# Patch Management

Patch Management is the process of continuously identifying, tracking, and applying software updates across IT assets to ensure systems remain secure, stable, and compliant.

In Infraon Infinity, the Patch Management module provides a centralized view of all **detected patches** across the organization and their installation **status** on assets. It helps IT teams understand which patches are available, which are missing, and where action is required, enabling informed, controlled patch-deployment decisions.

{% hint style="info" %}
Patch Management is currently supported only for Windows-based assets.
{% endhint %}

## **What Is a Patch?**

A **Patch** is a software update released by a vendor to address known issues in an application or operating system. These issues may include security vulnerabilities, functional bugs, performance limitations, or compatibility problems.

Patches can apply to operating systems, third-party applications, utilities, or security components.

### **Installation Steps**

Follow these steps to enable Patch Management in Infraon Infinity.

**Step 1: Prerequisites**

Ensure:

* **PATCH\_MANAGEMENT** [license](https://docs.infraon.io/infraon-help/infinity-user-guide/infraon-configuration/organization/license) is enabled
* InfraonPatch feature flag is enabled
* Infraon [Inventory Agent](https://docs.infraon.io/infraon-help/infinity-user-guide/infraon-configuration/bots/inventory-agent) is installed on assets

**Step 2: Install Infraon Patch App**

* Navigate to **Marketplace**
* Locate [Infraon Patch](https://docs.infraon.io/infraon-help/infinity-user-guide/marketplace/infraon-patch)
* Click **Install**

The configuration page is displayed after installation.

**Step 3: Configure and Verify**

* Enter the required configuration details
* Click Verify
* Click Submit

**Step 4: Patch Agent Installation (Bulk)**

After successful configuration, the Patch Agent is installed in bulk on all eligible inventory assets.

**Step 5: Patch Agent Installation (Single Asset)**

* Navigate to Bots → Inventory Agent
* Select the required asset
* Click [Install Patch Management Agent](https://docs.infraon.io/infraon-help/infraon-configuration/bots/inventory-agent#bulk-edit)

**Step 6: View All Patches**

* Navigate to Assets → [Patch Management](https://docs.infraon.io/infraon-help/infinity-user-guide/asset/asset-information/patch-management)
* View all discovered patches in the organization

**Step 11: Install Patch from Asset List**

From the [Assets tab,](https://docs.infraon.io/infraon-help/infinity-user-guide/asset/asset-information/patch-management) install the patch on assets where it is marked as Missing

**Troubleshooting**

If an older Patch Agent exists:

* Navigate to C:\Program Files
* Delete the infraon folder
* Reinstall the Patch Agent

## **What you see on the screen**

The **Patch Management** page provides a consolidated view of all patches detected across the organization, along with their associations with assets.

On the left panel, patches are categorized based on their installation status:

* **All** displays every patch detected in the environment
* **Missing** displays patches that are not yet installed on one or more assets
* **Installed** display patches that have already been applied

This page primarily represents the **Patches-to-Assets relationship**, enabling users to identify which assets are impacted by a specific patch. [Click here](https://docs.infraon.io/infraon-help/infinity-user-guide/asset/asset-information/patch-management) to view the **Assets-to-Patches** relationship.

![](https://content.gitbook.com/content/E4mkwSP8a1BSD9BFNFav/blobs/d90FHbwXvJZE2ehZ8joS/Unknown%20image)

Patch **| Basic Details**

<table><thead><tr><th width="137.800048828125">Label</th><th width="228.199951171875">Action</th><th>Description / Example</th></tr></thead><tbody><tr><td><strong>ID</strong></td><td>Click to view more details.</td><td>Unique identifier for each patch. Clicking it opens the Patch Details page.<strong>Example:</strong> ZPH-W-0008.</td></tr><tr><td><strong>Title</strong></td><td>View only</td><td>Displays the name or description of the patch. No actions can be performed.<br><br><strong>Example:</strong> 2025-09 Cumulative Update for Windows 11.</td></tr><tr><td><strong>Severity</strong></td><td>View only</td><td>Indicates the risk or importance level of the patch to help with prioritization.<br><br><strong>Example:</strong> Critical, Unspecified, etc.</td></tr><tr><td><strong>Release Date</strong></td><td>View only</td><td>Shows when the vendor released the patch.<br><br><strong>Example:</strong> Sep 09, 2025.</td></tr><tr><td><strong>Category</strong></td><td>View only</td><td>Indicates the type of patch.<br><br><strong>Example:</strong> Security updates, Definition updates, Updates, etc.</td></tr><tr><td><strong>KBID</strong></td><td>View only</td><td>Displays the related Knowledge Base reference, if available.<br><br><strong>Example:</strong> KB5065426.</td></tr></tbody></table>

### **Patch Details**

Patch details can be viewed by selecting a patch from the Patch Management list.The Patch Details page provides a comprehensive view of the selected patch, including its metadata, affected assets, and associated files.

#### **Summary**

The **Summary** tab provides high-level information about the selected patch. This view helps users quickly understand what the patch is, its importance, and its current approval and testing status.

![](https://content.gitbook.com/content/E4mkwSP8a1BSD9BFNFav/blobs/bMHIUyjOrYxvBZVq231P/Unknown%20image)

In this section, users can view:

* Patch title and description
* Patch category and severity
* Patch size
* Release date
* Knowledge Base (KB) ID, if available
* Support URL for reference
* Test status and approval status

#### **Assets**

The **Assets** tab displays all assets associated with the selected patch, along with their current patch and operational status. This view helps users identify where the patch is already applied and which assets still require action.

The **left panel** allows users to filter assets based on patch status:

* **Missing:** Displays assets where the selected patch has not yet been installed
* **Installed:** Displays assets where the patch is already applied

<figure><img src="https://content.gitbook.com/content/E4mkwSP8a1BSD9BFNFav/blobs/hwD5X6nPTn3jlj2hVvmM/Unknown%20image" alt=""><figcaption></figcaption></figure>

In this section, users can:

<table><thead><tr><th width="157">Label</th><th width="190.20001220703125">Action</th><th>Description / Example</th></tr></thead><tbody><tr><td><strong>Search</strong></td><td>Click to search</td><td>Allow users to locate assets using keywords quickly. Search by asset name or asset ID to find a specific device.</td></tr><tr><td><strong>Filter</strong></td><td>Click to apply filters.</td><td>Enables advanced filtering using multiple fields and conditions.<br><strong>Fields:</strong> CI ID, Asset Name, Asset ID, etc. <strong>Conditions:</strong> in, not in, contains, not contains, equal to, and not equal to.</td></tr><tr><td><strong>Asset Name</strong></td><td>View only</td><td>Displays the name of the asset associated with the patch.<br><br><strong>Example:</strong> 140-Sam-EIMS.</td></tr><tr><td><strong>Asset ID</strong></td><td>View only</td><td>Displays the asset's unique identifier.<strong>Example:</strong> ASSET0001.</td></tr><tr><td><strong>Operational Status</strong></td><td>View only</td><td>Indicates whether the asset is currently reachable or active.<br><br><strong>Example:</strong> Up, Down.</td></tr><tr><td><strong>Type</strong></td><td>View only</td><td>Displays the asset type.<strong>Example:</strong> Laptop.</td></tr><tr><td><strong>Status</strong></td><td>View only</td><td>Indicates the asset usage or allocation status along with patch applicability.<strong>Example:</strong> In Use, Allocation.</td></tr><tr><td><strong>Make</strong></td><td>View only</td><td>Displays the manufacturer of the asset.<strong>Example:</strong> Lenovo, Dell.</td></tr><tr><td><strong>Serial Number</strong></td><td>View only</td><td>Displays the asset's hardware serial number.<br><br><strong>Example:</strong> PF4R241T.</td></tr><tr><td><strong>Bulk Actions</strong></td><td>Select and apply</td><td>Allows users to select multiple assets using checkboxes and install the patch across all assets chosen at once. Select multiple missing assets and deploy the patch in a single action.</td></tr></tbody></table>

#### **Files**

The **Files** tab lists the files associated with the selected patch. This view provides visibility into the actual installation packages used during patch deployment.

![](https://content.gitbook.com/content/E4mkwSP8a1BSD9BFNFav/blobs/N5MrCJ0KKGHSIYIKqjke/Unknown%20image)

In this section, users can view:

* File name
* Download URL
* Release date of the file
* File size