Custom Patch Policies per Client
in progress
R
Relevant Cuckoo
We have several clients with different internal patch policies (i.e. one might require critical server patches to be applied within 7 days, where another one will accept 21 days).
I'd love to be able to enter these tolerances into the portal on a per-client basis (with there being a default in place), so we can easily report on any vulnerabilities that are outside of those thresholds. Then they can be manually addressed, risks accepted, etc.
Importantly, multiple clients are regulated in the banking space, and they are being told that this level of reporting is required.
Ryan Seymour
Merged in a post:
Patch Scheduler - Delay Option & Critical Vulnerability Only Option
W
Western Roadrunner
I'd like to be able to have the patch scheduler wait a certain amount of time before installing the latest update for a third-party app. For example, if a new version of Google Chrome released, I'd like to be able to tell the Patch Scheduler to wait a week before installing the update. This is to make sure an update doesn't potentially cause any issues, and gives us time to test the update first.
To add more to this, I'd like to be able to tell the Patch Scheduler to update right away ONLY if the update fixes a vulnerability with a risk score of Critical. The Patch Scheduler would ignore the previously mentioned week wait and just update it on the next scheduled patch job.
Ryan Seymour
Patch 360 is in final stages before general release; should have these requirements covered.
Ryan Seymour
marked this post as
in progress