Automated Remediation Plans is a low-touch capability, allowing you to create and manage a fully automated process for maximum environment compliance and minimum user intervention.
Automatic Remediation Plans Rules
The remediation plan rule is based on a dynamic patch filter. Considering the repeat type interval, JetPatch checks if there are any patches in the filter, that are needed and deploys them during the maintenance schedule if 'auto-activate' is configured.
To access the Automated Remediation Plans Rules, navigate to Rules -> Automated Remediation Plan Rules.
Click on 'Add' to bring up the prompt for "Create Automated Remediation Plan Rule".
Automatic Remediation Plans Rules Creation
To create a new rule click on the 'Add' button.
Note - Automated Remediation Plans rules are based on the existing Patch Filter. For more information check the "Saved Filters" section in Patch Catalog.
Insert the following information:
- Rule Name
- Patch Filter - JetPatch will include the patches in the chosen patch filter results into the newly created Remediation Plan
- Repeat Every -
- Repeat Interval - Specify the interval of the automated remediation plan creation
- Repeat Frequency - Day/Week/Month
- Repeat Entity - This section will be changed based on the Repeat Frequency:
- Repeat Frequency = Day - The only information to add is the exact time & timezone of the plan creation
- Repeat Frequency = Week - You can specify which exact days in the week JetPatch will create the automated plan, along with the exact time & timezone of the plan creation.
- Repeat Frequency = Month - There are two possible "Month" options:
- Recurring Time - Trigger the Remediation plan every {repeat type | first, second, third, fourth, last} and {day of the week | Sunday, ..., Saturday} at a specific time
- Day In The Month - Specify a day {1,2,3,...31} and time you would like the RP to be repeated on
- Auto-Activate plan - JetPatch will activate the plan automatically based on the repeat fields you have selected.
- Emergency Plan - Checking this field will mark your Automated Remediation Plan to run during an Emergency Window, which will supersede other Maintenance Window rules.
- ITSM Ticket template name/ID- This field will associate a ticket template name with your integrated ITSM based on the actions in this remediation plan
- Workflow - Select the required Workflow for the different operating systems families.
- Notifications - Checking this field will send an executive summary to the email you provide.
Note #1 - If JetPatch needs to create a plan but there are no patches in the Patch Filter result, the plan won't be created and a proper log will be shown in the "Logs & Alerts" section, in Platform Configuration.
Note #2 - If the selected Patch Filter has the "Smart Group" table filter - JetPatch will apply the plan only on the groups in the "Smart Group" table filter.
Note #3 - If the selected Patch Filter has the "Endpoint Name" table filter - JetPatch will apply the plan only on the groups having the endpoint (from the "Endpoint Name" table filter) assigned to them.
Note #4 - Because a server can only be assigned to a single maintenance window, using an emergency remediation plan can allow you to patch sooner than that on an as-needed basis. Example: Chrome releases patches on Tuesdays, but your MW is set to Saturdays. You can use an Automated Remediation Plan, set it to the emergency, and patch that server on Tuesday when Chrome puts out a new patch as opposed to the set maintenance window.
Automatic Remediation Plans Rules Table
For any automated plan rule, you can find the following information:
- Name
- Patch Filter
- Modified By
- Status
- Repeat Schedule
- Next Creation
- Automated Activation
- Actions -
- Edit Rule
- Create Now - JetPatch will create the plan immediately.
- Delete Rule
- Show Patch Filter - will redirect the user to the Patch Catalog with the relevant patch selected
Schedules
Repeat Interval |
Repeat Frequency |
Repeat entity |
Repeat Schedule |
X |
Day(s) |
Time & Timezone |
Every X days at MM:HH <TIMEZONE> |
X |
Week(s) |
Days of the week, Time & Timezone |
Every X weeks on A, B, C at MM:HH <TIMEZONE> |
X+D |
Month(s) (Day in the Month) |
Ordinal day of the month, Days of the week, Time & Timezone |
X Days after every Y'th weekday, at MM:HH |
X |
Month(s) (Time in the month) |
Day Y, Time & Timezone |
Every X months on day Y at MM:HH <TIMEZONE> |
Troubleshooting When Automation Remediation Plans are not being Created
-
Remediation Plan Rule is Disabled
-
The saved Patch Filter has No Results
-
The saved Patch Filter is Broken
-
A broken Automated Remediation Plans Rules can happen if the selected Patch Filter is broken. To fix a broken Automated Remediation Plan rule, go to the Patches -> Remediation Plans and fix the problematic Patch Filter. For more information check the "Saved Filters" section in Patch Catalog.
-
Why Are there Multiple Plans of the Same Name?
- Once a plan is activated, it cannot be edited, so if it's waiting for execution and a new auto policy runs, then you may see more than one plan. This is fine because, at the end of the day, remediation plans are policies and only one plan will run and synchronize with the other plans.
Related Articles
Comments
0 comments
Please sign in to leave a comment.