Is it possible to exclude a specific Microsoft update from a label in K1000?
I would like to know if its possible to exclude specific M$ updates from being deployed while still deploying all remaining updates and keeping the computers up-to-date?
I am also open to suggestions on how to handle this situation. We currently use detect and deploy all patch distribution in K1000 enviorment.
-
Thanks Guys!!! - FloRod621 10 years ago
Answers (2)
I belive you can go into Security -> Patch Listing ... Go into the patches you do not want installed and select the Inactivate option.
According to the Kace Notes on the right of this page:
"Marking a Patch Inactive will prevent it from detecting or deploying on any targeted machines, regardless of Label selections."
I know this question is answered but you can also create a manual label called "blocked" and add it to the patches that are causing you an issue. Then when you build your smart label out , include a line that states " Label Name" "Does not contain" "Blocked".
This way:
1. no patches with that label get added to your production smart label.
2. you can easily search for the ones that were blocked, where as making them inactive makes finding them touch without searches by their KB number, one at a time.
3. if you need to apply it, you can just remove the "blocked" label and it will get deployed out on the next schedule, if the patch is still active.
