Patch all except SQL policy

We’re implementing automox but don’t want SQL patches to be installed. This is managed by our SQL contractor. Is it simply a case of doing a “Patch Except” policy then in the filter search “SQL Server” then ticking the everything “SQL Server” box?
If so does this mean that future released SQL server patches would also be excluded?


That is correct, you can configure a Patch Except policy, filter SQL, and then select Everything SQL. This will configure the policy to exclude any current or future SQL patches.