Solved

VMware patchable objects

Posted on 2012-04-12
13
410 Views
Last Modified: 2012-04-13
Could you list which elements of a typical vmware setup that utilises vcenter esxi and windows guests require patching? So vcenter patching, host patching, and guest patching, specific the vmware what needs patching, and any idea on the frequency of the patches released?
0
Comment
Question by:pma111
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 6
13 Comments
 
LVL 121

Accepted Solution

by:
Andrew Hancock (VMware vExpert / EE MVE^2) earned 250 total points
ID: 37836812
Security Updates (patching)

1. Windows Guests (every month, when Microsoft release patches on Patch Tuesday)

2. vCenter Server (new versions e.g. 4.1 U2, 5.0 U1) VMware very seldom releases patches for vCenter Server, but releases new builds, so you can do a complete upgrade. As for timescales, vSphere 5.0 Update 1  Released 15 Mar 2012, vSphere 5.0 | Released 24 Aug 2011

3. Hypervisor Updates (ESXi), Security Updates and Fixes are issued.  If we look at ESXi 5.0

there have been several patches

Build Number: 474610 Release Date: :  09/13/2011 (patches to ESXi 5.0)
Build Number: 504890 Release Date: :  11/03/2011 (patches to ESXi 5.0)
Build Number: 515841 Release Date: :  12/15/2011  (patches to ESXi 5.0)
Build Number: 623860 Release Date: :  03/15/2012 (this is ESXi 5.0 U1)

All patches can be checked here

http://www.vmware.com/patchmgr/download.portal 

So with the Hypervisor, it could be a patch every month from release.
0
 
LVL 3

Author Comment

by:pma111
ID: 37836841
Is there anything vmware specific on the guests that needs patching from vmware? Your 1 seems specific to MS updates nothing on guests around vmware.

Cheers!
0
 
LVL 7

Assisted Solution

by:PaulNSW
PaulNSW earned 250 total points
ID: 37836854
You should also check for firmware/BIOS updates for the hardware running this environment.

Re 1: Each VM will have "VMWare Tools" installed, providing enhanced drivers for Video, Network, Mouse etc.

You generally only have to update this with every major VMWare update
0
Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

 
LVL 121
ID: 37836863
every host update may have a new version of vmware tools, which could be applied to the guest vms.
0
 
LVL 3

Author Comment

by:pma111
ID: 37836882
And is there 1 tool that can patch all 3 (vCenter, Host, vmware tools on guest) and provide management overview on whats at what level, whats missing what patch? If there is 1 tool a copy or screenshot of a sample report would be ever so helpful!
0
 
LVL 121
ID: 37836898
No not really, VMware Update Manager patches the host.
0
 
LVL 3

Author Comment

by:pma111
ID: 37837030
Would update manager show which hosts are missing patches? Is it a report format thats management freindly?
0
 
LVL 121
ID: 37837046
Yes, Update Manager would show which updates. VMware issues Security Updates, which changes the Build Number of the OS, you could say a change of service pack. A Security Build Update contains many security fixes and bug fixes.

I do not think the Report is management friendly.
0
 
LVL 3

Author Comment

by:pma111
ID: 37837719
Would you be willing to share a screenshot of a report for reference?

Also > where can you see the build number? And where can you see from vmware the latest build numbers.
0
 
LVL 3

Author Comment

by:pma111
ID: 37837724
Is update manager part of vcenter, or an additional tool that requires additional $$
0
 
LVL 3

Author Comment

by:pma111
ID: 37837743
And are the patches released for vmware tools on guests security related, or something else? How often are they released?
0
 
LVL 121
ID: 37837799
Ive never seen any VMware Tools updates on their own.

Tools are sometimes included with host updates, eg new host update, it may have new tools as well.
0
 
LVL 121
ID: 37837814
update manager is included with vCenter.

build numbers are shown on the host summary, see previous ESX, ESXi question.

build numbers arevavailable on vmware patch portal.
0

Featured Post

Manage your data center from practically anywhere

The KN8164V features HD resolution of 1920 x 1200, FIPS 140-2 with level 1 security standards and virtual media transmissions at twice the speed. Built for reliability, the KN series provides local console and remote over IP access, ensuring 24/7 availability to all servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this step by step tutorial with screenshots, we will show you HOW TO: Enable SSH Remote Access on a VMware vSphere Hypervisor 6.5 (ESXi 6.5). This is important if you need to enable SSH remote access for additional troubleshooting of the ESXi hos…
Giving access to ESXi shell console is always an issue for IT departments to other Teams, or Projects. We need to find a way so that teams can use ESXTOP for their POCs, or tests without giving them the access to ESXi host shell console with a root …
Teach the user how to use create log bundles for vCenter Server or ESXi hosts Open vSphere Web Client: Generate vCenter Server and ESXi host log bundle:  Open vCenter Server Appliance Web Management interface and generate log bundle: Open vCenter Se…
In this video tutorial I show you the main steps to install and configure  a VMware ESXi6.0 server. The video has my comments as text on the screen and you can pause anytime when needed. Hope this will be helpful. Verify that your hardware and BIO…
Suggested Courses

632 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question