Skip to content
← Ideas and Feedback

Have an idea for a new feature?

Ideas and Feedback: IT Automation and Patch Management

Categories

(thinking…)

Overall improvement of Patch Management

This needs an overhaul and the following additional features would be an improvement.

Scheduled Device Scan for Updates

After updates have completed If a user is logged in prompt to reboot every set period of time until reboot accepted.

After Updates If a user is not logged in attempt to reboot to schedule based on local device time.

Allow local admin credential injection in order to force updates through that require a device to not just be turned on but logged in to work.

Approve or Reject updates and set priority for security and critical updates based on the CVE.

See status of patching without having to run a report on each customer. Under the customer there should be the option to see devices with failed, installed, pending updates etc. and color coded for ease of use.

Updates for 3rd Party applications that have not been installed with chocolaty.

These improvements i think would make a big difference to managing clients day to day without the need for full blown vulnerability scanning.

Thanks

320 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Scott Watson shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Gabriele Dal Toe' commented  ·   ·  Report

    Not only Windows Operating system Patch Management (or Apps that turn around of Windows Update) but also Apps Patch Management.

    It would be useful to create a 3PartyApps Update Policy - similar to “Software bundles”, in which, for example, is present some apps (example: Notepad++ …)

    If chocolatey found for example Notepad++ installed, through this 3PartyApps Update Policy, updates it.

    - Software Bundle should be only to install App (when Agent is installed)
    - 3PartyApps Update Policy should be only to update some Apps

  • Martin Palent commented  ·   ·  Report

    ...bitte am WG/PANDA-Patchmanagement orientieren, die haben das TOP gelöst !!

  • Joshua Montgomery commented  ·   ·  Report

    I 100% agree with option number 2. I have noticed on multiple occassions where a computer was offline during the scheduled patch date and did not get any of the updates that were approved for the machine. Then I have to run the automation profile on the machine in an unscheduled event just to make sure it gets updated. So having a switch to enable in the schedule to run immediatly if missed would be great.

  • Tom Busby commented  ·   ·  Report

    Also, when selecting a Device and then Patch Management, when I select some patches, it would be nice to have an option to set a one-off schedule for that particular device to apply the selected patches.

  • Mark Bouman commented  ·   ·  Report

    this suggestion is great, I want this to

  • Stavros Patiniotis commented  ·   ·  Report

    Please make sure a report indicating client,device,software,software status (eg outdated, latest, cve exists etc).

  • luxminarayan luxminarayan commented  ·   ·  Report

    There must be a feature to filter updates based on date, So that we can install latest patches on a testing group.
    And after one Month we can install these updates to production group

  • Primary Freight commented  ·   ·  Report

    This all very needed, and Scott is asking for the very things I was about to ask for. The only extra thing to mention is more control over reporting patches. We should be able to fully exclude patches to the point of not being reported at all.

    Thank you, Scott.

  • InnerVision Computer commented  ·   ·  Report

    Also the ability to get all Windows updates including cumulative updates, let us make the choice which ones we want and don't want, but please lets grab them all.

  • Doug Knapfel commented  ·   ·  Report

    Need more options to granularly define behavior of clients.

    1. Add options to notify end users when updates are scheduled or in-progress or a reboot is scheduled.

    2. If a client is offline during the defined patch schedule; options to define behavior. Require updates to be applied immediately when a client is back online or suspend/delay updates.

  • AdminProduct Team (Product Team, Atera) commented  ·   ·  Report

    Hey,

    Thanks for the great ideas. We are currently working on increasing our patching capabilities, including some of the ideas you've listed.

    Regarding software updates, we currently update a list of commonly used software regardless of their installation method. For more information please refer to the knowledge base article: https://support.atera.com/hc/en-us/articles/360015462840-Automate-Software-Patching-Via-Chocolatey-and-Homebrew-