Create a Patch Management policy - Legacy UI

About Patch Management

For general information about Patch Management for Windows devices in Datto RMM, including security level permissions, determining a device's patch status, patch reporting, and more, refer to Patch Management - Legacy UI.

What is a Patch Management policy?

With a Patch Management policy, you are pre-approving patches to be installed on your Windows devices on an ongoing basis as per the conditions you define. A Patch Management policy can not only manage the patches made available in Windows Update, but it also gives you more control, lowers your workload, and increases the security of your devices.

You can set up a global or site-level policy that can target multiple devices. You can define conditions such as the patch window and patch approval rules. You can also create a Patch Management policy for audit purposes only, and apply site-level overriding of global policy options.

IMPORTANT  Only Windows Managed Agents support Patch Management. Refer to Managed and OnDemand Agents.

NOTE  We recommend that you create at least two Patch Management policies: one for workstations and one for servers.

NOTE  Patch Management support for macOS devices is available via the ComStore component Install Updates with SUPER [MAC]. For more information, refer to macOS Patch Management.

How to...