Help

Run Policy at Specific Time

Jason
Contributor II

Posted on ‎09-11-2014 10:15 AM

I'd like to have my servers install updates (and reboot if necessary) at a specific time (Sunday at 4AM) every week.

The way I was thinking of doing this is to set a policy running a execute command of "softwareupdate --install --all" to run on checkin daily, but with a client-side limitation of between 5AM and 4AM only on Sunday. I'm assuming Patchoo probably does a better job of controlling update deployment, but I haven't had any time to research that yet due to a time crunch. Does anyone know of a better way than what i'm planning to do? Or should it get the job done efficiently?

0 Kudos
Reply
1 REPLY 1

mm2270
Legendary Contributor III

Posted on ‎09-11-2014 10:45 AM

If you always want your policy to do the same thing each time it runs, I would consider creating a LaunchDaemon that has a Calendar entry to run at 4AM. The ProgramArguments could simply be the command above for example, or a script (stored locally) that does something more advanced, or, just call a Casper Suite policy scoped to those Macs using a custom trigger and set to an Ongoing frequency.
The last option would give you a little better control over what actually runs on them, since all you'd need to do is modify the policy in the JSS and the next time the Launchd runs it will call the policy and do whatever you tell it to in the policy.
Make sense?

0 Kudos
Reply