5 Tips to get Windows 10 Patching Right

Security! It needs to be at the beginning and end of every conversation in the IT world. With Microsoft at the helm, it’s paramount that Managed Service Providers keep on top of Windows patching, especially related to Windows 10 patches. At this point, we believe the MSP community can agree, Windows 10 versioning and patching can be a challenge. There are 8 major version releases of Windows 10 but only 3 versions remain supported in production.

Tips:

  1. Know your versions!
    • Windows 10 has only three supported versions with their current release cycle. These versions are currently 1803, 1809 and 1903. However, there are 5 more releases that are still unsupported. It’s important that your team stay on top of the latest builds and know what is live and End of Life. ProVal recommends using dataviews to compare the versions and see what is in compliance vs out of compliance. Conveniently, this information is now also housed in the CW Automate Web Portal on the Patching Metrics screen. This provides metrics so you can more easily understand what is up to date/out of date.

  1. Windows 10 patching metrics are a bit deceptive in Automate
    • Windows 10 machines on an unsupported version of Windows 10 may show as “fully patched” or 100% compliant in Automate. However, these machines may be missing a major version release. They are in compliance for their current version, but they could be missing many patches because they are out of date for their build. A machine can only be considered up to date on patches if it is on a currently supported build of Windows.
  2. Make a version plan and stick to it!
    • Depending on various factors (client vertical, acceptable downtime,software compatibility,etc.) it’s up to the MSP to decide what version their clients need to walk the line of functionality and security. ProVal recommends getting clients updated as soon as possible to at least 1809 (as of 8/30/2019). There are still various applications and complaints about 1903, but they are quickly getting patched and stabilized. 1803 will be unsupported after November 12 2019!
  3. Feature packs and the RMM
    • RMMs are struggling to get these major releases installed via stock patch management automation. Right now, scripts are the best way to accomplish this situation. There is an ISO based solution provided by CW Automate in the solution center (Windows 10 Scripts). This script does require an ISO that the MSP will need to build and store in the LT Share.
    • ProVal also has a scripted solution that automates the upgrade tool provided by Microsoft that upgrades to the latest build available. The only problem with our script is that it can only push to the latest, not to a targeted version. To prepare your clients and the team, we do recommend reaching out to the end client before pushing these updates since they usually take in excess of 3-5 hours!
  4. Get approvals done!
    • To ensure these Windows systems are up to date with the latest patches for their specific builds, it is critical that a team member is approving patches on a set schedule. If patches are not approved, then you can be sure patches are not getting installed properly! ProVal recommends assigning a team member to be the “Patch Captain” and that person will be responsible to all approval and denial. We also recommend using askwoody.com to help vet out patches to ensure they are safe to install in client environments.

Hopefully, the above tips will help you build a solid framework to keep your clients secure from any Windows vulnerabilities. After all, security is only as strong as the weakest link! Have any questions? ProVal is here to help. Not only with best practices around when to get patches installed, but to get the reporting necessary to prove it works to your clients!

ProVal Technologies, Inc

ProVal Technologies, Inc

Categories

Get in touch today for MSP NOC Services

Contact Us

ProVal Technologies, Inc

498 Palm Springs Drive, Ste. 130
Altamonte Springs, FL 32701
United States
Phone: 407-588-0101

Facebook Twitter Instagram Linkedin Youtube
SOC 2 Certified Logo
Form CTA

©2023 ProVal Technologies, Inc All Rights Reserved.

Privacy Policy Disclaimer

5 Tips to get Windows 10 Patching Right

Windows 10 patching

I truly view ProVal as a partner and extension of my team, not as one of my vendors

When our NOC Manager left last fall we wanted to replace the position with an outsourced NOC to reduce headcount, and bring in an expert to both Labtech and our backup solutions. Bringing in ProVal Technologies was one of the best decisions we made last year and has paid for itself.During our first few monthly recurring Labtech admin meetings the ProVal team discovered incorrect settings and policies that were not applying correctly in our Labtech server. Things that we thought were automated and working were not. For example, there were multiple scripts and policies running but set to do nothing such as disk cleanup scripts. Cisco Umbrella was not configured correctly. Server alerting was not set right and the list went on.The backup team sends daily and weekly reports and updates that reduce my technicians time that we used to spend on backup or antivirus tickets that took forever and were tedious.ProVal also brings in great insights to our business and really cares about our success. They will frequently mention to me in meetings what new scripts they can import to make us more efficient or will schedule upgrades to our backups, Labtech, etc so I don’t have to worry. I truly view ProVal as a partner and extension of my team not as one of my vendors.

Chris-Warnick-Headshot
Chris Warnick
Vision Computer Solutions
Northville, MI

They will quickly become an extension of your team and your ROI will reflect the results

We have been a long time user of Labtech and had tried for many years to manage the product internally with no real success at the level we needed to make our solutions more efficient for our customers. Once we hired Vikram and his team at ProVal, it solved all our pain points with the product and we really felt like we were leveraging the tool as it was designed. If this sounds like you and it’s keeping you up at night, then you need these guys. They will quickly become an extension of your team and your ROI will reflect the results.

Bryan-Wolff-Headshot
Bryan Wolff
CEO, Wolff Logics LT Managed & Admin Services
Cedar Park, Texas

They work well, fast and on budget

We met Vikram from ProVal Tech at Gary Pica’s Shnizzfest a year ago. Vikram explained the advantage of having trained, certified personnel take care of our recent Automate implementation. Even though we had taken an implementation package from ConnectWise to start up the program, we felt many custom configurations we needed for our business were lacking. We hired ProVal Tech after Automate was installed to help us with this task. From sales to technicians everyone was professional and knowledgeable. Onboarding was simple, and well documented. Tools on the web were supplied while we did the work, and they allowed us to track what was done, and see the improvements in the environment. It was easy to reach any of the team members, for any concern or question – all answered with courtesy and smile. Once the work was finished, we were given some training and explanations, add to that documentation, about the work and the scripts and features added to the program. We have been happily working with Automate since then. We can only recommend this efficient team of people for any work into Automate: they work well, fast and on budget.

Ben-Prevost-Headshot
Ben Prevost
FarWeb IT
Sherbrooke, Canada