There are few scenarios when the patch scan will occur, which are listed below:
The Vulnerability Database is automatically updated every day. This can also be updated manually (not required for cloud based servers). To update the Vulnerability DB, navigate to the Patches tab on the Patch Manager Plus console. In the left pane, under Update Vulnerability DB, click on the 'Update Now' button. After the Vulnerability DB has been updated, and only if new patches are found, a patch scan is done in the subsequent refresh cycle.
A patch scan is initiated after the patches are installed via Install Patch Configuration, APD Deployment or Test and Approve, in the target machines. This scan ensures that the patch status is posted to the server after the installation.
When patches are being installed, there are certain patches which require a reboot after installation. So when the systems with these patches are rebooted next, a patch scan occurs to update the patch status to the server.
If any patch belonging to an APD task/ Test Group is approved/ not approved/ declined, a patch scan is initiated for the target systems of that APD task/Test group in the subsequent refresh cycle.
Patch scan is initiated manually by,
A patch scan is initiated after the agent installation. This patch scan occurs only if the Perform Patch Scanning checkbox has been enabled. To enable this checkbox navigate to Admin -> SoM Settings -> Agent settings -> General Settings tab. Under Actions to be performed after agent installation, enable the checkbox "Perform Patch Scanning".
