The Patch Database serves as a centralized storage repository within the ManageEngine website, containing all relevant data and information regarding patches released by various vendors. This database is periodically updated and maintained through rigorous analysis and testing by ManageEngine.
Endpoint Central's Patch Repository is updated with the latest patch information from Microsoft, Apple, Linux, and other third-party vendors. Regular synchronization between the Patch DB and the Endpoint Central Patch Repository ensures that every patch remains up-to-date. You can configure the Patch Database Settings to set the frequency at which the patch database synchronizes with the Endpoint Central's Patch Repository.
With the daily release of patches, it's essential for enterprises to carefully evaluate and select the necessary patches for their managed network. With Endpoint Central, IT administrators can configure their preferences to download and add patches to their list, with the option to selectively apply patches related to the operating system or third-party software. IT admins can also decline patches, if required. To do this, administrators use the "Decline Patch" feature. Computers within the network will be scanned to identify missing patches based on the administrators' selections, allowing for targeted and efficient patch management. For instance, administrators may choose to install only patches related to the Mac operating system and specific third-party patches for Windows, with scans focused on identifying missing patches in these selected categories (Mac, Linux, and Windows-related third-party patches).
A patch may become obsolete if the vendor releases a newer patch or update that supersedes it. IT administrators have the option to either enable or ignore superseded patches.
Administrators can schedule the time at which the vulnerability database information is updated. The admin can also get notified about the synchronization by configuring the notification server settings.
To configure the Patch Database settings, follow the steps below:
Navigate to the Admin page.
Under the Patch Settings, select Patch Database settings
Users can select the type of patches that are to be managed. These patches can be selected individually for the provided Operating Systems. This feature is provided to ensure maximum feasibility of the Patch management activity. Endpoint Central will receive updates from patch repository on the whole irrespective of the type of patches selected. Once Patch Database sync is completed, the managed computers will be scanned and only missing patches related to selected patches will be listed.
"Enable" the Superseded Patches under "Superseded Patches Settings", if the organization requires the addition of superseded or older patches.
"Enable" the Schedule Vulnerability Database Update and fill in the fields to activate the patch database sync.
If you wish to receive the notifications on the patch database settings, provide your email address in the corresponding field.
Click Save to enable the patch database sync settings.
Setting the time in Start at field will enable patch sync to happen at that time on a daily basis. If you wish to receive mobile app notification, install the mobile application version of Endpoint Central and configure the changes here. This procedure is not applicable for Endpoint Central cloud Version.
Note: The patch database sync for cloud setup is scheduled exclusively on weekdays, ensuring a seamless and efficient update process while maintaining optimal system performance.