Getting Started

Endpoints

Patch Management

Vulnerability Management

Software Deployment & IT Assets

Automation & Remote Desktop

Real-Time Reports & Alerts

Account Access & Management

SSO Authentication

Security Concerns

Need Help?

Action1 5 Documentation 5 Roll Out and Deploy Updates

Roll Out and Deploy Updates

After reviewing pending updates, you can push them to multiple endpoints at once directly from the Update Approval page. Select the patches you want to deploy and click Install Now.

update approval

In addition to on-demand patch delivery, Action1 enables you to automate the patch management process and tailor it to your organization’s patch management policy.
Automated patch deployment strengthens overall infrastructure security and helps you ensure that your endpoints are up-to-date and compliant with the security requirements.

How Does It Work?

The automated patch management process goes as follows:

  1. The stable updates typically become available in Action1 within two days after release.
  2. If your workflow requires patch review and manual approval before distribution, the authorized administrator reviews and approves patches on the Update Approval  page.
  3. Action1 automatically distributes approved updates to the target endpoints according to the configured schedule.

TIP: To roll out updates in stages, you can use a new Update Ring automation. See Update Rings for details.

  1. Endpoints that are offline or disconnected at the time of deployment receive updates automatically when they come back online, provided it occurs within the configured retry window.
  2. To examine the update deployment results, you can use:

How to Create an Automation?

Follow the Deploy Update automation wizard, as explained in the Automate Patch Management section.

 

Service-Level Agreements (SLAs) for Updates

In the Update Approval view, you can see update status and SLA Compliance deadlines, such as Overdue or Due later. These deployment deadlines are calculated based on the industry best practices and service-level agreements (SLAs) that prescribe different timeframes for updates with different severities.

For example, when you establish the SLA for deploying Critical severity updates to X days, you aim to deploy the update within X days of its release (i.e., availability in Action1). Overdue updates will be prominently displayed on the dashboard.

Default SLAs are as follows:

  • for Critical updates – 7 days
  • for High impact updates – 15 days
  • for Medium impact updates – 30 days
  • for Low impact updates – 60 days

Adjusting Update Deployment SLAs

To modify SLAs using the dashboard:

  1. Open the Dashboard page and go to the Update Deployment Compliance widget.
  2. Click a gear icon in the top-right corner.
  3. In the Service Level Agreement dialog displayed, set remediation timeframes for each severity.
Endpoints view and General tab expanded

To modify SLAs using Action1 configuration settings:

  1. Open the Advanced page, select SLA settings category.
  2. Select the Vulnerability Remediation SLA you want to update and provide a new value.
Endpoints view and General tab expanded