NinjaOne Patching: Linux Policy Setup

This parameter set determines when the device will scan for available new patches. 

• Schedule: Use the drop-down menu to choose the scan frequency.
• Days: If your scan interval is longer than daily, select which days of the week the system should perform the scan. Devices are patched only on the days selected. If you do not select any days, the system will display an error message.
• Time and Time Zone: Select the time of day and the appropriate time zone to perform the scan. By default scans start at 8 A.M. local device time and updates start at 5 P.M. local device time. These defaults only apply to new policies.
• Stagger over: Set a stagger interval to distribute patch installation times across your devices and avoid simultaneous updates. For more information, refer to NinjaOne Patching: Load Balancing Patch Installations With the Stagger Feature.
• Run scan immediately, if missed: Run a scan immediately if NinjaOne misses a previous scan.

These settings specify when NinjaOne should apply the updates it finds when scanning. 

• Schedule: Use the drop-down menu to choose the update frequency.
• Days: If your update interval is longer than daily, select which days of the week the system should perform the scan. Devices are patched only on the days selected. If you do not select any days, the system will display an error message.
• Time and Time Zone: Select the time of day and the appropriate time zone to perform the scan. By default scans start at 8 A.M. local device time and updates start at 5 P.M. local device time. These defaults only apply to new policies.
• Stagger over: Set a stagger interval to distribute patch installation times across your devices and avoid simultaneous updates. For more information, refer to NinjaOne Patch Management: Load Balancing Patch Installations With the Stagger feature.
• Run update immediately, if missed: Run an update cycle immediately if NinjaOne misses a previous update cycle.
• Maintenance Mode: Suppress Emails/SMS/Push notifications: Select this checkbox to prevent NinjaOne from sending alerts caused by actions occurring during the update (such as device reboots). You can refine this setting by selecting the Suppress condition alerts and Suppress notification channels checkboxes. Refer to NinjaOne Platform: Maintenance Mode for more information. 

This setting lets you add automations which will run prior to (pre) or after (post) patch installation.

• Use pre-patching scripts to validate prerequisites or prepare the system before patching begins.
• Use post-patching scripts to perform cleanup or verification tasks afterward.

Click Add to select automations from the Automation Library. Refer to NinjaOne Policies: Scheduled Automations to learn more. Select the Cancel the patch update if the pre-script returns a failure message checkbox to automatically cancel the patching job if the pre-script fails.

These settings let you specify reboot behavior after NinjaOne patches a device. You can configure settings for both logged-in and logged-out users.

• Automatically reboot: This option tells NinjaOne to simply reboot the device after the update installation completes. Use the scheduling options to determine how long NinjaOne should wait before rebooting the device.
• Do nothing: NinjaOne will not perform any automatic reboot actions on the device.

You can set NinjaOne to override your patching policy for specific patches. Click Add to open the Edit approval overrides dialog box, then search for the patch name. Use the second drop-down menu to select whether to approve or reject the patch.  

Examples of scenarios in which patches would appear under the Overrides section:

• If the category approval is set to Manual, and you then approve or reject the patch for the policy.
• If the category approval is set to Approve, and you then manually reject the patch for the policy.
• If the category approval is set to Reject, and you then manually approve the patch for the policy.