Hi
We have configured patch management CMS 7.5 HF4 to notify users when patches are ready to be installed. We have also configured the reboot deferal notificaiton to appear after the patch cycle has completed, giving the user 3 days to reboot the computer. Our system assessment scan is configured to run every 6 hours.
We are finding that if an installed patch requires a reboot, and the user defers the reboot the following will occur when the next system assessment scan occurs:
1) The user is prompted again that a patch is required to be installed, and the countdown to install the patch occurs again. It goes throught the whole motion of re-installing the patch, (however we can see that an installation attempt does not actually happen in the windows setup log)
2) Once the install notification has completed, the reboot deferal prompt appears again, even if the user may have previous set it to deferr several hours.
So it appears that the system assessment scan is re-triggering the installation of a patch that is installed but pending a reboot. My issue is that a user may select the defer reboot prompt, to not prompt again for 1 day, however as the system assessment scan runs every 6 hours, the result is that they get prompted 4 time in 24 hours, and it appears that they are getting patched every 6 hours. What is going on, surely this cannot be correct behaviour as the deferal prompt would only work properly in this case if your assessment scan was less frequent than your reboot schedule?
The behaviour I was expecting was that the install notificaiton prompt would only occur when the patch was first recieved, then once installed, the reboot deferal prompt would only appear based on the users deferal selections. I would only expect to see the prompts again if a new patch was distributed in this timeframe.