Client Management Suite

 View Only

  • 1.  Let users manually install patches or defer patches

    Posted Jun 28, 2012 09:37 AM

    Hello guys,

    Is it possible to let user defer patch installations? Or let them manually install patches?

    It is very important to us. Thanks for you help!

     



  • 2.  RE: Let users manually install patches or defer patches

    Posted Jun 29, 2012 12:02 AM
    So I would create a custom patch agent policy that its set to install patches in 2032 our some year. Then create a software package as managed software delivery and assign it to users. The command line would execute aexpatchutil.exe /Xa /q which triggers the patch cycle. They could execute this task manually, or even a batch file/vbscript that launches that swd task. Or you can instruct the users how to open the Agent and click the "start software update cycle"link on the patch mgmt tab.


  • 3.  RE: Let users manually install patches or defer patches

    Posted Jun 29, 2012 04:02 PM
    Using Workflow you have an almost out of the box Patch Management self service.....


  • 4.  RE: Let users manually install patches or defer patches

    Posted Jun 30, 2012 03:29 AM

    MSchroeder.,

    Please explain how to configure the other settings like the Default Software Update Plug-in Policy, Microsoft Vendor Policy, Maintenance Windows and Managed Delivery Settings.

    I have tried all day long yesterday but I can't get it to work.

    But thanks for the advice to use aexpatchutil.exe. This program is indeed what we are looking for. We are on the right track now!



  • 5.  RE: Let users manually install patches or defer patches

    Posted Jun 30, 2012 03:30 AM

    Please, can you clarify your answer a little more?



  • 6.  RE: Let users manually install patches or defer patches
    Best Answer

    Posted Jul 02, 2012 11:35 AM

    Do you want all machines to use this "manual patching" method, or only some of them?  If all of them, then you can just change the Default Software Update Plugin Policy (Settings > Agents/Plugins > All Agents/Plugins > Software > Patch Management > Windows).  If you want only some of your computers to use this policy, right-click and Clone the default policy, and make the changes to that one, then apply it to a target containing the machines you want that setting to apply to. Modify the "Start Date" to 12/31/2030, then check the "Allow user to run" box.  Configure the restart defaults section as well; usually "At end of software update cycle" works well, or you may want Never.  You may want to configure the user messages on the "Notification" tab as well.

    Probably it will be much eaiser to just have the users go into the Agent interface and click the "Start Software Update Cycle", but you could create a script that executes the AexPatchUtil.exe as well and deploy that as a manual Software deployment (but the user would still have to go into the Agent to accomplish that).

     



  • 7.  RE: Let users manually install patches or defer patches

    Posted Jul 09, 2012 01:42 AM

    Thank you, that's the solution we are looking for!