© 2010 VMware Inc. All rights reserved Patch Management Module 13.

Slides:



Advertisements
Similar presentations
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.
Advertisements

Introducing VMware vSphere 5.0
Storage Management Module 5.
© 2011 VMware Inc. All rights reserved New Alternatives for Deploying VMware vSphere Module 8.
© 2010 VMware Inc. All rights reserved VMware ESX and ESXi Module 3.
High Availability Module 12.
Copyright © 2014 EMC Corporation. All Rights Reserved. Exporting NFS File Systems to UNIX/ESXi Upon completion of this module, you should be able to: Export.
Maintaining Windows Server 2008 File Services
VMware vCenter Server Update Manager
Patch Management Module 13. Module You Are Here VMware vSphere 4.1: Install, Configure, Manage – Revision A Operations vSphere Environment Introduction.
VMware vCenter Server Module 4.
Scalability Module 6.
Virtual Machine Management
11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW Understand the difference between service.
© 2010 VMware Inc. All rights reserved Data Protection Module 10.
Module 16: Software Maintenance Using Windows Server Update Services.
11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW  Understand the difference between service.

XD 5.6 Overview. XenDesktop 5.6 Main Focus = Integration of personal vDisk Features Support for Microsoft SCVMM 2012 and SCCM 2012 Updated Citrix License.
Course 6425A Module 9: Implementing an Active Directory Domain Services Maintenance Plan Presentation: 55 minutes Lab: 75 minutes This module helps students.
© 2010 VMware Inc. All rights reserved Access Control Module 8.
Access Control Module 8. Module You Are Here VMware vSphere 4.1: Install, Configure, Manage – Revision A vSphere Environment Introduction to VMware.
Hands-On Microsoft Windows Server 2008 Chapter 1 Introduction to Windows Server 2008.
Real Security for Server Virtualization Rajiv Motwani 2 nd October 2010.
Linux Operations and Administration
Hands-On Microsoft Windows Server 2008
© 2011 VMware Inc. All rights reserved Course Introduction Module 1.

Module 13: Configuring Availability of Network Resources and Content.
Virtual Machines Module 7.
Tutorial 11 Installing, Updating, and Configuring Software
©Kwan Sai Kit, All Rights Reserved Windows Small Business Server 2003 Features.
Introduction to VMware Virtualization
MODULE 5: INTEGRATING WITH THE ENVIRONMENT. Agenda AD Integration Integration with brokers (automated and non)
An Introduction to IBM Systems Director
CN1260 Client Operating System Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+
Storage Module 6.
11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.
Module 10: Monitoring ISA Server Overview Monitoring Overview Configuring Alerts Configuring Session Monitoring Configuring Logging Configuring.
Module 6: Configuring User Environments Using Group Policy.
Avira Endpoint Security. Introduction of Avira Management Center (AMC)
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 1 MSE Virtual Appliance Presenter Name: Patrick Nicholson.
Microsoft Virtual Academy Module 8 Managing the Infrastructure with VMM.
© 2010 VMware Inc. All rights reserved vSphere 4.1: Install, Configure, Manage.
Presented by: Reem Alshahrani. Outlines What is Virtualization Virtual environment components Advantages Security Challenges in virtualized environments.
Virtualization Infrastructure Administration Other Jakub Yaghob.
VApp Product Support Engineering Rev E VMware Confidential.
VMware vSphere Configuration and Management v6
Virtual Infrastructure Web Access Product Support Engineering VMware Confidential.
System Center Lesson 4: Overview of System Center 2012 Components System Center 2012 Private Cloud Components VMM Overview App Controller Overview.
Symantec Storage Foundation High Availability 6.1 for Windows: What’s New Providing Support for ApplicationHA in Hyper-V and VMware.
IS493 INFORMATION SECURITY TUTORIAL # 1 (S ) ASHRAF YOUSSEF.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 6: Planning, Configuring, And Troubleshooting WINS.
DPM - IPMI Product Support Engineering VMware Confidential.
© 2011 VMware Inc. All rights reserved Course Introduction Module 1.
VMware Certified Professional 6-Data Center Virtualization Beta 2V0-621Exam.
vSphere 6 Foundations Exam Training
VMware Certified Professional on vSphere 5 VCP-510
SQL Database Management
Packaging and Deploying Windows Applications
VMware ESX and ESXi Module 3.
Patch Management Module 13.
Introduction to VMware Virtualization
Tivoli Storage Manager Product Family
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 6: Planning, Configuring, And Troubleshooting WINS.
20409A 7: Installing and Configuring System Center 2012 R2 Virtual Machine Manager Module 7 Installing and Configuring System Center 2012 R2 Virtual.
SAP R/3 Installation on WIN NT-ORACLE
Robert Down & Pranay Sadarangani Nov 8th 2011
HC VMware Module
Presentation transcript:

© 2010 VMware Inc. All rights reserved Patch Management Module 13

Module 13-2 © 2010 VMware Inc. All rights reserved You Are Here Operations vSphere Environment Introduction to VMware Virtualization VMware ESX and ESXi VMware vCenter Server Networking Storage Virtual Machines Access Control Resource Monitoring Data Protection Scalability Installing VMware ESX and ESXi High Availability Patch Management VMware vSphere 4.1: Install, Configure, Manage – Revision A

Module 13-3 © 2010 VMware Inc. All rights reserved Importance  Over time, your VMware vSphere™ environment might undergo change in its hardware or software configuration, or in the form of software updates or patches. From a manageability and scalability perspective, you should implement changes to your vSphere environment in an orderly, controlled, and systematic fashion. VMware vSphere 4.1: Install, Configure, Manage – Revision A

Module 13-4 © 2010 VMware Inc. All rights reserved Module Objectives  Describe VMware vCenter™ Update Manager  List the steps to install Update Manager  Use Update Manager: Create and attach a baseline Scan an inventory object Remediate an inventory object VMware vSphere 4.1: Install, Configure, Manage – Revision A

Module 13-5 © 2010 VMware Inc. All rights reserved Update Manager Update Manager enables centralized, automated patch and version management for VMware® ESX™/ESXi hosts, virtual machines, and virtual appliances. Update Manager reduces security risks.  Keeping systems up to date reduces the number of vulnerabilities.  Many security breaches exploit older vulnerabilities.  Reducing the diversity of systems in an environment: Makes management easier Reduces security risks VMware vSphere 4.1: Install, Configure, Manage – Revision A

Module 13-6 © 2010 VMware Inc. All rights reserved Update Manager Capabilities Automated patch downloading:  Begins with information-only downloading  Is scheduled at regular configurable intervals  Contacts the following sources: For ESX/ESXi patching: For Windows and Linux virtual machines and applications: For third-party patches: URL of third-party source Creation of baselines and baseline groups Scanning:  Inventory systems are scanned for baseline compliance. Remediation:  Inventory systems that are not current can be automatically patched. VMware vSphere 4.1: Install, Configure, Manage – Revision A

Module 13-7 © 2010 VMware Inc. All rights reserved Update Manager Components VMware vSphere 4.1: Install, Configure, Manage – Revision A Shavlik patch source vCenter Server system Update Manager server database server vCenter Server database patch database VMware patch source Update Manager agents are installed into virtual machines. hosts optional download server VMware vSphere Client with Update Manager plug-in Internet patch database A A A A A A A A A third-party patch source

Module 13-8 © 2010 VMware Inc. All rights reserved Installing Update Manager Update Manager must be installed on a 64-bit machine. To install, start the VMware vCenter Installer and click vCenter Update Manager. Information needed during the installation:  vCenter Server host name, user name, and password  Choice of database: use default or existing database  Update Manager port settings: Host name, ports, proxy settings (if necessary)  Destination folder and location for downloading patches To install the Update Manager client:  Install the Update Manager Extension plug-in into the vSphere Client. VMware vSphere 4.1: Install, Configure, Manage – Revision A

Module 13-9 © 2010 VMware Inc. All rights reserved Configuring Update Manager Settings VMware vSphere 4.1: Install, Configure, Manage – Revision A Modify Update Manager configuration properties. By default, all patch sources are enabled. Add third-party patch sources if necessary.

Module © 2010 VMware Inc. All rights reserved Baseline and Baseline Groups VMware vSphere 4.1: Install, Configure, Manage – Revision A A baseline consists of one or more patches, extensions, or upgrades. There are five types of baselines:  Host patch  Host extension  Host upgrade  Virtual machine patch  Virtual appliance upgrade Update Manager includes a number of default baselines. A baseline group consists of multiple baselines:  Can contain one upgrade baseline per type and one or more patch and extension baselines example of default baselines for hosts

Module © 2010 VMware Inc. All rights reserved Creating a Baseline VMware vSphere 4.1: Install, Configure, Manage – Revision A To create a baseline: 1.Click Create. 2.Specify name and description. 3.Choose a baseline type. 4.For a patch baseline, select a patch option: Fixed or Dynamic. 5.Select patches to add to the baseline. A host patch is added to this baseline.

Module © 2010 VMware Inc. All rights reserved Attaching a Baseline VMware vSphere 4.1: Install, Configure, Manage – Revision A To view compliance information and remediate inventory objects, first attach a baseline or baseline group to an object. For improved efficiency, attach a baseline to a container object instead of to an individual object.

Module © 2010 VMware Inc. All rights reserved Scanning for Updates Scanning evaluates the inventory object against the baseline or baseline group. A scan can be performed manually or automatically, using a scheduled task. VMware vSphere 4.1: Install, Configure, Manage – Revision A manual scan scheduled scan

Module © 2010 VMware Inc. All rights reserved Viewing Compliancy VMware vSphere 4.1: Install, Configure, Manage – Revision A In this example, the scan found two noncompliant hosts. After the scan, a host object can be staged and then remediated.

Module © 2010 VMware Inc. All rights reserved Remediating Objects You can remediate virtual machines, templates, virtual appliances, and hosts. You can perform the remediation immediately or schedule it for a later date. VMware vSphere 4.1: Install, Configure, Manage – Revision A

Module © 2010 VMware Inc. All rights reserved Remediation Options for a Cluster VMware vSphere 4.1: Install, Configure, Manage – Revision A When remediating hosts in a cluster, you must temporarily disable certain cluster features: VMware DPM, VMware HA, FT. You can generate a report that identifies problems before remediation occurs.

Module © 2010 VMware Inc. All rights reserved Patch Recall Notification VMware vSphere 4.1: Install, Configure, Manage – Revision A At regular intervals, Update Manager contacts VMware to download notifications about patch recalls, new fixes, and alerts.  Notification Check Schedule is selected by default. On receiving patch recall notifications, Update Manager:  Generates a notification in the notification tab  No longer applies the recalled patch to any host: Patch is flagged as recalled in the database.  Deletes the patch binaries from its patch repository  Does not uninstall recalled patches from ESX hosts: Instead, it waits for a newer patch and applies that to make a host compliant.

Module © 2010 VMware Inc. All rights reserved Remediation Enabled for DRS Eliminate downtime for virtual machines when patching ESX/ESXi hosts: 1. Update Manager puts host in maintenance mode. 2. DRS moves virtual machines to available host. 3. Update Manager patches host and then exits maintenance mode. 4. DRS moves virtual machines back per rule. VMware vSphere 4.1: Install, Configure, Manage – Revision A maintenance mode UM + DRS !

Module © 2010 VMware Inc. All rights reserved Lab 27 In this lab, you will install, configure, and use Update Manager. 1. Install Update Manager. 2. Modify cluster settings. 3. Install and enable the Update Manager plug-in. 4. Configure Update Manager. 5. Create a patch baseline. 6. Attach a baseline and scan for updates. 7. Stage patches and remediate ESXi hosts. VMware vSphere 4.1: Install, Configure, Manage – Revision A

Module © 2010 VMware Inc. All rights reserved Module Summary  Describe Update Manager  List the steps to install Update Manager  Use Update Manager: Create and attach a baseline Scan an inventory object Remediate an inventory object VMware vSphere 4.1: Install, Configure, Manage – Revision A

Module © 2010 VMware Inc. All rights reserved Key Points  Update Manager patches and updates ESX/ESXi hosts, virtual machines, templates, and virtual appliances.  Update Manager reduces security vulnerabilities by keeping systems up to date and by reducing the diversity of systems in an environment. VMware vSphere 4.1: Install, Configure, Manage – Revision A

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.