Getting Started with Patch Connect Plus

For SCCM administrators a tool to patch third party applications would be of great help. ManageEngine Patch Connect Plus acts as a plug-in for System Center Configuration Manager to patch third party applications. Over here the third party patches will be published to SCCM server and the administrators can proceed with the deployment of these patches using SCCM. This document provides you with following information about Patch Connect Plus.

  1. Pre-requisites
  2. Working of Patch Connect Plus
  3. Download and installation
  4. Setting up Patch Connect Plus

Pre-requisites:

Before installing Patch Connect Plus ensure that you meet the following requirements:

Note: It is preferred if the installation machine contains SCCM sever or SCCM admin console. However this is an optional requirement.

Working of Patch Connect Plus:

Patch Connect Plus works as an add-on to SCCM server to enable patching the third party applications. Patch Connect Plus publishes the required third party patches to SCCM server and deployment of these patches will be initiated from the SCCM console. Refer to the Patch Connect Plus Architecure to learn more.

Download and Installation:

  1. Download Patch Connect Plus. An installation wizard will open. 
  2. Specify the port to open this application in the web browser. Patch connect Plus default port is 5020. However you may change it if required.
  3. Click install to install the product. Patch Connect Plus will open in the web browser. 

Setting Up Patch Connect Plus:

Watch our video on Setting Up Patch Connect Plus

 

To set up Patch Connect Plus, you have to configure the following settings,

Configure Proxy settings

Configure proxy settings to allow connections reaching internet to download patches from the third party websites and to synchronize patch vulnerability database.

Note: You can skip this step if you have direct connection to internet.

To configure proxy settings follow the steps given below,

  1. Enable proxy.
  2. Enter the HTTP Proxy host name.
  3. Enter HTTP Proxy Port.
  4. If required select the credentials to configure proxy.

Configure WSUS server settings

Configure WSUS server settings to publish third party patch updates to SCCM server. To configure WSUS server settings follow the steps given below,

Note: Ensure that you specify the details of the primary WSUS server while configuring this settings.

  1. Enter WSUS server name.
  2. Enter WSUS port.
  3. Enable SSL settings if you are connecting to a WSUS site where SSL is enabled.

Configure SCCM settings

Configure SCCM settings to automatically synchronize software updates in SCCM. To configure SCCM settings follow the steps given below,

  1. Enable Synchronize software updates.
  2. Enter SCCM server name.
  3. Select the required credentials to connect to SCCM server.

Configure Scheduler settings

This settings will allow you to schedule the frequency to publish patches to SCCM.

  1. Select the frequency at which you want to publish patches.
  2. Specify the date when you want to start publishing the patches.

    Note: Patches will be published based on the machine time where Patch Connect Plus is installed.

  3. Enable email notifications if you want to receive the status of published updates through mail.

Note: You have to configure mail server settings to receive email updates.

Configure Mail Server settings

Configure mail server settings to receive patch reports and email updates

  1. Specify the name and port of the mail server.
  2. Select the email type. Email type Indicates the type of email dispatching.
  3. Enable Transport Layer Security.
  4. If it requires authentication, select the required authentication check box and specify the required user credentials.
  5. Click OK.

Select Applications

Select the third party applications for which you require patch updates. To know the list of third party applications supported by Patch Connect Plus click here.

Configure Certificate settings

It is mandatory to import third-party certificates or self-signed certificates to 'Trusted publishers' and 'Root certificate authority' stores to all managed computers. This is needed to ensure that the updates are from an authentic source. If you have a third party certificate you can directly import it else you may have to create a self signed certificate.

You have successfuly configured the above settings. You may now start using Patch Connect Plus for publishing the third party patches.