Enable and configure Patch Management for Windows (Legacy)

Patch Management for Windows is configurable across multiple devices (on all servers and workstations or servers and workstations at specific clients and sites) or on individual computers.

As part of the Patch Management for Windows deployment, a Patch Status Check (Scan) is automatically added to the device.

The legacy manual settings configuration option is not available on new Dashboard accounts. Create your own custom policies (if required) then use the Patch Management Feature Policy method for deployment.

Multiple Devices

Servers and workstations inherit their configuration from the site, which will in turn inherits from the client, which will in turn inherits the default configuration for all servers and workstations.

  1. Log into the Dashboard
  2. Go to Settings > Patch Management > Settings
  3. Select the Entity type to apply the configuration to (all servers and workstations or servers and workstations at specific clients and sites)

    4. Feature status indicators (colored dots) in the Settings dialog indicate if the feature is enabled or disabled at the entity level, and whether devices under an entity have the same settings:

    • Green - Enabled for all devices under that entity including device level settings
    • Grey - Disabled on at least one device under that entity including device level settings
    • Orange – A child entities has a different configuration to the parent. If a Client only has one Site, its status indicator reflects that of the Site.

    For more information, see Feature and Functionality Settings Icons.

  4. Choose the Setting from On, Off or Use Parent (only for Client or Site)
  5. Configure the Patch Status Check (Scan) and Patch behavior: Auto Approval, Installation Schedule (including reboots),Failed Patch alerting
  6. OK to save and apply

Individual Device

You can enable Patch Management for Windows for specific servers and workstations, for example to exclude the device from the default entity policy or only apply Patch Management on certain computers.

Once selected device level settings take precedence over those set at the policy level. Where the device settings have changed, to place the device back under policy control please select Use Policy Settings

  1. Log into the Dashboard

  2. Right-click on the device in the North-pane (or from the Edit Server, Workstation or Device drop-down)

  3. Go to Edit <Device Type> and Patch Management
  4. Choose the Setting from On, Off or Use Policy Setting (On) or (Off)
  5. Configure the Patch Status Check (Scan) and Patch behavior: Auto Approval, Installation Schedule (including reboots),Failed Patch alerting
  6. OK to save and apply