Custom Patch Management Policies
Every aspect of Patch Management from the type of protection offered, including the scan schedule, remediation action (i.e. what to do when a Path is discovered as missing based on severity), alerting behavior is controlled via policies.
Default policies are available with the ability to setup custom policies (as well as edit the defaults) to precisely match both the company and client's protection requirements.
Custom policies are based on an existing policy and once created, choose edit to configure the new policy to match your precise requirements. Where a policy is no longer needed, and is not in use on any devices, it may be removed from the dialog.
You can Add, Edit or Delete policies via the Patch Management Feature Policies dialog
- Log into the Dashboard
- Go to Settings > Patch Management > Feature Policy
Create a New Policy
- Click New
- Enter a Policy Name for identification
- Choose an existing policy to Base policy on
- Select the device type the policy is available for in Policy Type
- Click Add to create
We recommend creating Client specific policies. These not only allow you to create policies that precisely match the client's requirements, but can be combined with the Manage Feature Policies for Client Group feature. Where enabled, this feature allows users in the Client Group to manage their assigned policies. As any changes will affect the devices using that policy we do not recommend using shared policies with this feature.
Edit a Policy
- Select the target policy and Edit (or double-click on the policy)
- Configure the policy sections to match the updated requirements
- General Settings
- Patch Status Check (Scan)
- Approval Policy
- Installation Schedule (including reboots)
- Failed Patch alerting
Delete a Policy
- Select the policy
- Click Delete
- Confirm deletion
You cannot delete system policies, or policies that are currently in use on a device.