Managing patches

Use Puppet Enterprise to configure patching node groups to meet your needs, view available operating system patches for your nodes in the console, and apply patches using the pe_patch::patch_server task.

• Configuring patch management

  To enable patch management, create a node group for nodes you want to patch and add the node group to the PE Patch Management parent node group.

• Patching nodes

  After configuring patch management, you can start applying patches to nodes. The patch_server task enables simply applying patches, while the group_patching plan performs health checks before and after patches are applied.

• Advanced Patching

  If you have a Puppet Enterprise (PE) Advanced license you can enable Advanced Patching with vulnerability remediation capabilities. From the PE console navigation bar, select System updates and click Get started with Advanced Patching now.

• Advanced Patching API

  To enable Advanced Patching, you must acquire a Puppet Enterprise Advanced license. Contact your Puppet Enterprise administrator or contact our sales team to acquire a license and enable this feature.