Welcome
Patch User Guides
Explore how BigFix Patch streamlines automated patch management, enhances vulnerability remediation, and facilitates seamless update deployment from a unified console. This comprehensive solution ensures efficient system maintenance and security, making it an essential tool for IT professionals.
Patch for SUSE Linux Enterprise User's Guide
Discover how BigFix Patch for SUSE Linux™Enterprise provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all SUSE Linux endpoints.
Using the download plug-in
The download plug-in is an executable program that downloads relevant packages directly from the patch vendor. Fixlets use an internal protocol to communicate with the download plug-in to download files. These Fixlets are based on updates made by the vendor.
Extending the SCC download plug-in
You can configure the SCC download plug-in to download and cache packages from repositories that are not officially supported by BigFix. The SCC download plug-in can resolve package dependency for unsupported SUSE repositories, allowing the installation of unsupported dependent packages. This allows you to use BigFix to deploy packages from repositories that are not shipped out of the box, such as Long Term Service Pack Support (LTSS) or debuginfo repositories.
Using zypper with SSC Download Plug-in
Discover how to use the zypper command Fixlets in BigFix to install or update packages and patches on SUSE systems. These Fixlets support both the SSC Download Plug-in and Custom Repository, depending on your configuration.

BigFix Documentation Homepage
BigFix 11 Patch Documentation
Welcome to the BigFix Patch documentation, where you can find information about how to install, maintain, and use the BigFix Patch.
BigFix Platform
Patch Overview
Learn how BigFix Patch offers an automated and streamlined patch management solution, simplifying the patching process that is administered from a single console.
Patch User Guides
Explore how BigFix Patch streamlines automated patch management, enhances vulnerability remediation, and facilitates seamless update deployment from a unified console. This comprehensive solution ensures efficient system maintenance and security, making it an essential tool for IT professionals.
- Patch for Windows User's Guide
  Discover how BigFix Patch for Windows™ provides Fixlets for Microsoft™ security and non-security patches. Dashboards, wizards, and reports aid you in managing updates for various endpoint devices.
- Patch for AIX User's Guide
  Discover how BigFix Patch for AIX® provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all AIX endpoints.
- Patch for VIOS User's Guide
  Discover how BigFix Patch for VIOS provides an automated and simplified patching process specifically designed for IBM's AIX Virtual I/O Server (PowerVM VIOS) environments. It allows system administrators to manage and deploy patches efficiently across all PowerVM VIOS endpoints from a single console.
- Patch for Red Hat Enterprise Linux User's Guide
  Discover how BigFix Patch for Red Hat Enterprise Linux™ provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all Red Hat Enterprise Linux endpoints.
- Patch for CentOS Linux User's Guide
  Learn about BigFix® Patch for CentOS Linux™ that provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all CentOs endpoints.
- Patch for Alma Linux User's Guide
  Discover how BigFix Patch for Alma Linux provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all Alma Linux endpoints.
- Patch for Amazon Linux User's Guide
  Discover how BigFix® Patch for Amazon Linux™ provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all Amazon Linux endpoints.
- Patch for SUSE Linux Enterprise User's Guide
  Discover how BigFix Patch for SUSE Linux™Enterprise provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all SUSE Linux endpoints.
  - Overview
    The BigFix Patch solution, which includes deploying a multi-purpose, lightweight agent to all endpoint devices, supports a wide variety of device types ranging from workstations and servers to mobile and point-of-sale (POS) devices.
  - Using the download plug-in
    The download plug-in is an executable program that downloads relevant packages directly from the patch vendor. Fixlets use an internal protocol to communicate with the download plug-in to download files. These Fixlets are based on updates made by the vendor.
    - Manage Download Plug-ins dashboard overview
      Use the Manage Download Plug-ins dashboard to oversee and manage download plug-ins in your deployment.
    - Registering the SCC download plug-in
      Use the Manage Download Plug-ins dashboard to register the SCC download plug-in on the BigFix server to install SUSE patches on x86, x86_64, and s390x endpoints.
    - Configuring the basic SCC download plug-in settings
      Use the Manage Download Plug-ins dashboard to configure the basic properties, such as mirroring and proxy settings, of the SUSE Customer Center (SCC) download plug-in.
    - Configuring the advanced SCC download plug-in settings
      For advanced configurations, manually edit the SCC download plug-in configuration file called plugin.ini.
    - Unregistering the SCC download plug-in
      Use the Manage Download Plug-ins dashboard to unregister the SCC download plug-in.
    - Upgrading the SCC download plug-in
      Use the Manage Download Plug-ins dashboard to upgrade the SCC download plug-in to the latest version available.
    - Extending the SCC download plug-in
      You can configure the SCC download plug-in to download and cache packages from repositories that are not officially supported by BigFix. The SCC download plug-in can resolve package dependency for unsupported SUSE repositories, allowing the installation of unsupported dependent packages. This allows you to use BigFix to deploy packages from repositories that are not shipped out of the box, such as Long Term Service Pack Support (LTSS) or debuginfo repositories.
      - Using zypper with SSC Download Plug-in
        Discover how to use the zypper command Fixlets in BigFix to install or update packages and patches on SUSE systems. These Fixlets support both the SSC Download Plug-in and Custom Repository, depending on your configuration.
  - Using the download cacher
    The download cacher is a standalone command-line tool that is designed to download and cache files required for caching. The pre-cached files can be used by the download plug-in to patch the endpoints.
  - Using BigFix Patch for SUSE Linux Enterprise
    BigFix Patch provides a simplified patching process for downloading and installing patches that are relevant to a target endpoint. Use the Fixlets on the Patching Support and the various Patches for SUSE Linux Enterprise Fixlet sites to apply patches to your deployment.
  - Multiple-Package Baseline Installation
    BigFix Patch provides a solution to combine the installation of updates for multiple packages in a baseline into a single task, which can reduce the execution time of the baseline.
  - Custom repositories management
    You can set up your custom repositories and Subscription Management Tool (SMT) to manage patches for SUSE Linux Enterprise version 11 and later. This solution allows for multiple repositories and SMTs on the entire deployment.
  - SLE Btrfs snapshot management
    View and manage SLE Btrfs snapshots from the BigFix console. Snapshot management uses Snapper's ability to roll back Btrfs file system snapshots. This feature works with SUSE Linux Enterprise version 11 SP2 and later.
  - Troubleshooting
    When problems occur, you can determine what went wrong by viewing messages in the appropriate log files that provide information about how to correct errors.
  - Frequently asked questions
    To better understand Patch Management for SUSE Linux™ Enterprise, read the following questions and answers.
- Patch for Ubuntu User's Guide
  Discover how BigFix Patch for Ubuntu provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all Ubuntu endpoints.
- Patch for Oracle Linux User's Guide
  Discover how BigFix Patch for Oracle Linux™ provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all Oracle Linux endpoints.
- Patch for Solaris User's Guide
  Discover how BigFix Patch for Solaris provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all Solaris endpoints.
- Patch for HP-UX User's Guide
  Discover how BigFix Patch for HP-UX provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all HP-UX endpoints.
- Patch for Mac OS X User's Guide
  Discover how BigFix® Patch for Mac OS X provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all Mac OS X endpoints.
- Patch for Debian User's Guide
  Discover how BigFix Patch for Debian provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all Debian endpoints.
- Patch for Raspbian User's Guide
  Discover how BigFix Patch for Raspbian provides Fixlets that you use to manage the latest updates and service packs that Raspberry Pi releases. These Fixlets are available through the Patches for Raspbian sites.
- Patch for Rocky Linux User's Guide
  Discover how BigFix Patch for Rocky Linux provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all Rocky Linux endpoints.
- Patch for Open SUSE Leap 15 User's Guide
  Discover how BigFix Patch for Open SUSE Leap 15 provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches to all Open SUSE Leap 15 endpoints.
- Patch for VMware ESXi User's Guide
  Discover how BigFix Patch for VMware ESXi provides you unified, near real-time visibility to manage patches to all VMware ESXi endpoints from a single console.
- Patch for Virtual Endpoint Manager User's Guide
  Discover how BigFix Patch for Virtual Endpoint Manager provides an automated, simplified patching process that is administered from a single console. It gives you unified, near real-time visibility, and enforcement to deploy and manage patches in a virtual environment.
- Extended third-party Windows Application
- Supersedence for Non-Windows
  This topic describes how supersedence works in Patch.
Detailed system requirements
The tables in this section provide detailed information about the system requirements for BigFix 11.
Glossary
This glossary provides terms and definitions for the BigFix® Patch software and products.
Patch guides in PDF format
Below is a comprehensive list of links to the BigFix Patch user guides available in PDF format, designed to assist users in navigating and utilizing the software effectively:

Using zypper with SSC Download Plug-in

Discover how to use the zypper command Fixlets in BigFix to install or update packages and patches on SUSE systems. These Fixlets support both the SSC Download Plug-in and Custom Repository, depending on your configuration.

List of applicable tasks:

Zypper command with SSC download plugin - SLE 12 - SP5
Zypper command with SSC download plugin - SLE 15 - SP5
Zypper command with SSC download plugin - SLE 15 - SP6
Zypper command with SSC download plugin - SLE 15 - SP7.

Note:

Patching on SUSE Linux Enterprise (SLE) differs slightly from RHEL.
Direct use of advisory IDs (such as --advisory= in RHEL) is not supported in SLE.

Patching Methods: There are two ways to apply patches using these Fixlets.

Using Patch Name (Recommended for Advisory-based patching)
Use this method for advisory-based patching not the advisory ID. Use this input format:
```
in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3261=1
```
You can find patch names from SUSE's official security announcement pages or by running the command zypper list-patches.
Example: The patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3261 corresponds to an LTSS security update announced in a SUSE mailing list, such as SUSE-SU-2025:03261-1: important: Security update for cups.
Using Package Name (Same as RHEL)
If you want to patch a specific package instead of using a patch name, you can use input format as install <package-name>.
Note: If you need to update all versions of client machines at once, run the update command to do so.