top-left-hex
Solution

Simplify Patch Management with Chef Automation

Remove the drama from OS patching and minimize security risks with fully-automated patch management and validation from Chef.

Request a Trial
Video
Automated Patch Management With Progress Chef

The Challenges and Risks of Unpatched Systems

Conceptually, applying patches should be simple. Identify the systems that are vulnerable and patch them. But without a comprehensive and automated approach to patch management it is far from simple. Your fleet might conceivably have thousands of vulnerabilities needing to be patched, but not all of them are high priority or even relevant. You might not know whether patching systems will break critical business applications. On top of this, you only have a small team of system administrators responsible for tens of thousands of systems. You started with a OS patching problem and what you actually have is a risk management problem. And risks are not absolute.

Software Patch Management—Just Another Event in Continuous Delivery

The key to implementing a scalable patch management and validation solution is treating patching updates like any other event that is automated as part of a continuous delivery pipeline. The Progress® Chef® platform enables clients to automate system patching as part of CI/CD pipelines by providing the tools and best practices ops teams need to prioritize, test, run and validate patches consistently across Windows, Mac and Linux devices both on-premises and in the cloud.

  • Efficiency

    Operations teams spend 90% less time packaging and delivering patches.

  • Agility

    Downtime is eliminated and App teams self-manage patch events as part of automated pipelines.

  • Business Assurance

    Compliance teams can view the status and validate systems in real-time across their entire IT estate.

Our Fully-Automated Software Patch Management and Validation Solutions

With the Chef solution, you get continuous visibility into which systems need patching and assurance that system patches are maintained regardless of how often new content or environments are deployed. The Chef platform provides the tools you need to deliver system and application changes with precision and speed while minimizing the risks of unpatched systems in your environment.

Identify Prioritize Integrate Remediate Validate
Identify: Understand the Risks

The Chef platform gives you deep insights into the risk of unpatched systems in any environment, at any time. Built-in profiles defining patching baselines for Linux, Mac and Windows can be used to scan your environments and learn which systems have out of date OSs.

Prioritize: Maximize Efforts to Minimize Risks

The Chef solution comes pre-loaded with patching baseline profiles and supports in-GUI agentless scanning, making it easier than ever to determine your current patch level. Also included are security benchmarks based on industry standards such as CIS and DISA STIGs to prioritize systems for hardening and patching, and to serve as the first step toward formal regulatory compliance.

Integrate: Scale Across all System

The Chef solution provides resources for integrating with Red Hat Subscription Manager (RHSM) or Windows Server Update Service (WSUS). You can quickly and consistently configure and manage package repositories.

Integrate with tools like Jenkins to treat patching just like any other continuous delivery event and auto-feed notifications into systems like ServiceNow and Slack to create fully automated workstreams.

Remediate: Reduce the Risks of Applying Patches

With the Chef platform, you can determine where patches are required, safely apply and test updates in pre-production environments before promotion and maintain visibility into the status of every server, VM and service you're responsible for at any time.

Using flexible deployment policies, you can not only select the deployment window but create patching policies as well. This patch management policy provides access to multiple deployment settings to help you decide when to deploy a server patch and how.

Validate: Achieve 100% Compliance

Maintain continuous visibility into the status of systems being patched through real-time dashboards, and confirm they remain patched regardless of how often you deploy new content or environments. With Chef patch management, you get everything you need to deploy with unparalleled speed and efficiency, all without increasing the risk to the environments you manage.

Additional Resources

alt Whitepaper
 
Job Orchestration: A Powerful Way to Optimize Your DevOps Workflows
alt Video
 
Job Orchestration with Chef
alt Video
 
Manage Incidents Quickly with Chef Courier
Chef 360
Using Chef
Legal
Contact Us

Copyright © 2026 Progress Software Corporation and/or its subsidiaries or affiliates. All Rights Reserved.

About Us Awards Press Releases Media Coverage Careers Offices

Chef is part of the Progress product portfolio. Progress is the leading provider of application development and digital experience technologies. Progress and certain product names used herein are trademarks or registered trademarks of Progress Software Corporation and/or one of its subsidiaries or affiliates in the U.S. and/or other countries. See Trademarks for appropriate markings. All rights in any other trademarks contained herein are reserved by their respective owners and their inclusion does not imply an endorsement, affiliation, or sponsorship as between Progress and the respective owners.

Do Not Sell or Share My Personal Information

Powered by Progress Sitefinity