Next Topic

Previous Topic

Patch Update

Patch Mgmt > Patch Update

The Patch Update page updates missing Microsoft patches on all machines displayed in the paging area. Patch Update overrides the Patch Approval policy but obeys the Reboot Action policy. If you're using Automatic Update, then Patch Update is used on an exception basis to apply individual patches to multiple machines or to re-apply patches that originally failed on certain machines. See Methods of Updating Patches, Configuring Patch Management, Patch Processing and Patch Failure for a general description of patch management.

Patches Displayed

The display of patches on this page are based on:

  • The Machine ID/Group ID filter.
  • The patches reported using Scan Machine. Managed machines should be scanned daily.
  • The patches of machines using Automatic Update. If the Hide machines set for Automatic Update box is checked, these patches are not listed here. These patches are automatically applied at the Automatic Update scheduled time for each machine.
  • The patches of machines being processed by Initial Update. These patches are excluded from this page until Initial Update completes.

Duplicate Entries

Microsoft may use a common knowledge base article for one or more patches, causing patches to appear to be listed more than once. Patch Management displays patches sorted by update classification first and knowledge base article number second. Check the patch file name to distinguish patches associated with a common knowledge base article.

Using Patch Update

  1. Optionally click the KB Article link to display a Details page about the patch. The Details page contains a link to display the knowledge base article.
  2. Patches classified as security updates have a security bulletin ID (MSyy-xxx). Optionally click the Security Bulletin link to review the security bulletin, if available.
  3. Optionally click the box next to a KB Article to schedule that patch on all managed machines missing that patch.
  4. Optionally click the Machines... button to schedule a patch on individual machines or to set machines to ignore a patch. An ignore setting only affects Patch Update.

    Note: A warning icon indicates the patch status for one or more machines should be checked before installing this patch. Click the Machines button and review the Status column for each machine missing this patch.

  5. Select install parameters.
  6. Click the Schedule button to install the patches using the install parameters.
  7. Click the Cancel button to remove any pending patch installs.

Hide machines set for Automatic Update

If checked, hides patches missing from machine IDs set to Automatic Update.

Hide patches denied by Patch Approval

If checked, hides patches denied by Patch Approval.

Schedule

Click Schedule to schedule a update of selected patches on all machine IDs missing this patch, using the schedule options previously selected.

Date/Time

Enter the year, month, day, hour, and minute to schedule this task.

Cancel

Click Cancel to clear a scheduled update.

Stagger by

You can distribute the load on your network by staggering this task. If you set this parameter to 5 minutes, then the scan on each machine ID is staggered by 5 minutes. For example, machine 1 runs at 10:00, machine 2 runs at 10:05, machine 3 runs at 10:10, ...

Skip if Machine Offline

Check to perform this task only at the scheduled time. If the machine is offline, skip and reschedule for the next day at the same time. Uncheck to perform this task as soon as the machine connects after the scheduled time.

Select All/Unselect All

Click the Select All link to check all rows on the page. Click the Unselect All link to uncheck all rows on the page.

Status Warning Icon

A warning icon indicates the patch status for one or more machines should be checked before installing this patch. Click the Machines button and review the Status column for each machine missing this patch.

KB Article

The knowledge base article describing the patch. Click the knowledge base article link to display a Details page about the patch. The Details page contains a link to display the knowledge base article.

Missing

The number of machines missing this patch.

Ignore

The number of machine set to ignore s patch using the Check Status button. An ignore setting only affects Patch Update.

Show Titles

If checked, lists the titles of patches.

Patch

The install filename of the patch.

Topic 346: Send Feedback