When the Endpoint Central server is installed in a closed network without Internet connection, such as the Demilitarized Zone (DMZ), basic Patch capabilities such as vulnerability database synchronization, downloading missing patches etc, cannot be performed. The following steps will help you to keep applications up-to-date in such cases, manually download all the missing patches, and update them to the required computers:
The steps given below will guide you to configure the proxy settings:
To configure the patch database settings, follow the steps below:
This prevents the DB sync from being initiated without the necessary data in the <installdirectory>/conf/CRSData
Follow the steps below to download and set up the DMZ tool:
If the computer does not have direct internet connection, open the downloadMgr.prop file available within the extracted location and provide the details of the proxy server, port and authentication details.
Follow the steps below to update the vulnerability database:
You can find the build number by clicking on your profile located in the top-right corner of the Endpoint Central console.
You will not be able to view all the missing patches unless scanning is completed for all the computers. Ensure that all the computers are scanned, before manually downloading the missing patches.
The next step is to download the missing patches from the computer with internet connection and copy it back to this computer.
Now, you can successfully manage vulnerabilities and have configured the patch management process in a closed network.
If you have any further questions, please refer to our Frequently Asked Questions section for more information.
Thank you for your feedback!
Sorry about that!