Approving patches automatically with rules
Automatic patch approvals ensures that typical system patches or system critical patches are downloaded and installed when they become available without waiting for review.
There may be patches that you and your customers always want to schedule for download and installation once they have been detected. For example, one customer may be confident that all Microsoft patches except device drivers and tools can be installed automatically on their laptops and workstations, rather than waiting for you to verify and approve them manually. Another customer may be more cautious and may want only Microsoft Critical and Security Update patches installed automatically, preferring to wait for other patches to be manually approved.
After adding automatic approval for patches to rules, patching can take place without further input from you, or waiting for your review. For information on the approval types definitions, see Approval Definitions.
If a patch is re-issued by Microsoft, Patch Manager remembers the existing approval status of patches to ensure that the approval you defined remains and you do not have to re-select and reset the approvals.
To create automatic approvals, ensure at a minimum, the following role permissions are applied:
- Patch: Patch Approval and Patch Configuration
- Monitoring: Filters and Rules
What do you want to do?