Patching Strategies

The patching strategy determines the level of approval necessary. Phased approval is appropriate for an organization that has a great deal of change control. Some smaller organizations may decide to go with no approval. For proof of concept purposes, you may wish to start with no approval, then later flip to one of the other options requiring one or more levels of approval before moving to production.

When creating a patching strategy you first choose the strategy, add products that the strategy applies to, and then choose a deployment wave.

To create a patching strategy:

1. Navigate to Strategy > Patching Strategies from the menu on the left.

2. Select the strategy you wish to enable.

3. Under General Settings, toggle Strategy Enabled to enable the strategy.

4. Scroll down to Products and click Add Products.

   Note: Good products to start with include web browsers and open source applications. It is very easy to download genuine old, vulnerable copies of applications like WinSCP and PuTTY that you can use to demonstrate patching. This is also an excellent way to differentiate Tenable Patch Management, because many common patch management solutions won’t update these types of applications out of the box.

5. Scroll down to Deployment Settings and select the deployment wave.