Skip to content
SecPod  – Documentation
  • Docs Home
  • Categories
    • SanerNow CyberHygiene Platform
    • Products
    • Security Intelligence
    • Supported OSs and Platforms
    • How Tos
    • Release Notes
    • Knowledge Base
    • FAQs
  • Other Resources
  • About SecPod
  • Contact Support
Search this website
Menu Close
  • Docs Home
  • Categories
    • SanerNow CyberHygiene Platform
    • Products
    • Security Intelligence
    • Supported OSs and Platforms
    • How Tos
    • Release Notes
    • Knowledge Base
    • FAQs
  • Other Resources
  • About SecPod
  • Contact Support
  • Docs Home
  • Categories
    • SanerNow CyberHygiene Platform
    • Products
    • Security Intelligence
    • Supported OSs and Platforms
    • How Tos
    • Release Notes
    • Knowledge Base
    • FAQs
  • Other Resources
  • About SecPod
  • Contact Support

SanerNow CyberHygiene Platform

  • Platform Function Guides
  • Getting Started with SanerNow
  • How does SanerNow’s deployment architecture work?
  • Pre-requisites for SanerNow Deployment

Products

SanerNow AVM
  • What’s New in SanerNow?
  • Product User Guides
  • Overview of SanerNow Advanced Vulnerability Management
Vulnerability Management
  • SanerNow Vulnerability Management User Guide
Patch Management
  • SanerNow Patch Management User Guide
Compliance Management
  • SanerNow Compliance Management User Guide
Asset Exposure
  • SanerNow Asset Exposure User Guide
Endpoint Management
  • SanerNow Endpoint Management User Guide
Posture Anomaly
  • SanerNow Continuous Posture Anomaly Management Tool Product Guide

Security Intelligence

  • List of IoA (Indicators of Attack) covered in SanerNow
  • List of Vulnerability to Exploit/Malware Mapping covered in SanerNow
  • Compliance Benchmark Coverage
  • Application and OS Remediation Coverage
  • OVAL Definitions Family-wise Distribution
  • OVAL Definitions Class-wise Distribution
  • OVAL Definitions Platform Coverage
  • Security Content Statistics
  • Overview of Security Content and Intelligence

Supported OSs and Platforms

  • Supported Third-party Applications for Patching
  • Operating Systems and Platforms Supported

How Tos

General
  • How to download and install Saner agent in Mac?
  • How to download and install Saner agent in Linux?
  • How to download and install the Saner agent in Windows?
  • How to update the expiry date of an existing subscription?
  • How to manage users and their preferences using role-based access?
  • How to create a new user in SanerNow?
  • How to onboard a new organization?
  • How to uninstall the Saner agent through SecPod Saner deployer?
  • How to deploy the Saner agent through SecPod Saner deployer?
  • How to install a Saner agent through the command line?
  • How to uninstall the Saner agent through command line?
  • How to create a new account in SanerNow?
  • How to sign-up with SanerNow?
Vulnerability Management
  • How to remediate vulnerabilities from vulnerability management dashboard?
  • How to manage excluded vulnerabilities in SanerNow?
  • How to exclude vulnerabilities in SanerNow?
  • How to automate and schedule vulnerability scans?
Patch Management
  • How to manage excluded patches in SanerNow?
  • How to exclude patches in SanerNow?
  • How to automate patch management in SanerNow?
  • How to roll back patches in SanerNow?
  • How to fix firmware in SanerNow?
  • How to apply missing patches in SanerNow?
  • How to check the status of patching activity?
  • How to apply the most critical patches in SanerNow?
Compliance Management
  • How to run a compliance scan?
  • How to custom create a security policy?
  • How to align with PCI security compliance management?
  • How to align with NIST 800-171 security compliance management?
  • How to align with NIST 800-53 security compliance management?
  • How to align with HIPAA security compliance management?
Asset Exposure
  • How to run an asset scan?
  • How to manage asset licenses?
  • How to blacklist and whitelist applications in SanerNow?
Endpoint Management
  • How to investigate total RAM or CPU threshold (greater than or equal to 80%) in Windows systems?
  • How to collect operating systems information in Windows?
  • How to investigate disks running out of space (<100 MB) in Windows systems?
  • How to collect and investigate disk information on Windows systems?
  • How to collect BIOS information such as serial number, version, manufacturer in Windows systems?
  • How to check the status of Windows Update Server (WSUS/SCCM)?
  • How to collect all software patches that are hidden in the Windows Update server?
  • How to collect all installed patches in Windows systems?
  • How to collect all the important missing patches in Windows systems?
  • How to collect mounted disk information on Linux systems?
  • How to check wireless signal quality in Linux systems?
  • How to check wireless security in Linux systems?
  • How to check all firewall policies on Linux systems?
  • How to collect DNS information on Linux systems?
  • How to collect all Dynamic Host Configuration Protocol (DHCP) information on Linux systems?
  • How to collect ARP entries that are created when a hostname is resolved to an IP address and then to a MAC addressing in Linux?
  • How to check wireless signal quality in Windows systems?
  • How to check wireless security in Windows systems?
  • How to collect all open ports in Windows systems?
  • How to collect all network interfaces in Windows systems?
  • How to investigate DNS cache on Windows systems?
  • How to check all firewall policies on Windows systems?
  • How to collect DNS information on Windows systems?
  • How to collect all Dynamic Host Configuration Protocol (DHCP) information on Windows systems?
  • How to collect all the applications with an unknown publisher in Mac systems?
  • How to collect environment variables set in all operating systems?
  • How to collect all families of operating systems such as Windows, Unix, and macOS?
  • How to collect ARP entries that are created when a hostname is resolved to an IP address and then to a MAC addressing Windows?
  • How to collect all software licenses in Mac systems?
  • How to collect all the applications with an unknown publisher in Windows systems?
  • How to collect a list of applications that are started when you boot your computer?
  • How to identify potentially unwanted programs such as torrent downloaders or unnecessary toolbars running on Windows systems?
  • How to collect all software licenses in Windows systems?
  • How to collect all the applications with an unknown publisher in Linux systems?
  • How to perform system tuning?
  • How to enable/disable devices in SanerNow?
  • How to block blacklisted applications in SanerNow?
  • How to delete and quarantine a file?
  • How to deploy software in SanerNow?
  • How to enable and disable firewall settings in SanerNow?
  • How to start and stop the processes in SanerNow?
Reports
  • How to schedule for the report back up?
  • How to create a custom report in SanerNow?
  • How to configure mail settings to email Report PDF?

Release Notes

  • Release Notes SanerNow 5.3
  • Release Notes SanerNow 5.2
  • Release Notes SanerNow 5.1
  • Release Notes SanerNow 5.0
  • Release Notes SanerNow 4.8.0.0
  • Release Notes SanerNow 4.7.0.0
  • Release Notes SanerNow 4.6.0.0
  • Release Notes SanerNow 4.5.0.0
  • Release Notes SanerNow 4.4.0.0
  • Release Notes SanerNow 4.3.0.0
  • Release Notes SanerNow 4.2.2.1
  • Release Notes SanerNow 4.2.2.0
  • Release Notes SanerNow 4.2.1.0
  • Release Notes SanerNow 4.2.0.0
  • Release Notes SanerNow 4.1.1.0
  • Release Notes SanerNow 4.0.0.5

FAQs

  • Technical FAQs
  • Home
  • Docs
  • How Tos
  • Patch Management
  • How to automate patch management in SanerNow?

How to automate patch management in SanerNow?

Table of Contents
  • How to run Pre-remediation and Post-remediation scripts?

SanerNow Patch Management Solution offers automation rules to remediate vulnerabilities soon after detection. You can automate the entire patch management cycle from scanning to deployment with the automation rules.

Let us learn how to automate patch management in SanerNow.

  1. Go to Patch Management Tool: You will land on the patch management dashboard.

2. Click on Automation.

3. Select desired Asset Group and Asset Family.

4. Now, select the assets by clicking the checkboxes.

5. Click on Create Automation Rule.

The Schedule Task Window is displayed to create an automation rule.

6. In Schedule Task Window, you can opt for patching options.

Note: Vendor Advisories (such as USN, RHSA, or CESA) are not considered for patch severity because there is no definite CVE score associated with them.

7. Choose patch installation type: You can choose both security and non-security patches.

8. Click on the Future Assets checkbox to include upcoming assets for patching.

9. Now, click Next to go to the schedule a task window.

10. Again, in Schedule Task Window, you can set schedule options.

  • Select how often the patching process must take place.
  • If you select the After Scheduled Scan option, patching happens every time after the scan
  • If you select to patch Daily at a specific time, mention the start and end time
  • If you want to patch Weekly, schedule the week and the day along with a start and end time to run the automation rule
  • If you’re going to run the rule for every month, select the month, week, day, and dates along with a start and end time to run the automation rule

11. From the dropdown list, schedule Reboot time after patching. You got three options,

  • Do not reboot
  • Reboot Automatically: Here, you can give a reboot pop-up message before rebooting starts
  • You can also schedule a reboot by setting reboot time and reboot message

Note: This value specifies the local date and time at which reboot will be mandated on all endpoints. Logged-in users are allowed to postpone reboot on their machines until this date time value is reached. A prompt will appear on user’s screen before initiating reboot.

How to run Pre-remediation and Post-remediation scripts? #

  1. You can choose to run Pre-remediation and Post-remediation Scripts before and after patching activity. Click on Choose File to upload the script from your device.

Supported file formats in the script are:

  • Windows: inf, reg, ps1, bat, exe, msi, msp
  • Linux: sh, deb, rpm
  • macOS: sh, pkg, dmg (pkg, app)

2. Assign the desired Task name.

3. You can write a customized message to notify patching activity in the Patching Activity Notification field.

4. You can also assign a post-patching activity message in the Post Patching Activity Notification field. These notifications will keep you notified about the patching activity.

5. Lastly, select the asset group from the dropdown list and click on Create Automation Rule.

You have successfully created an automation rule in SanerNow.

What are your Feelings
Share This Article :
  • Twitter
  • LinkedIn
Updated on October 11, 2022
How to exclude patches in SanerNow?How to roll back patches in SanerNow?
Table of Contents
  • How to run Pre-remediation and Post-remediation scripts?
Copyright 2023 - SecPod. All Rights Reserved. Privacy Policy.