Automox supports the ability to exclude particular patches or the ability to only deploy patches that match a particular query.
The advanced patch policy takes this a step further by allowing you to create custom patching configurations by choosing certain conditions that best match the desired compliance requirement for the endpoint.
Creating an advanced patch policy is much like creating a normal patch all policy in the console. The only thing that you'll need to configure differently is in the Policy Scope section.
For more information about how to create a patch policy in the Automox console, see the following article: Managing Policies > Creating a Patch Policy
Creating an Advanced Patch Policy
1. To create an Advanced Patch Policy, first select Advanced Policy from the Create Policy page on the console.
2. Next, select the policy scope that fits the compliance requirements for the device.
3. In the following example, we select Patch OS as the first condition which targets all patches based on the OS the endpoint is running. This example is targeting any endpoint that is running Microsoft Windows.
4. You can add as many conditions as desired. The policy will continue to refine the list of patches it will remediate it runs on the endpoints. In the following same example, you can see that Patch Severity was added as an additional condition, for which the severity is Critical.
5. Once you have all of the conditions configured, you can preview the patches that will be remediated by the policy by clicking on the Preview Package That Would Be Patched button located at the bottom of the policy scope.
6. Now you can see all packages that are targeted by the policy for remediation.
NOTE: You must save and assign the policy to a group of devices so it has endpoint packages to filter from.