Patch Management Solution

 View Only
  • 1.  Manually revise Software Update policies after importing updated patch data?

    Posted Aug 29, 2013 05:28 AM

    Hi Everyone

    Just wondering if there is was to manually update a patch policy after a new version of an already deployed patch has been deployed to computers?

    MS13-057 has been deployed to all of my machines. Since it was deployed in July there has been an update to the patch and a new version has been downloaded to the servers via PMImport. My patch policy for July is still on but now it keeps on attempting to install MS13-057. It is successful each time but when it does a scan again it installs again.

    I have not checked the box "Automatically revise Software Update policies after importing patch data" or "Enable distribution of newly added Software Updates". Is there a way to do this manually?

    If I Right Click on the bulletin and click on "Recreate Packages" this will not download to the client machines and install will it? It will only download to the server and then will want to be re-sent to the PCs with a new policy. Can I keep the original policy and have it distribute the newly updated MS13-057 patch somehow?

    Environment -

    NS - Server 2008 R2 Standard - Altiris 7.1 SP2 R4
    SQL - SQL Server 2008
    Clients - Win 7 and Win XP

    Regards

    Jason

     

    EDIT - woops I just realised that I have asked a similar question to this before here https://www-secure.symantec.com/connect/forums/what-do-you-do-patches-get-updated-after-you-have-deployed-them 
    Is enabling the above mentioned 2 options still the only way to dsitribute newly updated patch data without creating a new policy?
    Sorry for the double post.



  • 2.  RE: Manually revise Software Update policies after importing updated patch data?

    Broadcom Employee
    Posted Oct 29, 2013 05:02 AM

    Hi Jason,


    When you Right-Click on the bulletin and select "Recreate Packages", download task for this bulletin is invoked. Basically the latest updates included to bulletin should be downloaded during this task. You may verify this in SMP logs(downloading should be started from internet or mirror location)
    In case if any existing update was revised by vendor and replaced with new one, new version of update will be downloaded and distributed to client. Clients will determine that update is changed and will re-download it. Usually it does not occur immediately because some scheduled tasks need to completed on NS in order to update information about new packages.

    In case if any new update was added to bulletin it also will be downloaded, but it will not be added to existing SWU policy and it will not be distributed to clients. For such cases you may add update to existing SWU policy manually - see for details https://www-secure.symantec.com/connect/forums/addition-bulletins-after-montly-swu-policy-already-created

    Hope this helps,
    Roman



  • 3.  RE: Manually revise Software Update policies after importing updated patch data?

    Posted Nov 07, 2013 01:02 PM

    Hello Jason,

    You may review this further on KM: TECH40390

    This article details these processes further for each major release of Patch Management and provides helpful reports.

    Hope this helps,

    Joshua