PATCH MANAGEMENT
Patch Management
Windows Updates and third-party application patching in one place. Set policies, define maintenance windows, and let MaxRMM keep your fleet current.
Patching is one of the most time-consuming parts of managing a fleet — and one of the most important. MaxRMM handles both Windows Updates and third-party application patching through winget, so you're not running a separate patching tool alongside your RMM.
Define patch policies per company: which update categories to approve automatically, which to defer, and when maintenance windows open. The agent applies patches during the defined window and reports back with results. Devices that miss a maintenance window catch up on the next one — no manual follow-up required.
The patch compliance dashboard shows you exactly where your fleet stands: how many devices are fully patched, how many have pending updates, and which are overdue. Pending reboots are tracked separately so you know which devices need a nudge before updates take effect.
What's included
Windows Update Management
Scan, approve, defer, and install Windows Updates across your fleet with full policy control.
Patch Policies Per Company
Configure different patch behaviors for each client — auto-approve security patches, defer feature updates, or block specific patches entirely.
Maintenance Windows
Define when patches apply — weeknights at 2am, weekend mornings, or whenever makes sense for each client. No disruptions during business hours.
Third-Party Patching via winget
Update Chrome, 7-Zip, Notepad++, Adobe Reader, and thousands of other apps through Windows Package Manager.
Patch Compliance Dashboard
See fleet-wide and per-company patch compliance at a glance. Know exactly which devices are behind and by how much.
Pending Reboot Tracking
Patches that require a reboot are flagged separately. Send a user notification or schedule the reboot remotely.
Full Patch History & Audit Trail
Every patch action is logged: what was applied, when, and whether it succeeded. Exportable for compliance reporting.
How it works
Set patch policy
Define which update categories to approve, which to defer, and when the maintenance window opens for each company.
Agent applies patches in maintenance window
When the maintenance window opens, the agent downloads and installs approved updates — Windows and third-party — without interrupting users.
Dashboard shows compliance
Results flow back to the dashboard immediately. Review what was patched, what's pending, and which devices need follow-up.
WHY MAXRMM IS DIFFERENT
winget means third-party apps get patched too — not just Windows Updates.
Most RMMs patch Windows well. But unpatched Chrome, an outdated 7-Zip, or an old Adobe Reader is just as exploitable as an unpatched OS. MaxRMM's winget integration brings third-party application patching into the same workflow — same policies, same maintenance windows, same compliance dashboard. You don't need a separate patching tool or an additional license. One tool handles the whole job.
Get your fleet fully patched — OS and apps
Windows Updates and third-party patching in one tool. No separate patching license required.