Quantcast
Channel: Symantec Connect - Endpoint Management - Discussions
Viewing all articles
Browse latest Browse all 2356

Deleting Security Patches from Notification Server and Site Servers

$
0
0
I need a solution

Hello,

I want to clean up Patch Management packages on the NS and Package servers (Altiris 7.5). 

It was already discussed in the topic https://www-secure.symantec.com/connect/forums/deleting-security-patches-notification-server-and-site-servers . I created new topic as the one is already closed.

and here was the solution:

1. To ensure that this package is not used by NS
 - Disable unused Software Bulletins (Select Bulletin in PRC, Right Click -> Disable)
 - Delete all policies, where Disabled bulletin is included.
2. Navigate to Check Software Package Integrity task and enable checkbox "Delete the downloaded packages that are no longer in use"
3. Run Check Software Package Integrity task - Package will be removed from NS
4. As package is not in use anymore, it will be removed from Package server and agents accoriding to described settings.

I have question for step "1. Delete all policies, where Disabled bulletin is included". Until I remove the policy the package is not removed from the system even it is marked as Disabled and not Downloaded. I tried it and it works this way. 

I`m creating patch mgmt policies for MS patches on monthly basis - one policy for all patches for the current month. I do not create individual policies for each bulletin. So I would have to delete and create old policies everytime I disable any superseded patch. I think it is not ideal behaviour.

Do you think it works ok? Even is it marked as Disabled and Not Downloaded? Can Symantec please change the behaviour in Altiris?

 

Thanks,

Jiri


Viewing all articles
Browse latest Browse all 2356

Trending Articles



<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>