Patch Management
Patch Management is the process of continuously identifying, tracking, and applying software updates across IT assets to ensure systems remain secure, stable, and compliant.
In Infraon Infinity, the Patch Management module provides a centralized view of all detected patches across the organization and their installation status on assets. It helps IT teams understand which patches are available, which are missing, and where action is required, enabling informed, controlled patch-deployment decisions.
What Is a Patch?
A Patch is a software update released by a vendor to address known issues in an application or operating system. These issues may include security vulnerabilities, functional bugs, performance limitations, or compatibility problems.
Patches can apply to operating systems, third-party applications, utilities, or security components.
Installation Steps
Follow these steps to enable Patch Management in Infraon Infinity.
Step 1: Prerequisites
Ensure:
PATCH_MANAGEMENT license is enabled
InfraonPatch feature flag is enabled
Infraon Inventory Agent is installed on assets
Step 2: Install Infraon Patch App
Navigate to Marketplace
Locate Infraon Patch
Click Install
The configuration page is displayed after installation.
Step 3: Configure and Verify
Enter the required configuration details
Click Verify
Click Submit
Step 4: Patch Agent Installation (Bulk)
After successful configuration, the Patch Agent is installed in bulk on all eligible inventory assets.
Step 5: Patch Agent Installation (Single Asset)
Navigate to Bots → Inventory Agent
Select the required asset
Step 6: View All Patches
Navigate to Assets → Patch Management
View all discovered patches in the organization
Step 11: Install Patch from Asset List
From the Assets tab, install the patch on assets where it is marked as Missing
Troubleshooting
If an older Patch Agent exists:
Navigate to C:\Program Files
Delete the infraon folder
Reinstall the Patch Agent
What you see on the screen
The Patch Management page provides a consolidated view of all patches detected across the organization, along with their associations with assets.
On the left panel, patches are categorized based on their installation status:
All displays every patch detected in the environment
Missing displays patches that are not yet installed on one or more assets
Installed display patches that have already been applied
This page primarily represents the Patches-to-Assets relationship, enabling users to identify which assets are impacted by a specific patch. Click here to view the Assets-to-Patches relationship.
Patch | Basic Details
ID
Click to view more details.
Unique identifier for each patch. Clicking it opens the Patch Details page.Example: ZPH-W-0008.
Title
View only
Displays the name or description of the patch. No actions can be performed. Example: 2025-09 Cumulative Update for Windows 11.
Severity
View only
Indicates the risk or importance level of the patch to help with prioritization. Example: Critical, Unspecified, etc.
Release Date
View only
Shows when the vendor released the patch. Example: Sep 09, 2025.
Category
View only
Indicates the type of patch. Example: Security updates, Definition updates, Updates, etc.
KBID
View only
Displays the related Knowledge Base reference, if available. Example: KB5065426.
Patch Details
Patch details can be viewed by selecting a patch from the Patch Management list.The Patch Details page provides a comprehensive view of the selected patch, including its metadata, affected assets, and associated files.
Summary
The Summary tab provides high-level information about the selected patch. This view helps users quickly understand what the patch is, its importance, and its current approval and testing status.
In this section, users can view:
Patch title and description
Patch category and severity
Patch size
Release date
Knowledge Base (KB) ID, if available
Support URL for reference
Test status and approval status
Assets
The Assets tab displays all assets associated with the selected patch, along with their current patch and operational status. This view helps users identify where the patch is already applied and which assets still require action.
The left panel allows users to filter assets based on patch status:
Missing: Displays assets where the selected patch has not yet been installed
Installed: Displays assets where the patch is already applied
In this section, users can:
Search
Click to search
Allow users to locate assets using keywords quickly. Search by asset name or asset ID to find a specific device.
Filter
Click to apply filters.
Enables advanced filtering using multiple fields and conditions. Fields: CI ID, Asset Name, Asset ID, etc. Conditions: in, not in, contains, not contains, equal to, and not equal to.
Asset Name
View only
Displays the name of the asset associated with the patch. Example: 140-Sam-EIMS.
Asset ID
View only
Displays the asset's unique identifier.Example: ASSET0001.
Operational Status
View only
Indicates whether the asset is currently reachable or active. Example: Up, Down.
Type
View only
Displays the asset type.Example: Laptop.
Status
View only
Indicates the asset usage or allocation status along with patch applicability.Example: In Use, Allocation.
Make
View only
Displays the manufacturer of the asset.Example: Lenovo, Dell.
Serial Number
View only
Displays the asset's hardware serial number. Example: PF4R241T.
Bulk Actions
Select and apply
Allows users to select multiple assets using checkboxes and install the patch across all assets chosen at once. Select multiple missing assets and deploy the patch in a single action.
Files
The Files tab lists the files associated with the selected patch. This view provides visibility into the actual installation packages used during patch deployment.
In this section, users can view:
File name
Download URL
Release date of the file
File size
Last updated
Was this helpful?