Security Controls

Performing an IAVA Patch Scan

Another common use of the reporting tool is to create a patch group that contains one or more patches that are of particular interest. You then specify the patch group within a Security Controls patch scan template and use the template to scan your machines on a regular basis.

1.Create a patch group that contains the patch or patches you would like to scan for (or deploy).

To do this, select either View > Patches or New > Patch Group and then use a Smart Filter to narrow the focus to only those patches of interest. You can then click the IAVA ID column header to sort the remaining patches by their IAVA ID. After selecting the desired patches, use the right-click menu to add the patches to a new or existing patch group.

2.From the main menu select New > Patch Scan Template.

3.On the Patch Scan Template dialog, type a name for the new template.

4.On the Filtering tab, in the Baseline or Exceptions area, choose Baseline.

5.Select the patch group you created earlier.

6.In the Patch Properties area, specify the type of patches you want to scan for.

You must specify all patch types contained in your patch group. For example, if you selected all IAVA patches when you created the patch group, you should enable the Non-security Patches, Security Patches, and Security Tools check boxes.

7.Save the scan template.

8.On the Agentless Operation page, in the Select/confirm targets area, select the machine group you want to scan.

9.On the Patch tab, select the patch scan template you just created.

10.Schedule the scan to occur at the desired date and time.

11.(Optional) If you want to automatically deploy the patches in the patch group, select the desired deployment options in the Stage deployment package and Execute deployment package areas.

12.Click Schedule.

Was this article useful?