A Maintenance Window defines a period during which system maintenance occurs on a device. Business Unit configurations include Maintenance Window settings so administrators can schedule maintenance activities. Tenable Patch Management installs patches only during the defined Maintenance Window.
Maintenance Windows can include one or more schedules that deploy based on urgency settings (Low, Normal, High, and Critical). Urgency settings are cumulative, so higher urgencies inherit any settings specified at lower urgencies.
Overlapping time settings do not have a restrictive effect, but Tenable Patch Management recommends keeping your Maintenance Window time settings simple. When a patch encounters multiple time settings for Maintenance Windows, it reviews one after another until it finds a match.
Tenable Patch Management provides built-in Start Time objects, available from the following path:
Schedules\Patching Schedules\Window Start
-
Select Maintenance Windows in the left navigation menu of the Patch Dashboard.
Note: When choosing a Maintenance Window template, be sure to consider whether patch installation requires a restart. A narrow Maintenance Window can cause the restart to occur after the Maintenance Window ends.
-
Select Show All to display the available Maintenance Window settings. If is grayed out, the table includes all available settings.
-
Select the Name of an existing template to open it, and then save the template with a new name:
A Dynamic Detection workflow sets the patching Maintenance Window based on the selected workflow rather than a set schedule. For more information, enter a support ticket and request help from Tenable Patch ManagementCustomer Support .
Create Maintenance Windows for use with different urgency settings (Low, normal, High, or Critical) or create a single Maintenance Window that applies to all Urgencies. Because urgency settings are cumulative, any settings specified at lower urgencies are inherited by higher urgency Maintenance Windows.
The urgency configuration settings use the same template whether creating a single maintenance window for all urgencies or creating individual maintenance windows for specific urgency levels.
Use the Maintenance Windows by Urgency workspace of an open Maintenance Window template to create an All Urgencies Maintenance Window. You may create multiple All Urgencies Maintenance Windows with different start times.
-
Select the toggle for Apply to All Urgencies to enable the All Urgencies options.
-
Configure the Maintenance Window schedule for patches of all urgencies:
-
Select + Create Maintenance Window to begin.
-
Select Browse to open the list of all available start time schedules.
-
Select the schedule you want to add, and then select OK to close the list of schedules.
-
Enter the number of Hours, Minutes, or Seconds after the start time setting that the Maintenance Window remains open (required), and then select Create Maintenance Window on the bottom left corner to close the dialog.
-
Repeat Step 2 to schedule additional Maintenance Windows for all urgencies.
-
-
Set an All Urgencies Override Duration.
These settings override any non-zero duration values set inn the Maintenance Window when the Maintenance Window fails to open for urgency level updates.
-
Enter the number of Hours, Minutes, or Seconds to wait after the Maintenance Window fails to open to override the Maintenance Window duration settings.
Deploy a Maintenance Window to make it available for use in a template. If you update a Maintenance Window template that was previously deployed, you must save and deploy it again for the changes to take effect.
-
Complete the Maintenance Window configuration (refer to Open and Save a Maintenance Window Template).
-
Save your changes:
Select Save & Deploy to save and deploy your configuration:
-
Select Save & Deploy to save and deploy your changes.
-
Select Save to save your changes without deploying. Be sure to return and Deploy the changes to make them available for use.
-
