A list of missing patches that you can install in your devices is provided. You can create jobs to automate the missing patches process that runs at the scheduled time and date on each device. All users added to the missing patch request job get notifications after the job starts. You can filter the missing patches using the patch baselines for Windows and Linux devices.

Patch management is supported for Windows and Linux operating systems.

Create and schedule a job to identify the missing patches:

  1. Select a client from the All Clients list.

  2. Go to Automation > Jobs > Jobs List and click Create.

  3. From Add Job, enter:

    • Select Client: Client name
    • Job Type: Reason for creating the job. For example, you can select Missing Patches Request to create a job to identify the missing patches.
    • Job Name: Unique name for the job process.
  4. Go to the Job Schedule section and enter:

    • Start Date: Start date of the job process.

    • Recurrence Pattern: Pattern that you want to run the job.

      • Daily
      • Weekly
      • Monthly
      • Run Once
      • Never
    • Devices: Devices that you want to add for patching.

    • Add Users: Users receiving the notification when a patch scan job executes.

  5. Click Save.

The created job is displayed on the Job List page.

After creating the job, you can view that on the Automation > Jobs > Jobs List page. The Jobs list page displays the Client Name, Job Name, Job Type, Job Schedule, Devices, UUID, and Run Now.

You can use the Run Now option to run the job at that moment.

The patching process starts after you schedule the Missing Patches Request job. The following example shows the process for Linux resources.

After the patch configuration job begins, the agent executes the following steps:

  1. The agent displays a control message after the missing patches request job begins:

        Control MSG xml received by agent: <cm><id>MISSING_PATCH_REQ</id><reqid>2018-06-21 06:27:31</reqid><params></params></cm>
        
  2. The agent runs the request job for missing patches and generates a /opt/opsramp/agent/tmp/patch_scan_result.json file. The job uses the python script in the agent/lib folder according to the corresponding OS distribution:

    • UBUNTU – /usr/bin/python /opt/opsramp/agent/lib/apt_frame.py scan
    • FEDORA, CENTOS – /usr/bin/python /opt/opsramp/agent/lib/yum_frame.py scan
    • SUSE – /usr/bin/python /opt/opsramp/agent/lib/zypper_frame.py
    • DARWIN – /usr/bin/python /opt/opsramp/agent/lib/mac_frame.py
  3. The Agent reads the .json file and sends a control message to the cloud. The received patch information is displayed in the patches tab of the device in the Infrastructure tab.