Patching Strategies

How Patching Strategies Work

Strategies are created and managed within the OneSite Patch web portal. Here is how strategies are set up:

Creating a Strategy

After logging into the OneSite Portal and navigating to the patching strategies section—you can create a new strategy from scratch or use some of the preconfigured settings. Settings include immediate mandatory deployment, phased deployments, or risk-based deployment.

Defining Rules and Schedules

Each patching strategy includes a set of rules (or intent objects). These define when patches are deployed, which devices or groups are targeted, and the order in which patches are applied. For example, a strategy might specify that critical patches are deployed immediately, while less critical patches follow a schedule maintenance window.

Configuring Deployment Settings

Deployment settings allow admins to specify how patches are distributed. This includes deployment waves, which break the deployment into phases. For example, a patch can first be deployed to a test group of devices, then after stability is confirmed, it can be deployed to the rest of the business units.

Customizing Approval Processes

To ensure compliance and control, patching strategies incorporate approval processes. These define which stakeholders must approve a patch before it is deployed, adding layers of oversight and ensuring that all deployments are vetted according to organizational policies.

Adding Notification and Communication Settings

Effective collaboration and communication is crucial for IT and security teams. Patching strategies can include notification settings that alert stakeholders at various stages of the deployment process. This might involve notifying the IT team when an approval is needed, alerting users about upcoming deployments, or informing security teams about the status of critical patch deployments.

Deploying Patches

Once the strategy is configured, patches are deployed automatically according to the defined rules and schedules. The system continuously monitors the deployment, proving real-time analytics and feedback. Admins can track the progress, address any issues and adjust as needed.

Handling Exceptions and Rollbacks

Not all patches go as planned, which is why OneSite Patch includes robust controls, including exception handling and rollback features. These allow administrators to pause, cancel, or rollback deployments if issues arise, ensuring that the environment remains stable and secure.

Intelligent Automation in Action

Patching Strategies in OneSite Patch are what make it the most adaptable solution for automated patch management. From granular deployment schedules to multi-step approval workflows, the system adapts to any organization’s unique requirements. It’s a powerful, yet easy-to-use use framework for managing patch deployments with precision and control. Whether you are dealing with remediating critical vulnerabilities or scheduling routine maintenance updates, Patching Strategies in OneSite Patch offer the flexibility modern organizations need for patch management.

For more information on setting up strategies review our knowledge base here.