrid Cloud team will apply the latest Windows and Linux patches on Wednesday, 6/17/2026 at 6:00 p.m. ET. The week's patches will impact the DEV/TEST/IMPL environment for the affected Non-Marketplace applications noted below.
Actions we are taking:
- Non-Marketplace DEV/TEST/IMPL
- SSM Linux & Windows Vulnerability Patching
When is this happening?
Start Time: Wednesday, 6/17/2026 at 6:00 p.m. ET
End Time: Wednesday, 6/17/2026 at 11:00 p.m. ET
Who will be impacted?
CEDAR, Million Hearts, FFSDCS, RASS, OC Base- eLDAP, SC CLIA, NTP LMS, Spott MACBIS, OC Base- WNMG, NEIL/HRES, OC Base- EWST, MacFin, eAPD Hi-C, OC Base- CMS Cloud Legacy, OC Base- DevSecOps SecDevOps, iServ, MDP, PECOS2.0, SEI, OC Base- PWSS, TRA, CMS ARTS, MCIM, RAD Analysis Tools, MCIM, Perm, CMS Cloud - CRE, CMS Cloud - Enterprise Agile Tools, CMS Cloud tamer, CMS Cloud - CARD, CMS Cloud - ECS Fargate, CMS Cloud - Direct Connect, CMS Cloud - Jfrog SonarCube, CMS Cloud - DNS Prod, CMS Cloud - Governance 2.0, MEOWx, CMS Cloud - CloudBees Jenkins, CMS Cloud - CET, CMS Cloud - DevSecOps, CMS Cloud - Utilities, CMS Cloud - Testrail, CMS Cloud - CircleCI, CMS Cloud - Sam GSS Security GovCloud, SWIFT, AWS HEIDI, MDX, MSPSC, QMAC, ESS-TOOLS, QCOR
MEPBS, EACMS, MacPro, PS&R, RDS, OC Base- APIM GEO, 1115 PMDA, CMS Cloud - Governance 2.0, CMS Cloud - QuickDNS, CMS Cloud - CMSNet, CMS Cloud - CCG Web Content, CMS Cloud - Network Arch, CMS Cloud - VPC Automation, CMS Cloud - Security Team, CMS Cloud - CCG Web Content, CMS Cloud Temporal, CMS Cloud - Splunk, CMS Cloud - CET, AWS GSS Security GC, occonfluence, ocjira, miniorange, ocsonarqube, MTF-PM, NDW, MacFin, MTF-DM, PECOS-OM, NGD
What is the impact?
Patches will be applied to the affected areas and reboots where tags are applied.
6/17/2026 - Marketplace SSM Patching - DEV/TEST
Summary:
As part of our normal patching, the CMS Hybrid Cloud team will apply the latest Windows and Linux patches on Wednesday, 6/17/2026 at 6:00 p.m. ET. The week's patches will impact the DEV/TEST environment for the affected Marketplace applications noted below.
Actions we are taking:
- Marketplace DEV/TEST
- SSM Linux & Windows Vulnerability Patching
When is this happening?
Start Time: Wednesday, 6/17/2026 at 6:00 p.m. ET
End Time: Wednesday, 6/17/2026 at 11:00 p.m. ET
Who will be impacted?
FFM_Opera, FFM_QAO, VAMS, TWS, XES - XOC Tools, SERVIS, FFM_Shared_Services, FFM MLMS, XES - MSI Tech Lab, FFM_FM, FFM_TWS, XES - Service Virtualization, CMS Cloud - Advanced Monitoring
DSRS, FFM, FFM DSH, FFM EDI, FFM EFT, FFM ESDCU, MCR, FLH, OC Base- FLH, OC Base PET, FFM_MNPS
What is the impact?
Patches will be applied to the affected areas, reboots may take place where tags are applied.
|
6/17/2026 - MAG - Azure Update Manager Patching - DEV/TEST/IMPL
Summary:
As part of our normal patching, the CMS Hybrid Cloud team will apply the latest Windows and Linux patches on Wednesday, 6/17/2026 at 6:00 p.m. ET. The week's patches will impact the DEV/TEST/IMPL environment for the affected MAG applications noted below.
Actions we are taking:
- MAG DEV/TEST/IMPL
- MAG Linux & Windows Vulnerability Patching
When is this happening?
Start Time: Wednesday, 6/17/2026 at 6:00 p.m. ET
End Time: Wednesday, 6/17/2026 at 11:00 p.m. ET
Who will be impacted?
Subscription:
CMS.VDC-CCS.IUSG.SharedServices.001.AG
ScopeInfoTech-CM-HEDIS PLD-005
Resource Group with Reboot:
RG-SS-LDAP-PROXY-DEV
RG-SS-LDAP-PROXY-VAL
Resource Group with No Reboot:
RG-AZE-HEDISPLD-DEV
RG-AZE-HEDISPLD-VAL
What is the impact?
Patches will be transmitted to the affected areas. For some customers, reboots may occur depending upon the tags applied.
6/17/2026 - Azure Commercial - Azure Update Manager Patching - DEV/TEST/IMPL
Summary:
As part of our normal patching, the CMS Hybrid Cloud team will apply the latest Windows and Linux patches on Wednesday, 6/17/2026 at 6:00 p.m. ET. The week's patches will impact the DEV/TEST/IMPL environment for the affected Azure commercial applications noted below.
Actions we are taking:
- Azure Commercial DEV/TEST/IMPL
- Azure Commercial Linux & Windows Vulnerability Patching
When is this happening?
Start Time: Wednesday, 6/17/2026 at 6:00 p.m. ET
End Time: Wednesday, 6/17/2026 at 11:00 p.m. ET
Who will be impacted?
Subscription:
azure-comm-ea-cms-iusg-gss-patching-prod
azure-comm-ea-cms-iusg-gss-goldimage-prod
azure-comm-ea-cms-iusg-gss-smtp-nonprod
azure-comm-ea-cms-iusg-gss-smtp-prod
azure-comm-ea-cms-iusg-gss-vdi-nonprod
azure-comm-ea-cms-iusg-gss-vdi-prod
azure-comm-ea-cms-iusg-gss-securitycomp-prod
azure-comm-ea-cms-iusg-gss-logging-nonprod
azure-comm-ea-cms-iusg-gss-logging-prod
azure-comm-ea-cms-iusg-gss-nerdio-prod
azure-comm-ea-cms-iusg-gss-security-prod
azure-comm-ea-cms-iusg-gss-security-nonprod
azure-comm-ea-cms-iusg-gss-identity-prod
azure-comm-ea-cms-iusg-gss-securityauto-prod
azure-comm-ea-cms-iusg-gss-bigfix-prod
azure-comm-ea-cms-iusg-gss-connectivity-prod
azure-comm-ea-cms-iusg-gss-dataprotect-dev
azure-comm-ea-cms-iusg-gss-zscaler-prod
azure-comm-ea-cms-iusg-gss-dataprotect-prod
azure-comm-ea-cms-iusg-gss-dataprotect-test
azure-comm-ea-cms-iusg-gss-infoblox-prod
azure-comm-ea-cms-iusg-gss-c4testing1-dev
azure-comm-ea-cms-iusg-gss-ccgchatbot-dev
azure-comm-ea-cms-iusg-gss-ccgchatbot-test
azure-comm-ea-cms-iusg-gss-finops-prod
azure-comm-ea-cms-iusg-iam-workloads-prod
What is the impact?
Patches will be transmitted to the affected areas. For some customers, reboots may occur depending upon the tags applied.
6/20/2026 - DevOps Services Maintenance
Summary:
CMS Hybrid Cloud will be performing maintenance updates on its DevOps tools.
Actions we are taking:
When is this happening?
Start Time: Saturday, 6/20/2026 at 9:00 p.m. ET
End Time: Sunday, 6/21/2026 at 1:00 a.m. ET
Who will be impacted?
All AWS Commercial and GovCloud customers of SonarQube, CloudBees, JFrog.
What is the impact?
Customers should expect a short downtime for each service as instances are restarted within the maintenance window.
Need help? We are here to support you.
If you have any questions, don't hesitate to reach out to your assigned Hosting Coordinator. CMS IT Support can be reached via cloudsupport@cms.hhs.gov, or call (800) 562-1963, and is documented here at Support Page on cloud.cms.gov.
You are subscribed to receive email messages about CMS Cloud Operations, Changes, and Outages from the Centers for Medicare & Medicaid Services (CMS).
|
