Video Screencast Help
Search Video Help Close Back
to help
New in the Rewards Catalog: Vouchers for "Symantec Technical Specialist" and "Symantec Certified Specialist" exams.

Patch Management on laptops

Updated: 21 May 2010 | 3 comments
JeffreyJRiggs's picture
JeffreyJRiggs
0 0 Votes
Login to vote

Ok so we started on patching our desktops.... simple patch... MS09-017 (powerpoint patch) onto 70 test machines.. all worked great for the desktops.. they got the patch and rebooted at 3am....

however our laptop users show as scheduled.... then when they come in it gets rescheduled for the next morning at 3am.....

is there a way to have laptop users patch if they are home on the weekend? kind of like how software delivery will download and stage it.. a user on the weekend fires up his laptop and gets software.....

so i read the article...

Andrey Shipov
6 weeks 3 days ago

Altiris Patch Management Solution 6.2 always has a delay

at

www-secure.symantec.com/connect/articles/patch-management-solution-62-our-production-configuration-and-few-tips

 

and he has his set for 2pm during the day... is this the only way?

thanks
Jeff

discussion Filed Under:
,

Comments

jharings's picture
11
Sep
2009
1 Vote +1
Login to vote
jharings
Trusted Advisor

With 6.2, Yes

You'll find several other examples of this elsewhere on the forums. The most direct way is to create multiple software update agent config policies, so laptops can be patched during the day.

Jim Harings
HP Enterprise Services
1st Rule of Connect Club: Mark the post that helped you the most as a 'solution'. 2nd Rule of Connect Club:You must talk about Connect club.

KSchroeder's picture
11
Sep
2009
1 Vote +1
Login to vote
KSchroeder
Trusted Advisor

Jim is correct

It is currently the only way.  We have all our workstations (desktop and laptop) set to install every 4 hours starting from 4 AM.  This ensures that the machine will get patched ASAP.  We did spread it out a little bit as the patch cycle does kick off the full patch Inventory/vulnerability scan, which can take a while to run. 

To be clear, the patches won't reapply and the machine won't reboot every 4 hours (unless you have one which is "broken" and doesn't recognize when it is installed properly).

Thanks,
Kyle
Symantec Trusted Advisor

For Forum threads, please click "Mark as Solution" if answered.
For all content, please give a thumbs up if you agree with or support the post.

dfrancis's picture
13
Sep
2009
1 Vote +1
Login to vote
dfrancis
Certified

We do exactly the same thing,

We do exactly the same thing, Kyle.  The only ill effect is that client-side logs will tend to have a lot of patch data in them so if we're ever troubleshooting other Altiris issues on a particular machine we have to adjust the logging capabilities to retain more data on that client than the default 10 100K files.

--Dave

If a forum post solves your problem, please flag it as a solution. If you like an article, blog post or download vote it up.

Technical Support

Symantec.com

Store

Community Stats

Total Content Items
Members
258,830