Create a Custom Patch List

With the vendor information gathered in Review Vendor Information, use patch impact (Critical, Important, etc.), asset risk, and asset value to create a Custom Patch List. A Custom Patch List is an object that you can add patches to and then deploy to your endpoints. These lists are a great way to keep a history of patches you've deployed each Patch Tuesday.

While creating a Custom Patch List, understand the applicability and impact of deploying these patches to your environment, especially critical machines. When making this assessment, consider:

  • Threat Level
  • Known Active Exploits in the Wild
  • Risk of Compromise
  • Consequences of Compromise

To Create a Custom Patch List:

  1. From the Endpoint Security Console, select Review > Vulnerabilities > All.
  2. Set the patch filters to the following settings, and the click Update View:
    • Content type: Critical and Not Superseded
    • Vendor release date: On or After the first day of the month
    • Applicability: Applicable
  3. Select all patches on the page, and then click Add to List.

  4. From the Add to List dialog, enter a name for a new Custom Patch List. We recommend naming it Patch Tuesday, followed by the date. Then click Add.

  5. From the Patch Content Browser, select your new Custom Patch List.
  6. Research each patch in the list by performing a web search.

    Read the information about each patch at the vendor website. If you find any information that gives you a reason not to deploy the patch in your environment, remove the patch from your Custom Patch List.

    • Click a patch link and then select the Information tab to view metadata for a patch.
    • You can also view newly released Patch Tuesday patches by running the Patch Release by Vendor report available within Ivanti Reporting Services.

      This report lists all Patch Tuesday patches, and whether they apply to your endpoints. It provides:

      • An overview of patch severities
      • The expected workload for the monthly Patch Tuesday release
      • The patch status for your organization

Your Custom Patch List is created, and the patches from Patch Tuesday are added to it. Continue to the next section.