Sign in

Patching of Azure Environment

There was a problem that the LLM was not able to address. Please rephrase your prompt and try again.

This Runbook uses Azure Update Manager and automates updates and patches for VMs across Azure. It provides scheduling, deploying, and tracking of update compliance, reducing management overhead. This ensures VMs stay protected against vulnerabilities with minimal service impact.

  1. 1

    Get VMs part of resource group or specified list.

    There was a problem that the LLM was not able to address. Please rephrase your prompt and try again.

    This task involves listing all Azure VMs across all resource groups, enabling centralized management and oversight.

    1
  2. 2

    Collect list of patches to be deployed.

    There was a problem that the LLM was not able to address. Please rephrase your prompt and try again.

    This task involves fetching a comprehensive list of patches awaiting deployment on Azure Virtual Machines. This ensures the VMs are up-to-date with the latest security and performance improvements.

    2
  3. 3

    Review latest available patches on Servers.

    There was a problem that the LLM was not able to address. Please rephrase your prompt and try again.

    This task reviews the latest installed patches on servers and involves checking and documenting the most recent updates applied to ensure systems are current and secure.

    3
  4. 4

    Enable Scheduled Patching for Azure VM

    There was a problem that the LLM was not able to address. Please rephrase your prompt and try again.

    This task involves setting "patchMode" to "AutomaticByPlatform" and "bypassPlatformSafetyChecksOnUserSchedule" to True. This configures VMs for automatic updates on a customer managed schedule(a prerequisite to enable scheduled patching successfully).

    4
  5. 5

    Deploy patches on Servers.

    There was a problem that the LLM was not able to address. Please rephrase your prompt and try again.

    This task involves assessing and applying the latest security and performance updates to protect and optimize the Azure VMs using Azure Update Manager.

    5
  6. 6

    Validate the patch installation.

    There was a problem that the LLM was not able to address. Please rephrase your prompt and try again.

    The Servers Patch Installation Run Report provides detailed insights into the patching process for each server, showcasing which patches were installed, failed, or are pending, along with the status of each installation attempt.

    6
  7. 7

    Server Patch Compliance report.

    There was a problem that the LLM was not able to address. Please rephrase your prompt and try again.

    The Server Patch Compliance Report aggregates data from the last 30 days to display a comprehensive overview of patch installation statuses across all servers, utilizing a Kusto query for detailed and accurate retrieval of information.

    7