```mermaid flowchart TD A[Ignite EDF] -->|Workstation/Server Patch Day & Daytime Patching| B[Windows Update Settings Search] --> C[Patching MT Patch Scheduling Group] --> D[Automate Patch Manager] --> E[Update Policy] --> F[Date/Time/Windows Update Agent Mode] D --> G[Reboot Policy] --> H[Reboot Behvaior] D --> I[Approval Policy] --> J[Patch install/skip/require/deny] ``` # Configuration ## Resources - [Here](https://discord.com/channels/801971115013963818/1237284539215122442) is a great thread on the [[MSPGeek]] discord where wesleynz explains how he has his patch manager configured. This thread does a great job of explaining how you can best take advantage of how the Automate Patch manager works by applying different settings using different groups and avoiding overlap. ## Daytime Patching Daytime Patching occurs if a workstation has missed the assigned patch install window and the patch install policy has Daytime Patching enabled.^[[Device Deployments Section in the Patch Manager - ConnectWise](https://docs.connectwise.com/ConnectWise_Automate_Documentation/070/195/400/20)] ## Groups Patch groups automatically distribute [[ConnectWise Automate Patch Manager#Microsoft Update Policy|Microsoft Update Policies]], Third Party Update Policies, Reboot Policies, and Approval Policies to a defined set of computers based on priority in the list. **The lower on the list, the higher the priority**. Group priority does not determine which approval policy is applied because this is determined by the approval policy priority. ### Approval Policy Priority Patch approvals are determined by the Approval Setting selected within each Approval Policy. Based on the following order of Approval Settings, devices with an Approval Policy receive the setting with the highest priority:^[[Groups Section in the Patch Manager - ConnectWise](https://docs.connectwise.com/ConnectWise_Automate_Documentation/070/195/700/10#Approval_Setting)] - Not Set (Lowest Priority) - Ignore - Approve - Remove - Deny (Highest Priority) ## Microsoft Update Policy [Define Microsoft Update Policies - ConnectWise](https://docs.connectwise.com/ConnectWise_Automate_Documentation/070/195/800/020) ## Third Party Update Policy [Define Third Party Update Policies - ConnectWise](https://docs.connectwise.com/ConnectWise_Automate_Documentation/070/195/800/030) The Third Party Update Policy contains patching definitions for third-party software. Third-party patches can include patch updates, as well as patches to install new software released. Third-party patch definitions are downloaded every four hours from the [[ConnectWise Automate]] server. [[Automate Groups]] (with [[Automate Searches]]) that establish a list of all [[Windows]] computers running the specified software.