VMware Cloud Community
Sudarsan_kv
Contributor
Contributor
‎03-17-2009 02:19 AM
Jump to solution

MS patching in VM template

Hi ,

In our environment quite often we will diploy VM from template. But as you know Microsoft will release patches everymonth and it is dificult for us to maintain this template up todate. In VMware is ther is any technology which will apply patches to the template itself ?

Thanks

Sudarsan

0 Kudos
1 Solution

Accepted Solutions
Cameron2007
Hot Shot
Hot Shot
‎03-17-2009 06:27 AM
Jump to solution

I've not done patching this way before but from the link also says

"Scans can be initiated on entire data centers, clusters, resource pools, templates, folders or individual hosts and virtual machines. They can be run immediately or scheduled as necessary. After a

scan is complete, non-compliant machines are flagged for patch updates."

if not just redo the master VMs (pre-sysprep) and clone as neccesary should still work

View solution in original post

0 Kudos
13 Replies
djciaro
Expert
Expert
‎03-17-2009 02:21 AM
Jump to solution

Not that I know of, you need to convert the template to a VM, apply patches and reconvert to Template

If you found this information useful, please consider awarding points for "Correct" or "Helpful". Thanks!

If you found this information useful, please consider awarding points for "Correct" or "Helpful". Thanks!
0 Kudos
jasoncllsystems
Enthusiast
Enthusiast
‎03-17-2009 02:31 AM
Jump to solution

Use VMware Update Manager. It can be use for scan and update patches even it 's a template.






Regards,

CLL SYSTEMS http://www.cllsystems.com

MALAYSIA VMWARE COMMUNITIES

http://www.malaysiavm.com

http://www.malaysiavm.com
Cameron2007
Hot Shot
Hot Shot
‎03-17-2009 03:26 AM
Jump to solution

In order to get round this previously I cloned the base image and then sysprep and convert to template the cloned version. This enabled me to add any patches to the vbase image, re-clone and re syprep (don't sysprep twice). This would work for you

Hope this helps

0 Kudos
Sudarsan_kv
Contributor
Contributor
‎03-17-2009 04:58 AM
Jump to solution

Hi,

Thanks for the quick response.

Currently i am doing the same, ie first i will convert the template in to VM and then apply patches again convert back to template and deploy VM from that template. Lots of human interaction required. My plan / Doubt is whether it can be automated or not?.

VMware update manager will help to apply patches on off line vm's. But will it apply patches on templates ?

Thanks

Sudarsan

0 Kudos
Cameron2007
Hot Shot
Hot Shot
‎03-17-2009 05:02 AM
Jump to solution

As the previous poster said looks like it can do both check out the datasheet at the link here

www.vmware.com/files/pdf/update_manager_datasheet.pdf

ChrisDearden
Expert
Expert
‎03-17-2009 06:12 AM
Jump to solution

prior to use changing our build processes I had some VM's which just sat idle as master machines for each OS/Service Pack I wanted to make templates of.

These where then periodically cloned to template to create the build templates with latest AV definitions and MS patches.

If this post has been useful , please consider awarding points. @chrisdearden http://jfvi.co.uk http://vsoup.net
0 Kudos
Sudarsan_kv
Contributor
Contributor
‎03-17-2009 06:23 AM
Jump to solution

Hi,

Thanks for the link. As per this link

" Update Manager also patches offline or suspended virtual machines " it is not clear whether it will patch template or not .

0 Kudos
Cameron2007
Hot Shot
Hot Shot
‎03-17-2009 06:27 AM
Jump to solution

I've not done patching this way before but from the link also says

"Scans can be initiated on entire data centers, clusters, resource pools, templates, folders or individual hosts and virtual machines. They can be run immediately or scheduled as necessary. After a

scan is complete, non-compliant machines are flagged for patch updates."

if not just redo the master VMs (pre-sysprep) and clone as neccesary should still work

0 Kudos
jasoncllsystems
Enthusiast
Enthusiast
‎03-18-2009 02:05 AM
Jump to solution

I have tested and it's worked and faster than power on virtual machine. While you are update VM template, you may see VM template power on and off after done.

Regards,

CLL SYSTEMS

MALAYSIA VMWARE COMMUNITIES

http://www.malaysiavm.com
0 Kudos
Cameron2007
Hot Shot
Hot Shot
‎03-18-2009 02:17 AM
Jump to solution

Nice one Jason. Sounds like that is a good way to complete all patching inc templates but does it have any effect on the sysprep status of the machine? If sysprep is fully automated in the OS then it may complete and remove the sysprep folder from the root of C: i have ran into problems with sysprepping a machine several times (not sure its reccomended by MS) but this thread may be useful for avoiding these problems.

http://www.msfn.org/board/lofiversion/index.php/t96690.html

0 Kudos
jasoncllsystems
Enthusiast
Enthusiast
‎03-18-2009 07:21 PM
Jump to solution

Sorry, not sure about the sysprep.






Regards,

CLL SYSTEMS http://www.cllsystems.com

MALAYSIA VMWARE COMMUNITIES

http://www.malaysiavm.com

http://www.malaysiavm.com
0 Kudos
Sudarsan_kv
Contributor
Contributor
‎03-20-2009 12:50 AM
Jump to solution

Thank you all. I am choosing update manager.

Thanks once again

0 Kudos
GaneshNetworks
Expert
Expert
‎09-18-2012 09:28 PM
Jump to solution

Really a good post.

I never noticed that VUM is having an option to update templates. Hope it will make our job easier than ever before.

~GaneshNetworks~

~GaneshNetworks™~ If you found this or other information useful, please consider awarding points for "Correct" or "Helpful".
0 Kudos