The Patch Update page updates missing Microsoft patches on all machines displayed in the paging area. Patch Update overrides the Patch Approval Policy but obeys the Reboot Action policy. If you're using Automatic Update, then Patch Update is used on an exception basis to apply individual patches to multiple machines or to re-apply patches that originally failed on certain machines. See Methods of Updating Patches, Configuring Patch Management, Patch Processing, Superseded Patches, Update Classification and Patch Failure for a general description of patch management.
The display of patches on this page are based on:
Microsoft may use a common knowledge base article for one or more patches, causing patches to appear to be listed more than once. Patch Update displays patches sorted by Update Classification or Product first and knowledge base article number second. Check the Product name or click the KB Article link to distinguish patches associated with a common knowledge base article.
A patch may be superseded and not need to be installed. See Superseded Patches for more information.
Using Patch Update
Hide machines set for Automatic Update
If checked, hides patches missing from machine IDs set to Automatic Update.
Hide patches denied by Approval Policy
If checked, hides patches denied by Patch Approval Policy.
Patch Group By
Display patch groups by Classification or Product.
Click this button to display the Scheduler window, which is used throughout the VSA to schedule a task. Schedule this task once. Options include:
Click Cancel to cancel execution of this task on selected managed machines.
Note: Patches that are currently being processed (status of Pending - Processing Now) cannot be canceled.
Click the Show Details checkbox to display the expanded title and installation warnings, if any, of each patch.
Select All/Unselect All
Click the Select All link to check all rows on the page. Click the Unselect All link to uncheck all rows on the page.
Status Warning Icon
A warning icon indicates the patch status for one or more machines should be checked before installing this patch. Click the Machines button and review the Status column for each machine missing this patch.
Click Machines... to list all machines missing this patch. On the details page, the following status messages can appear next to a patch:
The knowledge base article describing the patch. Click the KB Article link to display a Details page about the patch. The Details page contains a link to display the knowledge base article.
Patches classified as security updates have a security bulletin ID (
The number of machines missing this patch.
Displays only if the Hide machines set for Automatic Update box is not checked. The number of machines scheduled to install this patch by Automatic Update.
The number of machine set to ignore a patch using the Machines button. The Ignore setting applies to the selected patch on the selected machines. If Ignore is set, the patch is considered
The Product column helps identify the product category associated with a specific patch. If a patch is used across multiple operating system families (i.e., Windows XP, Windows Server 2003, Vista, etc.), the product category is
See Update Classification for an explanation of Classification and Type.