Patch Approval Settings Audit
Purpose
The aim of the solution is to provide a way to keep track of the approval and denials of the patches and keep the approval policies in check.
Associated Contents
| Content | Type | Function |
|---|---|---|
| Patch Approval Count | Dataview | Provides a basic metrics view of patches in each approval category, excluding drivers and third-party patches. |
| Auto Approval Policies | Dataview | Displays the Auto Approve, Auto Ignore, and Auto Deny settings of all approval policies. |
| Patch Approval Categories | Dataview | Provides detailed information about patches that are auto-approved, denied, or ignored based on their category for each approval policy. |
| Denied Patch Audit | Dataview | Displays the list of denied patches in the environment. |
| Denied CU Patch Audit | Dataview | Displays the list of denied cumulative updates in the environment. |
| plugin_proval_auto_approval_status | Custom Table | Presents auto-approve category information about approval policies. |
| MySQL - View - Create (plugin_proval_auto_approval_status) | Script | Creates the plugin_proval_auto_approval_status view. |
| Unapproved Patches Count Audit | Script | Creates an urgent ticket for ProVal if the number of unapproved patches changes by a certain percentage within a day or week. |
Implementation
Step 1
Import the following content from the ProSync plugin:
- Dataview - Patch Approval Count
- Dataview - Auto Approval Policies
- Dataview - Patch Approval Categories
- Dataview - Denied Patch Audit
- Dataview - Denied CU Patch Audit
- Script - MySQL - View - Create (plugin_proval_auto_approval_status)
- Script - Unapproved Patches Count Audit
Step 2
Reload System Cache
Step 3
Run the Script - MySQL - View - Create (plugin_proval_auto_approval_status) against any agent to create the plugin_proval_auto_approval_status view.
Delete the script after creating the view
Step 4
Schedule the Unapproved Patches Count Audit script to run once per day as demonstrated in the script's document.