Community
 
 
 

Radia - General Discussions

1323 followers
 
Avatar
Ekuberems

Patching Compliance Reports

HI Team, I need to know that after I patched machines through RCA then how much time will it take to reflect the status into the patch compliance reports. Thanks & Regards Sumant Kulkarni EMS Team|Polaris Ph: 022-27595658
6 comments
0

Please sign in to leave a comment.

 
 

Previous 6 comments

Avatar
James Longo - EU

 I do not use Download Manager so I can't comment on that method. Someone who uses Download Manager should be able to give you an idea of what to expect since the patches are downloaded and applied outside of a regular Patch connect.

 If you are NOT using Download Manager, patches are downloaded and applied during the Patch connect, and Patch compliance data is sent as soon as the Patch connect ends.. In my lab it takes a minute, but in a production environment it will depend on several factors but should be visible in under an hour in most cases.

 

 

Comment actions Permalink
Avatar
Brian Jakubowsky

We use Download Manager. The patches are actually applied just like the traditional way. They are only downloaded differently. So, like the traditional way they get reported at the end of the patch connect.

Comment actions Permalink
Avatar
James Longo - EU

 Hi Brian,

  The patch is downloaded after the patch connect, so if a patch is at risk, and downloaded after the patch connect completes, when does the report switch from not patch to patched? I would think the report would not change to patched until the system is actually patched which occurs after the connect? During a traditional patch connect the patch is downloaded and applied during the same connect and therefore can report back that the patch has been successfully applied. For download manager I would not expect the reports to change until the patch is successfully applied. 

Comment actions Permalink
Avatar
Steve Phillips

Hi Jim,

Download Manager is configurable regarding when to apply patches. The options are: 1) run a new patch connect as soon as the download is complete for all needed patches; or 2) proceed with the download but only apply the patches during the next scheduled patch connect. The download manager runs radstgms in the background which does not interfere with any downloads required for other Radia connects. After patches are applied, there is a posting of status data to reporting which may indicate a reboot is required for some of the patches. When the user allows the reboot, another patch scan is performed immediately after reboot and this scan will update patch compliance details showing that no patches are still pending a reboot, but are now effectively patched. If using the Download Manager, you configure the desired behavior for when to apply patches in the Console under Configuration / Patch Management / Distribution Options.

Comment actions Permalink
Avatar
James Longo - EU

Hi Steve,

 I figured a second connect was needed in order to send compliance data back after patches were downloaded/applied outside of the initial connect.

Comment actions Permalink
Avatar
Steve Phillips

That's correct but it is automatic assuming you configure the the distribution options to apply patches immediately after download is complete. During the download you can monitor progress in the patch_preload.log, and as soon as the files are all downloaded, a patch connect with the same radskman parameters as the first one is launched to apply the patches. A runonce timer on reboot forces the final patch scan and this one changes the status from reboot pending to green check mark in reporting. This means the user's decision to reboot or not will affect the amount of time before the patch can be considered as installed.

If you don't want patches to be applied immediately after download, perhaps due to business constraints regarding exactly when patches should be applied, you can configure DM the other way and the client will wait for its next scheduled patch connect to apply the new patches.

One somewhat confusing element of the Patch Management components of Radia is the relationship between the Metadata model for patch management and the DM. If you are using the Metadata model, then download manager is required and must be enabled. However if you are using the traditional model for acquisition, you can still choose to use DM if you like the idea of passive downloads in the background, or you can go the traditional route and not enable DM, and then the patches will be downloaded and applied in the same connect.

Comment actions Permalink

Top Contributors