Articles in this section

Management

Endpoint management shows all the endpoints in your environment.  You can see what's their patching status, when they were last rebooted and more.  Moreover, you can select servers in order to either create a new vulnerability plan or suspend servers from receiving patch management for a period of time.

Go to Endpoints > Management from the left menu.

Management

The Management library contains an overall view of the endpoints.

Filters

You can filter the Endpoints using the following filters

  1. Search - Search endpoints by the Endpoint name
  2. Remediation Plan - Relevant endpoint for the chosen Remediation Plan ID. Note - this will change the values of "Patching Status" and "Endpoint Compliance" accordingly.
  3. Operating System
  4. Patch
  5. Patch Status
  6. Exemption - check Endpoint Exemptions and Warnings for more information.
  7. More Filters:
    1. Vulnerability
    2. Tags
    3. Smart Group

Management Information and Actions

  1. When hovering over the "Patching Status" bar you will see how many patches were installed/Not Installed on each endpoint.
    mceclip0.png
  2. If an endpoint has multiple exemptions, all of them can be shown by hovering the Exemption cell
    mceclip1.png
  3. You can create a Nexpose report by clicking on the Action button on the right 
    Screen_Shot_2020-03-17_at_4.15.29_PM.png

 

Endpoint Actions

By selecting endpoint you can make the following actions using the "SELECT ACTION" button:

Suspensions

Suspended by User

Users can suspend endpoints for a certain amount of time, based on dates or on Maintenance Scheduled.

  1. Select the Management tab located under the Servers menu
  2. Select the endpoints you want to suspend
  3. Click on Select Action  > Set Suspensions  
  4. A popup will appear enabling you to either Set suspension
  5. Under "Select suspension type" you can suspend the endpoint between certain dates or skip coming maintenance schedules.

mceclip0.png

Pending Reboot Suspension

If a reboot task is executed on the endpoint (as part of single execution or in a Workflow sequence), JetPatch will suspend the endpoint for 3 days with the "Pending Reboot Suspension" exemption.

The new exemption will be removed if/when:

  • Machine is rebooted
  • User removes suspension
  • 3 days passed since the “Pending Reboot Suspension” has been created.

Note - if JetPatch executing the "Interactive Reboot" task and it is marked for make a reboot only if it's needed, and no need to perform a reboot on the endpoint, the "Reboot Pending Suspension" won't appear.

More information can be found in Tasks, Interactive Reboot and Endpoint Exemptions and Warnings (Run Task section)

Remove a Suspension

Users can remove any suspension by:

  1. Select the Management tab located under the Servers menu
  2. Select the endpoints you want to suspend
  3. Click on Select Action  > Set Suspensions  
  4. A popup will appear, choose Remove Suspension
  5. Click on Save

Create a Remediation Plan Based On

More information can be found in Create Remediation Plan based on Vulnerability Scanners

Run Task

More information can be found in Tasks (Run Task section)

 

Endpoint Reports

Endpoint reports can be downloaded by clicking on the bottom left "Download Reports" icon.

The available reports are:

  • Endpoints Management Report (CSV) - downloading extended information on the filtered endpoints.
  • Endpoints with Missing Patches - List of all endpoints with the missing patches information
  • Endpoints with Missing Security Patches - List of all endpoints with the missing security patches information, grouped by security category.

Relevant Articles

Related articles

Comments

0 comments

Please sign in to leave a comment.