Patch Server

Print Friendly, PDF & Email

Patch Management enables the centralized management for checking and installing the missing patches for the applications installed in your network. With this too, you can also automate checking and installation of the missing patches.

The Patch Management feature is available only in the clients with Microsoft Windows OS and it does not support the clients with Mac and Linux operating systems.

Installing Patch Server

To install the patch server, follow these steps:

  1. For 32-bit Windows OS, download the setup from one of the following links:

    http://dlupdate.quickheal.com/builds/seqrite/760/en/pmsetup32.msi
    http://download.quickheal.com/builds/seqrite/760/en/pmsetup32.msi

    For 64-bit Windows OS, download the setup from one of the following links:

    http://dlupdate.quickheal.com/builds/seqrite/760/en/pmsetup64.msi
    http://download.quickheal.com/builds/seqrite/760/en/pmsetup64.msi

  2. Launch the setup on the system in the network where you want to install the Seqrite patch server.
  3. After the installation is complete, add Seqrite patch server through EPS console, and then it becomes available to use.

Adding New Patch Server

To add new patch server, follow these steps:

  1. Log on to Seqrite Endpoint Security Web console.
  2. Go to Admin Settings > Server > Patch Management.
  3. On the Patch Management page, click the Add New Patch Server tab.
  4. In the Add New Patch Server section, enter Server Name.
  5. If the Patch server is deployed in the network of local client, follow these steps:
    1. In the Server IP/Hostname text box, type private IP address or host name of the Patch Server.
    2. In Port, type the port number. Default Port HTTP is 3698 SSL:6201.
    3. Ensure that the Use SSL (Ensure Patch server supports SSL, if SSL is checked) check box is selected. This check box is selected by default.
    4. In the EPS Details section, in the EPS IP/Hostname text box, provide private or public IP/Hostname of the EPS server. Seqrite recommends provide the Private IP/Hostname.
  6. If the Patch server is deployed in the network of remote client, follow these steps:
    1. In the Server IP/Hostname text box, type public IP address or host name of the Patch Server.
    2. In Port, type the port number. Default Port HTTP is 3698 SSL:6201.
    3. Ensure that the Use SSL (Ensure Patch server supports SSL, if SSL is checked) check box is selected. This check box is selected by default.
    4. In the EPS Details section, in the EPS IP/Hostname text box, provide public IP/Hostname of the EPS server.
  7. Click Add.

Windows XP 64 and Windows Server 2003 does not support SSL communication of client with the Patch Server.

Removing Patch Server

To remove the patch server, follow these steps:

  1. Log on to Seqrite Endpoint Security Web console.
  2. Go to Admin Settings > Server > Patch Management.
  3. On the Patch Management page, click the Add New Patch Server tab.

Existing Patch Server Status appears. The status options are as follows:

Status Description
Online The patch server is online.
Offline The patch server is offline.
Uninstalled The patch server is being uninstalled.
Invalid The patch server is added on EPS console. Then the same patch server is added on another EPS console. In this case, the status of the patch server in the first EPS will be shown as invalid.
  1. You cannot remove a patch server, if it is applied to a policy. Select the Patch server that you want to remove and click the link Remove next to it. A confirmation message appears.
  2. Click Yes to remove the patch server.

Configuring Patch Server

Configure the port for Seqrite patch server to which EPS server and endpoints will communicate.

To configure the patch server, follow these steps:

  1. Log on to Seqrite Endpoint Security Web console.
  2. Go to Admin Settings > Server > Patch Management.
  3. On the Patch Management page, click the Configure Patch Server tab.
  4. Select the patch server from the list. Configuration section appears.
  5. Select the Configuration tab and do the following:
    1. The port number of the patch server appears. You can edit the port number.
    2. Select the check box Use SSL (Select the check box if the patch server is configured with SSL).
    3. In the Automatic Download section, select the Automatic download the detected missing patches if severity equal to or greater than: check box.
    4. Select the severity level from the list. The severity options are:
Severity Description
Critical Vulnerability may allow code execution without user interaction.
Important Vulnerability may result in compromise of the confidentiality, integrity, or availability of user data. The client is compromised with warnings or prompts regardless of the prompt’s provenance, quality, or usability.
Moderate Impact of the vulnerability is mitigated to a significant degree by factors such as authentication requirements or applicability only to non-default configurations.
Low Impact of the vulnerability is comprehensively mitigated by the characteristics of the affected component.
Unspecified Vulnerability may result in random malfunctions.
  1. Select the Internet Settings tab and do the following:
    The details of the proxy server appears. By default, the Enable Proxy Settings check box is selected. You can clear the check box to disable the proxy settings.

    1. In the Proxy Server text box, the IP address of the proxy server appears. Edit the IP address if required.
    2. In Port text box, the port number of the proxy server appears. Edit Port number if required.
    3. Select the check box Enable Authentication (if any) to enable authentication.
    4. In the User name and Password fields, type in your server credentials.
  2. Select the Patch Synchronization tab and do the following:

    1. Previous patch synchronization status and last successful patch synchronization dates appear.
    2. In the Configure Upstream Patch Server section, select the upstream patch server from the following options:
Upstream Patch Server Description
Microsoft Patch server The upstream patch server used is Microsoft patch server. This option is selected by default.
Organization Patch server (WSUS) The upstream patch server used is Organization Patch server (WSUS – Windows Server Update Service). If you select this option, type in WSUS server URL.
Seqrite Patch server The upstream patch server used is configured Seqrite Patch server. If you select this option, select the patch server from the list.
  1. In the Configure Patch Synchronization section, select the Enable Schedule Patch Synchronization check box.
  2. Select Frequency of patch synchronization, either Weekly or Monthly.
  3. Select Weekday from the list to run patch synchronization.
  4. Select time to run patch synchronization by selecting hours and minutes in the Start At list.
  5. Click Filters.. to specify filters for patch synchronization. Windows Patch Synchronization Settings dialog appears.
    1. In the Products tab, select the products for which you want to receive the patches. Select the folder to expand and then select.
    2. Select the Categories tab. Select the type of patches to be synchronized.
    3. Select the Languages tab. Select the languages for the patches by selection one of the following options:
      • Download patches in all languages
      • Download patches in below selected languages
    4. Click Apply to apply the filters for patch synchronization. To restore the default settings, click the Default.
    5. Click Start to run patch synchronization instantly.
    6. Click Stop to stop patch synchronization if it is running. A notification is sent to the patch management server.
  6. Click Apply to apply the configuration settings.

Patch Management supports the following applications along with Microsoft applications,

  • VideoLAN Player
  • Adobe Acrobat
  • Adobe Flash Player
  • Adobe Reader
  • puTTY
  • puTTY with MSI installer
  • Notepad++
  • Oracle Corp.
  • Java
  • 7-zip compression Tool
  • Mozilla Thunderbird
  • Firefox
Was this page helpful?

Leave a Comment