Creating and Editing a Linux Patch Group

Security Controls provides the ability to use a patch group to scan for a particular set of patches. There are multiple ways to create a new Linux patch group or edit an existing group:

To create a new patch group:

Click New > Linux Patch > Linux Patch Group

In the Linux Patch Groups list in the navigation pane, right-click and select New Linux Patch Group

To edit an existing group, in the Linux Patch Groups list in the navigation pane, double-click the patch group name.

Be careful when editing an existing patch group. Any modifications you make will affect any Linux scan or deployment configuration that references the patch group. Also, if you edit and save a patch group that is currently being used by an agent policy, the agents using that policy will be updated the next time they check in with the console.

Name

The name that you wish to assign to this patch group.

Path

This box is used to specify the folder path that this patch group will reside in within the Linux Patch Groups list in navigation pane. If you do not specify a path, the patch group will reside at the root level of the list. For more details, see Organizing Linux Patch Groups and Configurations.

Filter tab

There are three different actions you can perform on this tab: Add, Remove and View packages.

Add: Enables you to add one or more patches using the Linux Patch Group Editor.

Use the Patch filter pane to narrow the list of patches presented in the grid on the right. You can then use the column headers and filters to further refine the information in the grid. Finally, you can use the search box to locate specific items in the grid.

To add one or more patches to the group, select them in the grid and then click Add patch. The patches will be added to the Included patches list.

The program will allow you to combine CentOS and Red Hat patches in the same group. You may choose to create separate CentOS and Red Hat patch groups, and if you do, you should use the Path box to organize the groups.

Remove: To remove one or more patches from either the Linux Patch Group or the Linux Patch Group Editor dialog, select the desired patches and then click Remove patch.

View packages: To view the packages that are affected by the patches contained in either the Linux Patch Group or the Linux Patch Group Editor dialog, select the desired patches and then click View packages. A single patch may update one or more packages.

 

Used By tab

This tab shows you the agent policies that are currently using this patch group. This is important to know if you are considering modifying the patch group, as it tells you which agents are affected.

How to delete a patch group

Patch groups can be deleted from the Linux Patch Groups list using the right-click menu.

Tips for Using the Search Tool

You can easily search for patches contained in a Linux patch group. To initiate a search you type the text you want to find and then press Enter. Only those patches matching the search criteria are displayed; all other patches are hidden.

The Search tool works only on the information currently visible in the grid. You can right-click on the column headers to add or remove columns to be searched.

If a filter is applied, only patches matching both the search criteria and the filter criteria are displayed.

All partial matches are displayed.

The search is not case sensitive.

The use of wildcards is not allowed.

To clear the search criteria, click the icon located on the right side of the search box.