Desktop Central supports patch management of a wide range of applications that included both Microsoft and other third-party applications. Using the Automated Patch Deployment (APD) feature system administrators can deploy patches missing in their network computers automatically, without any manual intervention.The required patches are downloaded only once and are stored in the Desktop Central Server from where they are distributed to the agents and distribution servers for installation.
The Online vulnerability Database is a portal in the ManageEngine site, which hosts the latest vulnerability database that has been published after a thorough analysis. Whenever new patches are released by vendors, the patch assessment team will test these patches and update their online patch database. Desktop Central's patch engine will periodically synchronize this information and update its local database. This information is used to detect the missing patches in the computers in the network.
You should configure your proxy server to allow downloading of the files containing this information from "patchdb.manageengine.com"
Given below are the websites from where the patches gets downloaded. If you are using a proxy server, the proxy credentials specified in Desktop Central should have necessary privileges to download the EXE files from these sites.
The patches are downloaded only once and they are stored in the Desktop Central Server. The default location where the patches gets stored is <Desktop_Central_Server_Home>/webapps/DesktopCentral/store and is configurable. However, you need to copy the previously downloaded patches to the new location manually, else the patches will get downloaded to the new location again.
You can change the local patch store to a different location using the "Change Patch Store Directory" link available in the Downloaded Patches view.
If you have deployed an Automated Patch Deployment, all the target devices will be scanned to detect if those patches are missing in them. Once a patch is found missing in any of the target devices, the Patch Engine will proceed to look for the availability of the patch in the local patch store and the download will happen only if a patch is not available in the local store.
If you experience any problem with the automatic patch download in some specific cases, you can download the patch from the internet and then upload it manually using the Upload Patches option, available in the Downloaded Patches view. Additionally patches can also be uploaded directly from the Download Failed view of Automated Patch Deployment.
You can automate the process of removing unwanted patches from the Patch Repository using the Clean up settings option available in the Downloaded Patches view. Patches that are removed from the Desktop Central server, will automatically be removed from the Distribution Server during the subsequent replication interval.