When you configure the Install required updates and fix vulnerabilities task, you can create a rule that requires a specific status of updates that are to be installed. For example, an update rule can allow installation of the following:
You can approve updates that must be installed and decline updates that must not be installed.
The usage of the Approved status to manage update installation is efficient for a small amount of updates. To install multiple updates, use the rules that you can configure in the Install required updates and fix vulnerabilities task. We recommend that you set the Approved status for only those specific updates that do not meet the criteria specified in the rules. When you manually approve a large amount of updates, performance of Administration Server decreases and may lead to Administration Server overload.
To approve or decline one or several updates:
A list of available updates appears.
The default value is Undefined.
The selected updates have the statuses that you defined.
As an option, you can change the approval status in the properties of a specific update.
To approve or decline an update in its properties:
A list of available updates appears.
The update properties window opens.
The selected update has the status that you defined.
If you set Declined status for third-party software updates, these updates will not be installed on devices for which they were planned but have not yet been installed. Updates will remain on devices on which they were already installed. If you have to delete them, you can manually delete them locally.