Remote Monitoring & Management Help

Enable and configure Patch Management (Legacy)

Patch Management is configurable across multiple devices (on all servers and workstations or servers and workstations at specific clients and sites) or on individual computers.

As part of the Patch Management deployment, a Patch Status Check (Scan) is automatically added to the device.

To ensure you are made aware of any problems with the Patch Management Windows Service, from Agent 10.3.4 to 10.8.0 RC we include a GFI LanGuard Attendant Service Windows Service Check by default.

The legacy manual settings configuration option is not available on new Dashboard accounts. Create your own custom policies (if required) then use the Patch Management Feature Policy method for deployment.

Multiple Devices

Servers and workstations inherit their configuration from the site, which will in turn inherits from the client, which will in turn inherits the default configuration for all servers and workstations.

  1. Log into the Dashboard
  2. Go to Settings > Patch Management > Settings
  3. Select the Entity type to apply the configuration to (all servers and workstations or servers and workstations at specific clients and sites)
  4. We use dots in the Settings dialog to make it easier to spot if the feature is enabled or disabled at the entity level, and whether devices under an entity have the same settings.

     

    • Green - Feature or functionality enabled for all devices under that entity. This includes device level settings
    • Grey - Feature or functionality disabled on at least one device under that entity. This includes device level settings
    • Orange – One of the child entities has a different configuration to the parent. Where a Client only has one Site, its status indicator reflects that of the Site.

    For further information on each of these states, please refer to Feature and Functionality Settings Iconography.

  5. Choose the Setting from On, Off or Use Parent (only for Client or Site)
  6. Configure the Patch Status Check (Scan) and Patch behavior: Auto Approval ,Installation Schedule (including reboots),Failed Patch alerting
  7. OK to save and apply

Individual Device

You can enable Patch Management for specific servers and workstations, for example to exclude the device from the default entity policy or only apply Patch Management on certain computers.

Once selected device level settings take precedence over those set at the policy level. Where the device settings have changed, to place the device back under policy control please select Use Policy Settings

  1. Log into the Dashboard
  2. Right-click on the device in the north pane (or from the Edit Server, Workstation or Device drop-down)

  3. Go to Edit <Device Type> and Patch Management
  4. Choose the Setting from On, Off or Use Policy Setting (On) or (Off)
  5. Configure the Patch Status Check (Scan) and Patch behavior: Auto Approval ,Installation Schedule (including reboots),Failed Patch alerting
  6. OK to save and apply