Patch Management PDF Print E-mail
What is Patch Management?

Patch Management is a process by which systems in your network are secured by applying critical patches and updates, and kept free from vulnerabilities that exist in the OS and software applications. Accurately identifying system vulnerabilities, detecting missing patches, testing them and then deploying patches to eradicate the vulnerabilities is the key to effective patch management. It is imperative that every organization follows patching procedures and keeps systems up to date with the latest patches.

What are the benefits of Patch Management?

Incorporating patch management in your corporate network is very important. Here are some of the benefits:

  • Ensure that the most appropriate software available is installed
  • Seal security loopholes in systems that can be exploited by malicious hackers
  • Reduce system downtime
  • Limit attacks that target known software vulnerabilities
  • Be the last line of defense and secure networks from security threats

How does our Patch Management Solution differ?

  • Flexible modes of operation - agent-based, agentless, or both
  • Multiple-OS vulnerability scanning and patching
  • Web-based administration console for universal secure-access to data views and configurations
  • Cross-platform product installation
  • Intelligent patch assessment and validation
  • Simplified Patch Deployement
  • Automated, policy-based patch management
  • Tons of reports to quickly show what was done, or needs to be done

Flexible modes of operation - agent-based, agentless, or both

Be it workstations and servers that are a part of the LAN, or mobile computers that are on and off the network, or other important systems that are not accessible via the local network - lays out the best of both worlds before you - an agentless solution, that minimizes the number of services and software running on target machines and can handle a changing network scenario and - an agent-based solution which is efficient in a bandwidth-constrained environment and can work well in a scaling network environment; both approaches in one package.

Multiple-OS vulnerability scanning and patching

Equipped with the ability to manage patches for different operating systems like Windows and related Microsoft applications namely IE, MS SQL, Media Player, MDAC, IIS, .NET Framework, DirectX etc., RedHat Linux and Debian Linux.

Web-based administration console for universal secure-access to data views and configurations

Access to all the features through a single, unified web-based interface using standard web browsers. Not having to go through the burden of installing additional client-console software to access the management system, provides administrators and IT managers with the independence to use the system from anywhere.

Cross-platform product installation

Can be installed and run on both Windows & Linux (RedHat & Debian) operating systems, offering the freedom to allocate machines based on availability in a resource-constrained, heterogeneous environment.

Intelligent patch assessment and validation

Scans systems, an IP range or the entire network, identifies vulnerabilities and reports the status of missing patches and existent patch installations. Administrators can easily determine at a glance which systems do not have critical patches, and take remedial action.

The validity of patches - missing or installed - is ascertained by intelligent file size-and-version checks, registry checks and checksums and these enable PatchQuest to recognize when a new file has overwritten a file from an old patch.

Simplified Patch Deployment

Simplifies the patch deployment process by automatically handling patch interdependencies, multiple patch installations on the same or different systems, deployment sequencing and system reboots. You can always be in sync with the latest patch information by updating the vulnerability database from the internet.

Automated, policy-based patch management

Allows automatic download and installation of missing patches and service packs, based on preset baselines or corporate security policies. You can conveniently schedule the vulnerability scans and patch deployment for a particular day of the week or set repetitive schedules and arrange machines in groups and manage updates - all in just a few simple clicks using the web interface; and stay in control.

Tons of reports to quickly show what was done, or needs to be done

Useful and accurate reports that keep you up-to-date, help you make informed decisions and ensure policy compliance. Delivers summaries on software inventory details, scan and deployment progress status, patch installation audit, patch management and many more.