Solved

Install patches & updates during reboot

Posted on 2013-05-24
6
369 Views
Last Modified: 2013-06-03
We face an issue with patching a large, Windows based client computer environment.

I am not talking about Microsoft OS patches but patches of applications. The problem is that end users have administrative privileges to their machines (no way to change this as it's a contractual requirement) and install their own software beside the software managed by us. Regrettably the installation of self-installed applications is not controlled in anyway and often their applications make use of our applications and therefore block files/processes.

Example:
 - We manage the email application and should patch it
 - We are aware of some additional tools, accessing the email application, hence before patching starts we check if the email applications as well as the tools known to us are closed
 - Regrettably there are other, "end user managed" tools out there (e.g. a calendar sync tool for whatever mobile device) which are keeping files/processes of the email application open and make a straight forward patching of affected PCs impossible

I assume other companies have similar issues. How do you overcome those?

E.g. is there a reliable solution to install patches during reboot?
0
Comment
Question by:CPAB
  • 4
  • 2
6 Comments
 
LVL 13

Expert Comment

by:Alexios
ID: 39193954
Hello
Indeed the administrator privilege is an issue for the situation as you decribed it

Group policy is a good solution
0
 

Author Comment

by:CPAB
ID: 39196205
@Kostasp: thank, but what do you exactly mean with "group policy is a solution"? Preventing the customer to install apps? We are regrettably not allowed to do so...
0
 
LVL 13

Accepted Solution

by:
Alexios earned 500 total points
ID: 39197893
No, I was referring just to your question

Group policy is a good solution... for applying patches
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 

Author Comment

by:CPAB
ID: 39210547
Ok, yes, that's an option.

Is somebody aware on how to realize something like this using Microsoft SCCM. We are currently patching using SCCM and have all processes and reports designed around this tool. Hence it would be nice if we could integrate such a "patch on reboot" solution into SCCM based patching...
0
 
LVL 13

Assisted Solution

by:Alexios
Alexios earned 500 total points
ID: 39210742
Yes...
I think that you cannot configure that specific action with SCCM unfortunately
0
 
LVL 13

Expert Comment

by:Alexios
ID: 39215569
Glad to help
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

By this time the large percentage of day-to-day transactions have shifted to mobile banking; here are some overriding areas QAs must investigate while testing mobile banking apps.  
Three simple tips to quickly and efficiently back up and protect the contents of your PC and Mac®.
Viewers will learn how to maximize accessibility options in an Excel workbook for users with accessibility issues.
Viewers will learn the different options available in the Backstage view in Excel 2013.

896 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now