For SCCM administrators a tool to patch third party applications would be of great help. ManageEngine Patch Connect Plus acts as a plug-in for System Center Configuration Manager to patch third party applications. Over here the third party patches will be published to SCCM server and the administrators can proceed with the deployment of these patches using SCCM. This document provides you with following information about Patch Connect Plus.
Before installing Patch Connect Plus ensure that you meet the following requirements:
Note: Ensure that the WSUS server is of version 3.0 SP2 with WSUS-KB2720211 installed.
Note: It is preferred if the installation machine contains SCCM sever or SCCM admin console. However this is an optional requirement.
Patch Connect Plus works as an add-on to SCCM server to enable patching the third party applications. Patch Connect Plus publishes the required third party patches to SCCM server and deployment of these patches will be initiated from the SCCM console. Refer to the Patch Connect Plus Architecure to learn more.
Watch our video on Setting Up Patch Connect Plus
To set up Patch Connect Plus, you have to configure the following settings,
Configure proxy settings to allow connections reaching internet to download patches from the third party websites and to synchronize patch vulnerability database.
Note: You can skip this step if you have direct connection to internet.
To configure proxy settings follow the steps given below,
Configure WSUS server settings to publish third party patch updates to SCCM server. To configure WSUS server settings follow the steps given below,
Note: Ensure that you specify the details of the primary WSUS server while configuring this settings.
Configure SCCM settings to automatically synchronize software updates in SCCM. To configure SCCM settings follow the steps given below,
This settings will allow you to schedule the frequency to publish patches to SCCM.
Note: Patches will be published based on the machine time where Patch Connect Plus is installed.
Note: You have to configure mail server settings to receive email updates.
Configure mail server settings to receive patch reports and email updates
Select the third party applications for which you require patch updates and associate the patches with the customized deployement template. Based on the installation options given in the template, deployment of patches will happen in SCCM. Click here to know how to customize deployment by creating deployment templates. To know the list of third party applications supported by Patch Connect Plus click here.
It is mandatory to import third-party certificates or self-signed certificates to 'Trusted publishers' and 'Root certificate authority' stores to all managed computers. This is needed to ensure that the updates are from an authentic source. If you have a third party certificate you can directly import it else you may have to create a self signed certificate.
You have successfuly configured the above settings. You may now start using Patch Connect Plus for publishing the third party patches.