Using WSUS as the source of update files...
Hi all; My customer prefers to use WSUS in Internet side and Endpoint Central as the intranet side. Is it possible to sync updates from WSUS? Thanks
Unintentional Shutdowns after Patches
Hello, We keep receiving messages from users complaining that their laptops are being restarted or shut down unexpectedly after patches are applied. We have configured a policy for the affected patches: "no notification, no restart." Do we need to change
MySQL Connector 9.3 patch unsupported
Just FYI in case anyone else was looking, EPC is not supporting MySQL Connector 9.3 patch because of software requirements. Even though their 3rd party list still includes this.
The system TPM version is not compatible with Windows 11. (50010
Hi, my systems don’t support TPM. I want to update them via ManageEngine, but I received the following error: "The system TPM version is not compatible with Windows 11. (50010)" Is there any way to bypass this issue?
Can I just have patches delivered to a server but not install them?
We have a group of servers that need to be patched manually because of the need to coordinate the restarts with other servers. Is there a way to automatically deliver the patches that have been approved to the server but not install them. So, they will
Upgrade to Windows 11 version 24H2 with Endpoint Central!
Hello everyone! As you all must be aware, Microsoft has recently rolled out the new 2024 update (version 24H2) for Windows 11. This is the major update for Windows 11, encompassing all the features and fixes from previous cumulative updates in Windows
Multiple versions of Cumulative Updates in same month
I have a Windows 2019 Server that reports this patch is installed: 2025-04 Cumulative Update for Windows Server 2019 (1809) for x64-based Systems (KB505519) But Manage Engine shows that following patch needs applied 2025-04 Cumulative Update for Windows
Google fixes high severity and critical severity vulnerabilities in its Chrome 135.0.7049.95/.96 Stable Channel update
Chrome Stable Channel has been updated to 135.0.7049.95/.96 for Windows,Mac and 135.0.7049.95 for Linux. This update comes with 2 security fixes. The details of the vulnerability fixed are mentioned below: CVE-ID VULNERABILITY SEVERITY CVE-2025-3619 Heap-based
Patch Tuesday Updates: April 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2025-04 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5055596) (CVE-2025-29824) (ESU) 2025-04 Security Only
Notification to computer owner after patch installation
Hello I would like to automate the notification of the computer's (server) owner and a patch installation. The owner is available in the "Custom Computer Details". Is there any way to achieve this?
Patch Tuesday Updates: March 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2025-03 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5053995) (ESU) (CVE-2025-24991) (CVE-2025-24985) (CVE-2025-24993)
Google fixes several high severity vulnerabilities in its Chrome 134.0.6998.117/118 Stable Channel update
Chrome Stable Channel has been updated to 134.0.6998.117/118 for Windows and Mac (release in progress). This update comes with 1 security fix. The details of the vulnerability fixed are mentioned below: CVE-ID VULNERABILITY SEVERITY CVE-2025-2476 Use
Deployment of Windows 11 24H2 Bulletin ID MSWU-3640
Windows 11 Readiness Reporting available in build 11.4.2500.17 does not look at the EFI partition size or space available , why is this? Those two factors can cause failure to deploy MSWU-3640. When will we see a fix for this reporting and as part of
This version is not applicable for this target (Feature Update via Windows 11, version 23H2 Enablement Package (22H2 - 23H2) (x64)
Hi! I have some issues to run Feature Update via Windows 11, version 23H2 Enablement Package (22H2 - 23H2) (x64), we recevie "This version is not applicable for this target" on our Windows 11 22H2 machines. But when we download Windows11.0-kb5027397-x64.msu
Google Chrome updates
Every time I install a Google update on a server using Endpoint Central, it installs the new version of the Google updater Internal Service without uninstalling the old version. This causes the server to have multiple services that aren't running, which
Unapproved Patches Are being Deployed Automatically
Central Server : 11.4.2500.05 Behaviour first noticed this morning. Has anyone else noticed this behaviour?
Has something changed with the Desktop Central Agent Service regarding patch mgmt? Our SentinelOne EDR is triggered by some updates
Anyone have this sort of trouble? Some windows updates or others are triggering our SentinelOne EDR software. Sometimes the Threat files are any of these, listed with the "Detecting Engine": Threat Details Detecting Engine 5beceb.rbf ['On-Write Static
Edge, WebView2 and the Evergreen Distribution Model.
Is there a template available to disable the Evergreen Distribution mode? Edge and WebView2 are automatically downloading and installing on all systems and ignoring existing update blocking configurations.
Download Failing - CHECKSUM_FAILED
PatchID; 809430 DSA-5863-1 libtasn1-6 security update(DSA-5863-1) problem downloading "Download blocked by firewall. Enable firewall configuration to allow download. " Log files state... "CHECKSUM_FAILED" Is there an issue with the source patch as other
Ubuntu Upgrade 22.04.5 LTS to Ubuntu 24.04.1 LTS
Hey guys, is it possible to automate an Ubuntu Upgrade from V22 to V24? Or is Endpoint Central only used to install small Ubuntu patches? Thanks for you help! Kind regards, Andy
BIOS Updates - APD
Hi, Is it possible to create an automated patch deployment policy for BIOS updates? When I create a new policy I get Microsoft patches, third party applications, drivers but nothing about BIOS. I'd like to automate the process as much as possible, probably
How to disable Automatic Software Updates for Mac devices
Good day, I wanted to deploy a configuration template to "Disable Mac Software Auto Update". Upon creating he template, I noticed a red exclamation mark over the configuration with the following text in the upper right corner "Deprecated Configurations"
HP BIOS updates
Hello, Is it possible to apply HP BIOS updates with Endpoint Central? For example, the HP Elitebook 850 G5? Regards, John
dcpatchmgmt.log
is there a list of keywords within this log file that reflect the patch/install progress? Log Initialization Configuration Loading File Download Start File Download Completion Patch Dependency Check File Extraction Patch Installation Initiation, Patch
Patch Download status failed
Good Day, I have two updates that failed to download and require manual upload. Patch ID 109939, 111890 According to Read more (https://www.manageengine.com/patch-management/how-to/windows-1122h2-feature-pack-deployment.html?dci&did=junkValue) the ISO
How to exclude certain devices from receiving updates.
Good day, We have a couple of Windows devices that needs to be excluded from patching as they run critical systems and will be manually updated at a later stage. How do I exclude these devices from receiving updates? I am new to using Test and Approve
Chrome 131.0.6775.108 requiring a manual upload?
Is there a reason patch management is now saying I need to manual upload the latest chrome update? see attached screen shot
Deployment Happening Outside the Scope Window Even Though the are inside the window
I have setup a pilot test group that has a deployment schedule setup. It seems even though they are inside the windows they are deploying outside the windows I I can provide a copy of the schedule and setting if requested for further assistance. But it
How long does it take for a patch scan to complete?
I inherited Endpoint Central, and I'm going through patch mgmt. On Endpoint Central is on-premise and when i manually kick off a scan, about 1/2 the time it comes back as timed out. How long does it normally take for a patch scan to complete on your systems,
Vulnerabilities over time graph SQL
Is anyone able to supply us the SQL query which drives this. We would like to use the query to generate our own data from our SQL to showcase patching trends
Endpoint Central taking snapshots before patching
Good afternoon, we have recently installed Endpoint Central. 11.3.2406.5 I have heard it is possible to take VMware snapshots of servers before patching. but I cannot find any KB articles. Looking at it I am thinking it needs to be scripted. does anyone
Surface firmware updates
I just wanted to put in a formal request for support of updating Surface Pro 1, 2, 3, and 4 firmware through the Desktop Central patch module. We have many many Surface devices and we have no way to upgrade the firmware on them. This is causing support issues since these updates are so critical. Do you have an update on when this feature will be added? Please contact me if I can be a beta-tester for it. Thank you.
Patch Deployment policy question - interval option
Hi! I'm configuring a new deployment policy for patch management. I want to allow the user to select up to 8 hours as an interval option. Currently, all I'm able to configure is 15 mins, 1 hour or 2 hours. How do I go about enabling the 8 hour optio
Skipping patch deployment
I have never seen this message before because we do not have user notification turned on in any of our deployment policies "Patch Installation was delayed as user skipped its deployment" How do I prevent this Thanks
Error 403 when downloading Feature Pack Update
Dear Support We are setting up EC Cloud and deploying patches using Self Service Portal. We deploy updates and users are able to download and install. But with Feature Pack we got the error : Problem while downloading the patch. HTTP Error: 403. We tried
Speed Up Patching
HI There, We currently use Desktop Manager to patch both user workstations and our servers. For workstations we have an automatic patch configuration, but for servers we do it manually as we have a very specific window to complete the patching. I've noticed that the jobs take a very long time to complete and frequently servers are in the yet to apply status when there is really no need for this. What I'd like is for all of the servers I select for a configuration to start applying patches at the
Patches will not download after update
Patches will not download after update for on prem EPC Patch Management. We checked out the cleanup setting and the path threw an error when I tried to add email notifications for patch downloads. It said that path is on their blacklist??? We cannot change
After updating to 11.3.2428.16, cannot patch systems (cannot select anything for targeting)
Pretty much the question. I installed the most recent update, and afterwards none of my patching is working. I cannot create new deployments, modify existing deployments, or select any target systems. The notification section is glitch as well.
[Zero-day] Microsoft's October 2024 Patch Tuesday fixes 5 zero-day vulnerabilities
Hello folks, This is to notify you that 5 zero-day vulnerabilities have been fixed in this month's Patch Tuesday. Below, you can find the CVE and Patch ID details. Vulnerable Component Impact CVE ID Microsoft Management Console Remote code execution CVE-2024-43572
Patch Tuesday Updates: October 2024
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2024-10 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5044320) (ESU) (CVE-2024-43572) (CVE-2024-43583)
Next Page