Overview of Using SolarWinds Patch Manager in a Secure Environment

Version 1

    Following is an overview of how to use Patch Manager in a secure environment. A few extra steps are required because of a limited internet connectivity, but it’s not difficult to leverage Patch Manager to automate patching and address software vulnerabilities on secure networks.

     

    The process starts on the public / non-secure network-

    • Use SolarWinds Patch Manger Server to:
    • Download Patch Catalog from SolarWinds
    • Download Update files from vendors via Patch Manager Console
    • Create any custom patches
    • Export metadata (vul. info/patch file) to .cab files(s) - this contains all the 3rd party patch information
    • Note: If managing Windows Updates on the public network, it is recommended that users publish updates to the WSUS Server

     

    1. Users can export the entire catalog or updates for a single vendor

    pm1.png

    2. The .cab file(s) is written to a user-specified directory

    pm2.jpg

     

    Continue to use SCCM/WSUS or stand-alone WSUS Server to:

    • Download Windows Updates from Microsoft
    • Use MS Processes to export MS update information

     

    The process continues on the private / secure network-

    Use the Patch Manger Server to:

    • Import .cab file(s)
    • Publish updates to the WSUS Server
    • Now you can manage updates and machines the way you normally would

     

    3. Move the .cab file(s) to the secure network

    pm3.jpg

    4. Import the .cab file(s)

    pm4.jpg

    Continue to use SCCM/WSUS or stand-alone WSUS Server to:

    • Use MS Processes to import MS update information

     

    For more details on how to leverage SolarWinds Patch Manager in a secure environment, please contact your Sales Representative and arrange a call with a Sales En