2.4 Patch Management Process and Workflow

The following process maps demonstrate how patch information is communicated between the ZENworks Server and the ZENworks Agent and the general workflow administrators use to implement patch policy across the management zone:

The patch detection (PD) cycle begins each day at the ZENworks Server where a Vulnerability Detection task is scheduled for all ZENworks managed devices (servers and workstations).

For all patches in the Vulnerability Detection task, the ZENworks Agent performs by using the patch fingerprints incorporated into each individual patch, which determines the status (Patched, Not Patched, or Not Applicable) of that patch.

The results of the PD scan are sent to the ZENworks Server and can be viewed anytime in the Patches section of the Patch Management or Devices pages, even if a workstation is disconnected from your network.

After completion of the patch detection cycle, patches will either be distributed via patch policies or the ZENworks administrator will deploy the desired patches to each applicable device on the network.