What Happens When Zscaler Issues a High-Risk Security Fix?
When Zscaler identifies and releases a high-risk security update:
- The fix is applied automatically to the Software Version (
zpa-connector-child). - Zscaler Cloud automatically pushes this update to your App Connectors without requiring your manual intervention.
- No immediate automatic update is performed on the Manager Version (
zpa-connector).
Do You Need to Update the Manager Version?
- Typically, no immediate action is required on the Manager Version when the Software Version receives a security fix.
- The Manager Version updates primarily focus on management features, OS compatibility, and stability.
- It’s recommended to regularly (but not urgently) update your Manager Version to ensure overall system robustness and stability.
Recommended Actions
- Monitor critical security update notifications from Zscaler.
- Allow automatic updates of the Software Version from Zscaler Cloud.
- Periodically update your Manager Version using:
sudo yum upgrade zpa-connector
Summary Table
| Version Type | Automatic or Manual? | Affected by Security Fixes? | Action Required by You? |
|---|---|---|---|
| Software Version ( zpa-connector-child) |
Automatic (Zscaler Cloud) | ✅ Yes, immediately applied | ❌ No manual intervention required |
| Manager Version ( zpa-connector) |
Manual (yum) |
❌ Typically No | ✅ Recommended periodic updates |
By following these guidelines, you can effectively manage security updates for your Zscaler App Connectors and ensure continuous protection against vulnerabilities.