# Automated Windows Updates Use Case: Testing Patches

Patches can be auto approved/denied or auto-deferred for up to 30 days. This can be done based on the Windows Update category, or you can choose to approve individual patches manually.

### Automate Patch Approval

Patch automation can be done using a policy; see [Automated Windows Updates Using Policies](https://docs.faronics.com/faronicsdeploy/automated-windows-update-approval/automated-windows-updates-using-policies) for further information.

### Testing Patches

There may be instances where you would like to test a specific patch before it is rolled out to the production environment or deny a specific patch if the patch falls under a category that has been marked to Automatically Install.

To test a patch on a computer before it is rolled out to the production environment, you will need to create two policies; one for the test group and another for the production environment.

![Test Group Policy that automatically installs all Windows Updates](https://3007061244-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MRkQfx_2cLnNNBX1muO%2F-MVJ_svtw3gAqVU5771z%2F-MVJdOwLQCnIx6Zt8m2j%2Fimage.png?alt=media\&token=a38d4edc-f2dd-4144-b478-770ababfa6c6)

The test computers will use a policy where the **Update Category** under which the patch falls is marked to **Automatically Install**.&#x20;

The production environment will use a policy where the **Update Category** under which the patch falls is **not marked in any column**. This means the patch approval for this category is now **manual**. In this case, the Drivers category has been set to manual approval.&#x20;

![Production Group Policy - Drivers are not automatically updated](https://3007061244-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MRkQfx_2cLnNNBX1muO%2F-MVJ_svtw3gAqVU5771z%2F-MVJd72S5j9nhCbIiNlD%2Fimage.png?alt=media\&token=648c2c79-cba9-44dd-9598-c462466944c0)

### Approving / Denying Individual Patches

Individual Patches can be approved or denied from the Windows Update Control grid.

To Approve or Deny individual patches:&#x20;

![Search for a Pending Windows Patch to approve](https://3007061244-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MRkQfx_2cLnNNBX1muO%2F-MVJXUTPlWX7topdS8oc%2F-MVJYMBGO8MDsUt-KiUb%2Fimage.png?alt=media\&token=db4c91ee-2b7e-498c-8e3b-07db1d91f001)

1\. Select the **Control Grid** tab on the top menu bar.

2\. Navigate to the **Windows Updates** tab.

3\. Scroll down to the **Pending Windows Updates** grid.

4\. Click the Search icon and enter a name or KB number to locate.

5\. Select the Pending Windows Update; the **ACTION TOOLBAR** will now appear.

![Approve the Update for Removal of Adobe Flash on 5 Computers](https://3007061244-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MRkQfx_2cLnNNBX1muO%2F-MVJXUTPlWX7topdS8oc%2F-MVJXifOW9wtGDl-_L8l%2Fimage.png?alt=media\&token=aca89d2a-ec49-4b92-b8db-ab45163d688c)

6\. Click **APPROVE** or **DENY**.

7\. Approve the update by clicking **APPROVE UPDATE** on the confirmation dialog.&#x20;

![Approve confirmation dialog](https://3007061244-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MRkQfx_2cLnNNBX1muO%2F-MVJSNPy5oVfPJIR-83-%2F-MVJWmNq-CK6aSJD7CLJ%2Fimage.png?alt=media\&token=a302fc33-ac26-4a18-9e9b-b53dfda1f9ef)

![Approve all patches in a Windows Update Category](https://3007061244-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MRkQfx_2cLnNNBX1muO%2F-MVJYURUA50TR8zH5eTR%2F-MVJ_TH1YMjeAuNjKC2D%2Fimage.png?alt=media\&token=c922dcd3-50e9-4b01-8a4e-b4c7117734dd)