This site is for Avast Business products only. For articles on AVG Business products, see AVG Business Help. If you are in the right place but cannot find what you are looking for, please contact Avast Business Support for further assistance.

Scanning Devices for Missing Patches

This Article Applies to:

  • Avast Business CloudCare

IMPORTANT: The CloudCare console does not support opening multiple tabs in the same browser session. Please use multiple browsers or incognito mode instead.

Tasks will only run on the assigned devices when those devices are online and communicating with the console. If a one-time task is skipped on a device due to the device being unreachable, it will run when the device becomes reachable again. In case of multiple missed instances of a recurring task, the task will run only once and then continue on the schedule. In case of one-time/recurring restart or shutdown tasks, however, the missed ones will not be run again.

 

Your devices must be scanned for missing patches before you can approve any deployments or ignore specific patches. Just as with patch deployment, you can choose to scan for patches automatically or manually.

The amount of time a patch scan takes depends on the number of patches being searched for and the number of devices being scanned. Once the scan is complete, any detected missing patches will be displayed on the Patches page.

To download the up-to-date list of all supported patches, click here.

Automatic Scanning

The automatic patch scan checks all devices tied to a particular policy for missing software application updates (patches) on a recurring basis. After the scan completes, the results are displayed on the Patches page and under the Patch Results tab of each device that was scanned.

To configure automatic patch scans:

  1. Go to the Policies page (at partner level for master policies or customer level for customer policies)
  2. Select the desired policy from the left-hand pane
  3. Under Endpoint Protection, expand the Patch Management section
  4. Go to the Patch Settings tab
  5. Under Scan frequency, choose between daily, weekly, and monthly scans, and define the time of day you would like the scan to take place
    • If you decide on monthly scans, please ensure the day of the month you’ve chosen occurs every month (for example, do not choose the 31st day of the month unless you specifically want to skip installing on months without 31 days)

Under Patch Deployment, you can also choose whether detected missing patches will be installed manually or automatically (see Deploying Missing Patches for more information).

Ad Hoc Scanning

If you would like to scan for patches manually, you can do so from either the Devices page or the Patches page.

Devices Page

To manually scan devices of a selected customer:

  1. Go to the Devices page at customer level
  2. Tick the checkbox(es) next to the device(s) you want to run the task on
  3. From the actions menu that appears at the bottom of the page, choose Patch Scan
  1. Confirm the action

You can also use the Patch Scan button above the device list when running a patch scan on all customer's devices.

Finally, you can run any task on a single device from the device's Detail page too.

Patches Page

To manually scan all devices of a selected customer:

  1. Go to the Patches page at customer level
  2. From the Patches section in the left-hand pane, select All Patches or Patches by Device
  1. Click the Run Patch Scan button
  2. Confirm the action

To manually scan a single device via the Patches page:

  1. Go to the Patches page (at customer level)
  2. From the Patches section in the left-hand pane, select Patches by Device
  1. Expand the device you want to scan
  2. In the Actions section, click Scan for Patches
  3. Confirm the action

 

Other Articles In This Section:

Deploying Missing Patches

Automatic vs. Ad Hoc Patching

Related Articles:

Patch Management Overview

Recommended Windows Update Configuration

Configuring Cache Clearance

Configuring Restarts