Customized deployment of third-party patches


When it comes to cyberattacks, no single deployment policy will ever suit the needs of two different organizations. The trick is finding the right cybersecurity solution for your business—one that offers custom policies to keep your endpoints secure.

With features like Customized Deployment, you can tailor the deployment process to your business' specific needs using templates. For instance, you can configure the deployment of third-party patches before deploying them. Some of the customization options available under Customized Deployment include:

  1. Skipping the deployment process if the application is running.

  2. Providing an option to uninstall older patches.

  3. Restricting applications from having a start menu icon.

  4.  Restricting application from having a taskbar icon.

  5. Restricting applications from having a desktop shortcut.

These options facilitate the deployment of third-party patches in Microsoft System Center Configuration Manager (SCCM) and help with adhering to your organization's policies.

Figure 1:Templates for Customized Deployment.

With Customized Deployment, you can:

Scenario 1

I don't want patch management to disrupt users while they're working. What can I do?

Solution: You can choose to skip the deployment process for particular business-critical applications if they're currently in use. Just select the Skip the deployment process if the application is running template.

Scenario 2

When I update applications like Java and Skype, earlier versions are left behind, consuming a lot of my disk space. What can I do?

Solution: You can uninstall the older patches by selecting Uninstall recent old updates before deploying the new ones in the Customized Deployment window before deployment.