Software Management is a vulnerability and patch management module for Windows and Apple machines. Software Management also manages deployment of popular 3rd-party software packages for both Windows and Apple operating systems. Patches for 3rd-party software is included, if made available by 3rd-party software package developers.
Scanning and deployment can be on demand or automated across thousands of machines. Settings are assigned to machines using profiles for scanning, deployment, alerts, 3rd-party software and patch overrides. Once profiles are assigned, policy enforcement is validated using compliance checking metrics for scanning and deployment.
Scan and analysis profiles support two different strategies for managing software updates.
Configure Operating System Update - Configures how updates for Windows and Apple machines are performed on assigned machines. Individual Windows and Apple patches are not reviewed and selected using this option. 3rd-party patches cannot be deployed using this strategy.
Kaseya Update - Specifies whether to approve, reject or review patches based on a pre-assigned impact classification. This patch strategy applies to Windows, Apple and 3rd-party software patches.
Deployment profiles specify how deployments occur, on a recurring schedule. This includes:
Reboot preferences.
The optional running of agent procedures both before or after deployment.
Optional blackout windows, to prevent scheduling deployments during business hours.
Includes patch approvals, which lets you approve or reject specific patches.
Supports scanning and deploying patches immediately.
Provides a force update feature, which initiates a scan, then deploys all installs and approved patches immediately, rebooting as often as necessary.
3rd-party software profiles enable you to maintain lists of popular software titles and versions that can be installed on agent machines.
A Software Management license is only incremented when 3rd-party software management is enabled for an agent machine.
3rd-party software can only be installed by deployment profile.
Requires a scan and analysis profile be assigned to the agent machine that uses the Kaseya Update strategy.
Patch override profiles—by KB article, patch number, and filter criteria—can be specified. When assigned to a machine, these profiles override the default classifications assigned to patches: approved, rejected, or review.
Alerts are provided for patch and configuration issues.
A daily compliance check is run for delayed scans, delayed deployments and percentage of patches deployed.
Software Management activities are tracked using reports, application logs and diagnostic logs.
The Dashboard page includes two download links:
A Patches Available PDF for quarterly patch information.
An Installers Available PDF for installable 3rd party applications.
