Patch Management Solution

Is there a way to manage patch distribution to the package servers at the update level, rather than the bulletin level? For example, Bulletin MS17-06-IE contains update windows8-rt-kb4021558-x64. We do not have RT in our environment, but most of the rest of the updates in that bulletin (with the exception of those related to XP) are relevant to us. Our remote package servers are a bit constrained for disk space and it would help to be able to not distribute files to them that are related to updates we do not need, especially when some of those updates are over a gig. I'm looking for ways to save some space until we can upgrade the servers (we are already disabling superseded bulletins). Simply disabling the update in the "Advanced" tab of the software update policy does not appear to delete the update off the servers as disabling the entire bulletin in the Patch Remediation Center would do (or am I missing something?).

There is no way to update servers at an update level, rather than the bulletin level - the compliance reports will show you what is applicable to your clients by bulletin.  If you are worried about space there are a few steps that can be taken to remove Unused updates from servers and clients:

• Disable unused patch Policies
• Disable unused patch Bulletins (Patch Remediation Center – Right click disable)
• Verify the delete package settings (Home > Patch Management > Remediation – Packages Tab = this setting will be doubled = 1 week really means 2 weeks)
• Run your Patch Integrity job ( Manage > Jobs/Tasks > Software > Patch Management > Check Software Update Package Integrity

http://www.symantec.com/docs/HOWTO38239