Patch Download Process

Patch Download for Automated Patch Deployment 

Overview

Endpoint Central MSP supports patch management of a wide range of applications that included both Microsoft and other third-party applications. Using the Automated Patch Deployment (APD) feature system administrators can deploy patches missing in their network computers automatically, without any manual intervention.The required patches are downloaded only once and are stored in the Endpoint Central MSP Server from where they are distributed to the agents and distribution servers for installation.

Updating the Local Patch Database

The Online vulnerability Database is a portal in the ManageEngine site, which hosts the latest vulnerability database that has been published after a thorough analysis. Whenever new patches are released by vendors, the patch assessment team will test these patches and update their online patch database. Endpoint Central MSP's patch engine will periodically synchronize this information and update its local database. This information is used to detect the missing patches in the computers in the network.

You should configure your proxy server to allow downloading of the files containing this information from "patchdb.manageengine.com"

Vendor Sites from where the Patches are Downloaded

Given below are the websites from where the patches gets downloaded. If you are using a proxy server, the proxy credentials specified in Endpoint Central MSP should have necessary privileges to download the EXE files from these sites.

  • http://download.microsoft.com - for Microsoft applications
  • http://hyperion.zih.tu-dresden.de - for Mozilla Firefox
  • http://ardownload.adobe.com  - for Adobe patches
  • http://mirror.switch.ch  - for Mozilla Thunderbird
  • http://fpdownload.macromedia.com  - for Adobe Shockwave Player
  • http://fpdownload.adobe.com  - for Adobe Flash Player
  • http://javadl.sun.com  - for Java updates

Local Patch Store

The patches are downloaded only once and they are stored in the Endpoint Central MSP Server. The default location where the patches gets stored is <Desktop_Central_Server_Home>/webapps/DesktopCentral/store and is configurable. However, you need to copy the previously downloaded patches to the new location manually, else the patches will get downloaded to the new location again.

You can change the local patch store to a different location using the "Change Patch Store Directory" link available in the Downloaded Patches view.

When the Patches are Downloaded

If you have deployed an Automated Patch Deployment, all the target devices will be scanned to detect if those patches are missing in them. Once a patch is found missing in any of the target devices, the Patch Engine will proceed to look for the availability of the patch in the local patch store and the download will happen only if a patch is not available in the local store.

Downloading a Patch Manually

If you experience any problem with the automatic patch download in some specific cases, you can download the patch from the internet and then upload it manually using the Upload Patches option, available in the Downloaded Patches view. Additionally patches can also be uploaded directly from the Download Failed view of Automated Patch Deployment.

Patch Cleanup

You can automate the process of removing unwanted patches from the Patch Repository using the Clean up settings option available in the Downloaded Patches view. Patches that are removed from the Endpoint Central MSP server, will automatically be removed from the Distribution Server during the subsequent replication interval. 

RMM Central

If you are looking for a unified solution for network monitoring and endpoint management, try RMM Central today!

Free, 30-day trial

Remote Desktop & Mobile Device Management Software for MSPs trusted by