Getting Started with ManageEngine Patch Connect Plus

For SCCM administrators a tool to patch third party applications would be of great help. ManageEngine Patch Connect Plus Professional Edition acts as a plug-in for System Center Configuration Manager to patch third party applications. The third party patches will be published to SCCM server and the administrators can proceed with the deployment of these patches using SCCM. This document provides you with following information about Patch Connect Plus.

  1. Pre-requisites
  2. Working of Patch Connect Plus
  3. Download and installation
  4. Setting up the Native SCCM Plug-in


Before installing the product, ensure that you meet the following requirements:

Note: It is preferred if the installation machine contains SCCM sever or SCCM admin console. However this is an optional requirement.

Working of Patch Connect Plus:

ManageEngine Patch Connect Plus works as an add-on to SCCM server to enable patching the third party applications. It publishes the required third party patches to SCCM server and deployment of these patches will be initiated from the SCCM console. Refer to the Product Architecure to learn more.

Download and Installation:

  1. Download ManageEngine Patch Connect Plus. An installation wizard will open. 
  2. Specify the port to open this application in the web browser. The default access port is 5020. However you may change it if required.
  3. Click install to install the product. Once done, it will open in the web browser. 

To set the product up, you have to configure the following settings,

Configure Proxy settings

Configure proxy settings to allow connections reaching internet to download patches from the third party websites and to synchronize patch vulnerability database.

Note: You can skip this step if you have direct connection to internet.

To configure proxy settings follow the steps given below,

  1. Enable proxy.
  2. Enter the HTTP Proxy host name.
  3. Enter HTTP Proxy Port.
  4. If required select the credentials to configure proxy.

Configure WSUS server settings

Configure WSUS server settings to publish third party patch updates to SCCM server. To configure WSUS server settings follow the steps given below,

Note: Ensure that you specify the details of the primary WSUS server while configuring this settings.

  1. Enter WSUS server name.
  2. Enter WSUS port.
  3. Enable SSL settings if you are connecting to a WSUS site where SSL is enabled.

Configure Certificate settings

It is mandatory to import third-party certificates or self-signed certificates to 'Trusted publishers' and 'Root certificate authority' stores to all managed computers. This is needed to ensure that the updates are from an authentic source. If you have a third party certificate you can directly import it else you may have to create a self signed certificate.

Configure SCCM settings

Configure SCCM settings to automatically synchronize software updates in SCCM. To configure SCCM settings follow the steps given below,

  1. Enable Synchronize software updates.
  2. Enter SCCM server name.
  3. Select the required credentials to connect to SCCM server.

Select Applications

Select the third party applications for which you require patch updates and associate the patches with the customized deployment template. Based on the installation options given in the template, deployment of patches will happen in SCCM. Click here to know how to customize deployment by creating deployment templates. To know the list of third party applications supported, click here.

Configure Scheduler settings

This settings will allow you to schedule the frequency to publish patches to SCCM.

  1. Select the frequency at which you want to publish patches.
  2. Specify the date when you want to start publishing the patches.

    Note: Patches will be published based on the machine time where the server is installed.

  3. Enable email notifications if you want to receive the status of published updates through mail.

Note: You have to configure mail server settings to receive email updates.

Configure Mail Server settings

Configure mail server settings to receive patch reports and email updates

  1. Specify the name and port of the mail server.
  2. Select the email type. Email type Indicates the type of email dispatching.
  3. Enable Transport Layer Security.
  4. If it requires authentication, select the required authentication check box and specify the required user credentials.
  5. Click OK.

Configure site database server settings

This settings is required to fetch the deployment reports of the published third party patches.

  1. In the server console, go to Admin tab --> Publsih settings --> Site Database server settings
  2. Specify the machine name where SQL server is installed.
  3. Specify the port number, the default port is 1433.
  4. Specify the database name, i.e the name of the database where SCCM patch deployment details are stored.
  5. Select the authentication type
  6. Select or add the credentials which is required to reach SQL server.
  7. Specify the time period to update the patch deployment details and click Save.

Setting up the Native SCCM Plug-in

Configure the native SCCM Plug-in to access and deploy all supported third-party applications directly from the SCCM console. The SCCM plug-in lists every available third-party update under a separate tab in Microsoft SCCM. It also fetches the complete report of all updates available in each client machine.Click here to know how to configure SCCM plug-in.

You have successfuly configured the above settings. You may now start using ManageEngine Patch Connect Plus for publishing the third party patches.