Patch Management for Closed Network

If the Desktop Central Server is installed in a closed network, like Demilitarized Zone (DMZ), where the Server has no internet connection, the patch synchronization and automatic update is not possible. The following steps will help you to manually download all the missing patches and update them to the required computers.

  1. Download and setup the Tool
  2. Configure Proxy Settings
  3. Update the Patch Database
  4. Download the Required Patches

Download and setup the Tool

  1. Download this zip and extract it on to a computer with an internet connection
  2. Open the downloadMgr.prop file available within the extracted location and provide the details of the proxy server, port and authentication details. You can ignore this step, if the computer has a direct internet connection.
  3. Specify the data base as mysql, mssql or pgsql.
  4. Specify the value  as "isPrivate= true"

Configure Proxy Settings

  1. Click Admin Tab and select Proxy Settings
  2. Choose No connection to Internet
  3. Click OK to save changes.

Update the Patch Database

  1. Go to the machine where you have extracted the downloadMgr.prop, Open a command prompt and navigate to the extracted directory.
  2. Execute the command: patchsync.bat -c updatedb

  3. This will update the latest patch information available at Zohocorp website to the local computer. The update will take some time and after completion, the necessary information will be updated in the updatedb directory.

  4. Copy the updatedb directory to the Desktop Central Server to <Install Directory>/conf/CRSData directory.

  5. From the Desktop Central Web Console, click the Patch Mgmt tab and click Update Now button. This will copy the necessary information from the updatedbdirectory to the database. Now, the local database will have the latest patch information.

  6. Now, scan the computers in the network to identify the missing patches. 

The next step is to download the missing patches from the computer with internet connection and copy it back to this computer.

Download the Required Patches

  1. To download the patches, you would first require the details of the missing patches. To get this, go the Missing Patches view and click Export Missing Patches button. This will export the details of the missing patches as downloadUrlJson.txt

  2. Copy this file to the directory in the computer where you had extracted the zip.

  3. Open a command prompt and execute the command: patchsync.bat -c dwnpatch -f downloadUrlJson.txt

  4. This will download all the missing patches to the store directory. Once all the files are downloaded, copy the contents of the store directory and copy it to the Desktop Central Server to <Install_Dir>/webapps/DesktopCentral/Store directory (this is the default location; if this has been changed copy it o the appropriate location)

  5. You should then update this information to the database so that all these patches are shown in the Downloaded Patches view. To do this, open the Downloaded Patches view and click Update Downloaded Patches button

  6. All the manually downloaded patches will appear in the view from where you can deploy them to the required computers.


You have successfully configured the patch management process in  a closed network.

 

Copyright © 2005-2014, ZOHO Corp. All Rights Reserved.
ManageEngine