Patch Packages

Windows Clients System Packages

After installing and licensing DSM PatchLink, there are new system packages provided in the Software view of the Patch Library:

• PatchLink Client Package - Windows: This package contains all files needed on Windows clients for detecting security vulnerabilities and for installing the required patches and updates. There is a configuration wizard that guides you through the configuration and assignment.

•PatchLink Execution Package - Scan: This package uses installation parameters to control and run the scanning process for security vulnerabilities. There is a configuration wizard that guides you through the configuration and assignment.

•PatchLink Execution Package - Install: This package uses installation parameters to control and run patch installations. There is a configuration wizard that guides you through the configuration and assignment.

•PatchLink Execution Package - After OS installation: This package uses installation parameters to control and run the patch installations after a reinstallation of the operating system. The system automatically detects when this package has to be installed. There is a configuration wizard that guides you through the configuration and assignment.

After synchronizing the Patch Management Service with the patch provider for the first time, DSM creates more packages:

PatchLink Update Catalog - Windows 10 (x64) (en, de) (example): These packages contain all information on the provided patches and updates, separated by their required operating systems including the required languages. The catalog only contains information specific to the individual client which is based on the respective operating system and languages.

This catalog is applied when scanning for vulnerabilities and also for packaging the patch packages later. Depending on the specified download interval, the catalog is updated several times per month; for this reason, many revisions may accumulate in a short period of time. The configuration wizard helps you assign the catalog.

Patch Templates

Generic PatchLink Patch Template: This package of type Template which comes with DSM PatchLink, is used for creating patch packages automatically. Based on this template or based on patch packages you can create as many patch templates as you like. This allows for various settings for patch packages. You can set up patch template rules for assigning patch templates to specific patches.

Patch Packages

Patch Package: This package - which is created automatically based on rules - contains the downloaded patch together with the deployment file and the script file generated by the Patch Management Service. You should not edit the batch file because the Patch Management Service may overwrite it without notice. Use patch templates to customize patch packages individually. The patch templates are used together with the individual patch template rules to create patch packages automatically.

The Detail window contains additional information for each patch package on the following tabs:

•The Detailed information tab contains information on the patch (from the patch provider).

•The Affected computers tab contains the clients that are affected by the respective security vulnerabilities (including the patch installation status).

•The Vulnerabilities tab can be opened in the context of the affected managed computer and contains the patches that are recommended for the computer.

Linux Client System Packages

After installing and licensing DSM PatchLink, there are new system packages provided in the Patch library folder of the Software library:

•PatchLink Client Package - Linux (x86): This package contains all files needed on Linux clients for detecting security vulnerabilities and for installing the required patches and updates. There is a configuration wizard that guides you through the configuration and assignment.

•PatchLink Client Package - Linux (x64): This package contains all files needed on Linux clients for detecting security vulnerabilities and for installing the required patches and updates. There is a configuration wizard that guides you through the configuration and assignment.

•PatchLink Linux Execution Package - Scan: This package uses installation parameters to control and run the scanning process for security vulnerabilities. There is a configuration wizard that guides you through the configuration and assignment.

After synchronizing the Patch Management Service with the patch provider for the first time, DSM creates more packages:

PatchLink Update Catalog - Red Hat Enterprise Linux 7 Server (x64) (example): These packages contain all information on the provided patches and updates, separated by their required operating systems including version and CPU architecture. The catalog only contains information specific to the individual client which is based on the respective criteria.

This catalog is applied when scanning for vulnerabilities and also for packaging the patch packages later. Depending on the specified download interval, the catalog is updated several times per month; for this reason, many revisions may accumulate in a short period of time. The configuration wizard helps you assign the catalog.

Patch Templates

Generic PatchLink Linux Patch Template: This package of type Template which comes with DSM PatchLink, is used for creating patch packages automatically. Based on this template or based on patch packages you can create as many patch templates as you like. This allows for various settings for patch packages. You can set up patch template rules for assigning patch templates to specific patches.

Patch Packages

PatchLink Linux Patch Package: This package, which is created automatically based on rules, contains the deployment script for the respective patch and the script file generated by the Patch Management Service. The package does not contain any mass data of the patch. The Linux client downloads the mass data from the Linux network directly during the installation process.

You should not edit the batch file because the Patch Management Service may overwrite it without notice.

Use patch templates to customize patch packages individually. The patch templates are used together with the individual patch template rules to create patch packages automatically.

The Detail window contains additional information for each patch package on the following tabs:

•The Detailed information tab contains information on the patch (from the patch provider).

•The Affected computers tab contains the clients that are affected by the respective security vulnerabilities (including the patch installation status).

•The Vulnerabilities tab can be opened in the context of the affected managed computer and contains the patches that are recommended for the computer.