You can subscribe to patches for the operating systems and applications on your managed devices.
Before you subscribe to and download patches, identify the operating systems and applications installed on managed devices, and verify patching requirements. See View details about operating systems and applications.
1. |
a. |
Log in to the KACE SMA Administrator Console, http://KACE_SMA_hostname/admin. Or, if the Show organization menu in admin header option is enabled in the appliance General Settings, select an organization in the drop-down list in the top-right corner of the page next to the login information. |
b. |
c. |
2. |
The Patch Status section provides several details about the latest patch download and appliance disk space. Here you can also determine if newly downloaded patches should be marked as active or inactive by default. |
3. |
Specify the Subscription settings. The operating systems and locales specified in the subscription control the patches that are downloaded. |
Download patches for the selected Windows operating systems. Click the edit button to manage the list of operating systems: | |
Download patches for the selected Mac operating systems. Click the edit button to manage the list of operating systems: | |
Download patches for the selected languages. Click the edit button to manage the list of locales: |
4. |
Specify the Operating System Patches settings. These settings are used to determine the patch status once the patch files are downloaded. The patch status can be active, inactive, or disabled. |
Subscribe to security or non-security type operating system patches. Click the edit button to manage the selected types: | |
Subscribe to patches based on an operating system's patch impact. This can be Critical or Recommended. Click the edit button to manage the selected impacts: |
5. |
Specify the Application Patches settings. These settings are used to determine the patch status once the patch files are downloaded. This can be active, inactive or disabled. |
Subscribe to security, non-security or software installer type application patches. Click the edit button to manage the selected types: | |
Subscribe to applications patches based on its vendor. Click the edit button to manage the selected types: | |
Subscribe to patches based on an applications patch impact. The impact can be Critical or Recommended. Click the edit button to manage the selected impacts: |
6. |
Download only those patches that match the selected labels. Click Manage Associated Labels to select the labels. | |||
Mark patches that have been superseded to the Inactive state after every download. Inactive Superseded Patches are identified with Inactive on the Patch Catalog page. | |||
7. |
Selected patches are downloaded automatically at the next scheduled download time. If a patch does not match the subscription settings after download, it appears as Disabled. If a patch matches the subscription settings but it is either superseded or manually set to inactive, the state appears as Inactive.
The patches you subscribe to are downloaded to the appliance according to the settings you choose.
Be aware that the first patch download might use a large amount of network bandwidth.
1. |
◦ |
◦ |
If the Organization component is enabled on the appliance, log in to the KACE SMA System Administration Console, http://KACE_SMA_hostname/system, or select System in the drop-down list in the top-right corner of the page, then click Settings. |
2. |
3. |
It is important for some environments to maintain a full cache. For example, if you select the Offline Target or Online Source option, full caching is required. | |
Delete patches that have not been deployed in the specified number of days. Patches that are marked as Inactive or Disabled are automatically deleted during the patch download process. | |
The action to take if the appliance is offline when the update process is scheduled to start. Clear the Offline Update option if the appliance is expected to be connected to the internet and can download patches directly. | |
Click Upload to load patch TAR files. | |
4. |
Select schedule options for patch signatures in the Schedule section. Patch signatures include the security bulletins and other files that define patches downloaded from Lumension. |
Select day to download patch detection signatures every day, or select a day of the week to download once a week. | |||
On the nth of every month or on a specific month at HH:MM |
Select the day of the month to download patch detection signatures on a monthly basis. |
Download packages after the signatures have been downloaded. This option is not available if package download is disabled in the Patch Download Options section. | |
Specify the frequency with which signatures and packages are downloaded. This option is available only if Patches detected as missing in the Patch Download Options section is selected. | |
6. |
7. |
8. |
To immediately remove all patches from the appliance, click Delete. This can be useful if you no longer need any patches and you want to quickly reclaim the disk space that they used. |
To schedule patch detection and deployment for managed devices, see Creating and managing patch schedules.
© 2021 Quest Software Inc. ALL RIGHTS RESERVED. Feedback Conditions d’utilisation Confidentialité