Update Windows

Genian NAC supports patching of Windows devices using the Agent Action “Update Windows”. Policy Server pulls down the latest Windows Updates and Patches periodically to help keep your endpoint devices current. With the Agent installed on the endpoints, you can control whether they are getting updates and how often.

  1. Go to Policy in the top panel.
  2. Go to Policy > Node Policy > Agent Action in the left Policy panel.
  3. Find and click Update Windows in the Agent Action window.

Under General section:

  1. For CWP Message, add message to be displayed in accordance with the Policy.
  2. For Label, add labels to help categorize your plugins with custom labels that appear in the "Description" field.

Under Agent Actions section:

  1. For Boolean Operator, choose AND or OR to add optional conditions.
  2. For Settings, click Add and select your optional conditions. Criteria/Operator/Value.

Under Plugin Settings section:

  1. For Windows Update Settings, select a Windows Update Setting from drop-down, Or click + to create an Update Setting.
  2. For Scheduled Check, specify whether to check for updates on a scheduled basis.
    • Periodic Interval, adjust the time interval to check for updates. (hours - months)
  3. For Operation Mode, specify whether to check for updates or install the updates.
  4. For Scheduled Installation, specify whether to install the updates on a scheduled basis.
  5. For Restart Options, specify whether to Do Nothing, Prompt or Restart.
  6. For Automatic Update, specify timing, download and installation preferences for automatic updates.
  7. Click Update.
  8. Go to Node Policy in the left Policy panel.
  9. Click the Default Policy in Node Policy window.
  10. Find Agent Action. Click Assign.
  11. Find Update Windows in the Available section. Select and drag it into the Selected section.
  12. Specify a Fail-Safe setting for the Agent when it is disconnected from the Policy Server. Choose either the Fail-Safe settings from the endpoints Node Policy or create a unique setting for the Agent action.
  13. Click Add.
  14. Click Update.
  15. Click Apply in top right corner.

Create New Windows Updates For Specific OS or Patches

  1. Go to Policy in top panel.
  2. Go to Node Policy > Agent Action > Windows Update in the left Policy panel.
  3. Click Tasks > Create.

Under General and Automatic Approval Options.

  1. For ID, type in unique name.
  2. For Description, type in brief description.
  3. For Products, (Select ones that apply, or All)
  4. For Classifications, (Select ones that apply, or All)
  5. Click Create.
  6. Click Apply in top right corner.

or

  1. Go to Policy in the top panel.
  2. Go to Policy > Node Policy > Agent Action in the left Policy panel.
  3. Find and click Update Windows in the Agent Action window.
  4. Find Agent Action: Windows Update Settings section and click Edit.

Under General and Automatic Approval Options.

  1. For ID, type in unique name.
  2. For Description, type in brief description.
  3. For Products, (Select ones that apply, or All)
  4. For Classifications, (Select ones that apply, or All)
  5. Click Create.
  6. Click Apply in top right corner.

(To delete Windows Updates that were created and no longer used go to Policy > Node Policy > Agent Action > Windows Update > click Checkbox of desired update > Tasks > Delete)