JetPatch Release Notes 4.2.8

Version: 4.2.8.199 + Connector 4.2.8.24 (March 20, 2025)

Latest UR available on our 4.2.8 Live Repo
Review our pre and post upgrade best practices.

• UR1 (build 202) - March 27, 2025
• UR2 (build 211) + Connector 4.2.8.26 - April 7, 2025 

Extended Platform Support

Note: New OS support requires the 4.2.8 connector.

• Ubuntu 24.04 (April 2024 LTS): Support for Patches and Agents
• Amazon Linux 2023: Support for Patches and Agents
• AIX 7.3: Support for Patches
• macOS 14 Sonoma (Intel Only): Support for Connector and Tasks only (Support Patches for Intel and ARM will be in 4.3)

Major New Features

Patch Management Without WSUS (Windows)

• WSUS-less: Windows endpoints retrieve patches directly from Microsoft Update.
• Eliminates the need for a WSUS server and integrates with existing JetPatch workflows.
• Note1: Requires the 4.2.8 connector.
• Note2: This also works in a hybrid mode (meaning if some endpoints are pointing to WSUS and some are pointed to Microsoft cloud).
• Additional Details: WSUS vs. Microsoft Cloud
  • JetPatch fully supports receiving updates either via WSUS (including Primary and Replica servers) or direct/proxy communication with the Microsoft Cloud. Both approaches provide the same features and patch governance capabilities within the JetPatch console.
  • Decision Criteria: The main question is whether there are any requirements preventing direct or proxy communication with the Microsoft Cloud, which would necessitate using a WSUS Primary (and possibly Replicas).
  • Hybrid Model: If some endpoints are allowed to connect to the Microsoft Cloud while others are not, those restricted endpoints can still be serviced through WSUS. This allows each segment of the environment to be configured according to its connectivity requirements.
  • For more information on how to configure windows machines to work without WSUS, see article.

Task Scheduler

Users can create scheduled tasks for existing Smart Groups. Relevant use case (separate recurring reboot time from recurring remediation plan time).

• Access under a new Schedulers section.
• “+NEW” button opens a pop-up to define a Task Scheduler

Resource Duplication on Multiple Pages

You can now duplicate resources on the following additional pages:

• Patches > Patch Bundle > Manage Patch Bundles
• Agents > Managed Agents > Policy
• Rules > Maintenance Rule
• System > Smart Groups > Management
• System > Workflows
• Users > Roles & Permissions

Connector Log Rotation

• Note: Applies automatically upon upgrade to Connector version 4.2.8
• Connector logs now support automatic rotation and cleanup to manage storage efficiently.
• When the log directory exceeds 450 MB, the connector automatically deletes the oldest logs hourly.
• Individual log file size remains capped at 1MB.

UI/UX Enhancements

• Support Menu: "Chat with us"

  • Opens JetPatch Support Bot in a new browser tab.
    

• Users Section

  • Users tab migrated to new “Users” screens:

    • Directories

    • Management

    • Roles & Permissions

      

• Smart Groups (System > Smart Groups > Create Smart Group)

  • Filter improvements: Include/Exclude options now available (similar to Patches Catalog).

• Compliance Flag & Info

  • Compliance status (ON/OFF) displayed in the header.
  • Number links to “Compliance Rules” screen, filtered by "Enable."
• Endpoint Readiness
  • Added “Last time 100% ready” column displaying date/time of full readiness.
  • Also modified to support WSUSLess and Hybrid mode

Bug Fixes & Other Improvements

• Performance Enhancements: Improved overall JetPatch performance.
• All Resources & Activities: Added a confirmation dialog for Enable/Disable/Re-run actions.
• Endpoint Management: Added a tag filter for easier sorting.
• Interactive Reboot: Snooze configuration is now user-configurable.
• Automatic Remediation Plan (RP) Rule: Added a "Status" filter.
• Remediation Plan Title: Hover tooltip now shows the full name.
• UI Updates: Minor fixes for frequencies, RBAC (server scope permissions), and default workflow names.
• WSUS: Enhanced the run-sync API call related to processing updating groups and endpoints if they are assigned to a WSUS replica
• Remediation Plan: Updated patch-edit view, plus improved filtering.
• New Refresh Options: Added Refresh buttons to relevant pages.
• Resource "Used By": Warning appears when editing a resource already in use.
• System > Smart Groups > Assignment: Fixed an issue where the assignment table sometimes appeared empty. (UR1)
• Agents > Managed Agents: Changed the icon to JetPatch after creating a rule. (UR1)
• Help > What’s New: Correctly redirects to 4.2.8 Release Notes instead of older notes. (UR1)
• Agents & Tools > Managed Agents: Fixed a bug preventing creation of a built-in service after new files were introduced. (UR1)
• System > Windows 2016 (WSUS-less): Fixed Microsoft Update enablement issue for Windows Server 2016 server. (UR2)
• System > Scripts & Tasks: Added a built-in task for the WSUS-less prerequisites script. (UR2)
• WSUS Scripts: “Get Updates” now runs every 12 hours by default. (UR1)
• Rules > Automatic Remediation Plan: Added SLA date range support in Auto RP rules. (UR2)
• Connector > Mac: Fixed upgrade exceptions and resolved command execution errors. (UR2)
• UI > macOS Version: Aligned macOS version naming in the UI. (UR2)
• System > vCenter Discovery: Resolved an issue where some OSes were detected as “unknown.” (UR2)

Known Issues

• Inconsistent Trial Notification about amount of remaining days (will be fixed in 4.3).
• WSUS-Less does not have 3rd party (will be added in 4.3).
• WSUS-Less does not pre-download approved patches (ie: maintenance schedule must be used for download and install, similar to Linux).  (will be added in 4.3.1).
• Endpoint > Management > Filter by Tags > Manage Tags: No visual indication of assigned tags with Select All; use Platform Configuration > Servers > Manage Tags workaround (will be fixed in 4.3.1).
•