Patch management best practices: insights from Puppetize PDX
Software is prolific and changing all of the time to fix bugs, add features, or address security vulnerabilities. For IT teams responsible for servers, the challenge is to balance keeping all systems up-to-date with the risk of breaking key services in the process as well as developing a process to iterate baseline configurations or based on patching requirements. Sounds easy in practice, but in reality it can be fairly messy.
In fact, after talking about patching challenges over the past decade, it’s a problem that hasn’t gone away and is more important than ever before, especially with all of the new infrastructure types and various endpoints. Before, it was all about patching a system and moving on. Today, with the changing needs of the business, it’s a more complex set of steps that needs orchestration between multiple systems and teams.
Even though patching is an old problem, today we’ve got newer and better ways to solve it. In this collection of sessions from our user conference, Puppetize PDX, speakers share insights on how they’ve helped their organizations safely and swiftly keep operating systems software up-to-date with a more sophisticated approach.
Automated patching with Bolt
If patch management is a problem in your infrastructure, then be sure to check out this video. Nick Maludy, DevOps manager at Encore Technologies, walks through the journey his team embarked on to automate the patch management of their infrastructure. He shares details about their architecture, phased approach and implementation, and showcases a new Puppet module that can be used as a framework for patch management with Bolt and Puppet.
Puppetizing the pain out of patching
Once upon a time, there was a mystical land whose inhabitants were able to manage patching on their Linux AND Windows servers using a single tool. Join Tony Green, principal sales engineer at Puppet, for a jaunt into this fantastical land where you'll hear tales of collaboration, compliance, and self-service automation!
Windows security, compliance, and patching
With infrastructure as code and configuration management becoming more commonplace in the Windows ecosystem, many questions remain or have arisen around how security, compliance, and patching work in a world full of clouds and pipelines. In this talk, Matthew Stone, senior sales engineer at Puppet, discusses some of the challenges around defining what security, compliance, and patching processes look like in your organizations and how you can use various tools and processes to deliver fully provisioned and secured systems that can meet your company's compliance requirements.
- Watch all the sessions from Puppetize PDX
- Get more insight into [how to automate Windows patching with Puppet] (https://puppet.com/blog/how-automate-windows-patching-puppet/)
- Check out InformationWeek’s list of [must-have IT automation tools] (https://www.informationweek.com/big-data/5-must-have-it-infrastructure-automation-tools/a/d-id/1336345)
- Get more insight into the patching lifecycle in the 2019 State of DevOps Report