What is the best practice for updating a VM Host and Virtual Machines?

book

Article ID: 179760

calendar_today

Updated On:

Products

Patch Management Solution for Windows

Issue/Introduction

 

Resolution

Question
What is the best practice for updating a VM Host and Virtual Machines?

Answer

The main concern would be not to reboot the Host while the VM’s are running.

 

The Software Update Cycle and Reboot Schedule are controlled on a single Policy. This policy can be cloned and set to target the Collection / Filter that holds the Host Machines.

Be sure that each machine is only targeted by one Policy, for if there are multiple Policies targeting a single machine, there will be schedule conflicts and/or Software Update Cycle lock-ups.

 

Updating the Host through Patch Management 6.2:

 

·         Go to the Console 6.5 > Configuration Tab > Solution Settings > Software Management > Patch Management > Windows > Default Software Update Agent Configuration

o   Right-click the Policy in the left pane tree and select ‘Clone’

§  Rename to label the Policy to target the Host Machine

§  Configure to run the Software Update Cycle at the specified time

§  Configure to run the Reboot Schedule at the specified time

·         Advised to set this to ‘Never’ and no other settings to ensure that this machine is not rebooted.

·         This Policy is displayed in more detail on KB 43063.

 

Updating the Host through Patch Management 7.0:

 

·         Go to the Console 7.0 >  Settings > All Settings > Agents/Plug-ins > Software > Windows > Default Software Update Plug-in Policy.

o   Right-click the Policy in the left pane tree and select ‘Clone’

§  Rename to label the Policy to target the Host Machine

§  Configure to run the Software Update Cycle at the specified time

§  Configure to run the Reboot Schedule at the specified time

·         Advised to set this to ‘Never’ and no other settings to ensure that this machine is not rebooted.

·         This Policy is displayed in more detail on KB 45904 .

 

Virtual Machines: These machines can be treated like any other Client with the Altiris Agent. Those machines will simply execute the Software Update Cycle and Reboot Schedule as configured if part of the Default Software Update Policy. The host they reside on is the main concern.

 

Note:  If there is a scheduled scripting/job that is deployed, by Deployment Solution, Software Delivery or other 3rd Party Software, to all VM’s to shut them down, then it may be ok to schedule the Software Update Cycle and Reboot Schedule to execute following that time.

 

There are several items to be aware of. Please view the following KB articles:

·         46622

·         52568

Be sure to test these configurations before implemting them a into Production environment.