Lumension, profile picture
Uploaded byLumension
PPTX, PDF3,611 views

Using SCUP (System Center Updates Publisher) to Security Patch 3rd Party Apps with WSUS

This document discusses using SCUP (SystemCenter Updates Publisher) to patch third-party applications with WSUS (Windows Server Update Services). It provides an overview of SCUP, the process for building software updates, and obtaining pre-built update catalogs. It describes how to define updates in SCUP, including software updates, catalogs, and publications, and publishing the updates to WSUS and SCCM (System Center Configuration Manager). It recommends importing pre-built catalogs from Lumension to simplify the process of third-party patching.

Embed presentation

Downloaded 30 times
Sponsored byUsingSCUP (SystemCenter Updates Publisher) toSecurity Patch 3rd PartyApps with WSUS © 2014 Monterey Technology Group Inc.
Thanks to Russ Ernst, Director, Product Management © 2014 Monterey Technology Group Inc. www.Lumension.com
Preview of Key Points  SCUP overview  Building software updates  Understanding the overall process  Where to obtain pre-built update catalogs? © 2014 Monterey Technology Group Inc.
Compliance  3rd party security patching  What’s your state of compliance?  How do you demonstrate it? © 2014 Monterey Technology Group Inc.
SCUP  Single-user application  Define software updates  Update program itself  Prerequisites  Applicability rules  Already installed rules  Publish to WSUS and SC Configuration Manager © 2014 Monterey Technology Group Inc.
SCUP  SCUP objects  Catalog  Software Updates  Software Update Bundles  Publications © 2014 Monterey Technology Group Inc.
SCUP Catalogs Software Updates SCCMWSUS Custom Created Approve Publications Software Update Bundles © 2014 Monterey Technology Group Inc.
SCUPCatalog  Catalog  Collection of pre-built software updates  Some published through Microsoft on the Internet  Others available for import  Creating your own updates?  No need for a catalog © 2014 Monterey Technology Group Inc.
SCUP Software Update  Software Update  Actual installation file  Rules © 2014 Monterey Technology Group Inc.
SCUP Software Update  Software Update  Actual installation file  Types  MSP – Windows Installer patch file  MSI – Windows installer file  EXE – Standalone EXE that performs update  Java  Success return codes  Command line parameters © 2014 Monterey Technology Group Inc.
SCUP Software Update  Software Update  Prerequisites  CPU Architecture  Language  Other updates  Installable rules  i.e. Does this computer need this update?  Installed rules  i.e. Does this computer already have this update?  Superseded updates © 2014 Monterey Technology Group Inc.
Applicability rules  Depend on the update file type  EXEs  Specify files that should be present with version number, date, etc  Registry keys  MSPs  Automatically generated from meta-data in the MSP itself  Should not have to create additional rules unless MSP not authored well  MSIs  Automatically generated  But still necessary to add a rule to check if application being updated is installed or not © 2014 Monterey Technology Group Inc.
Pre-built rules  Great for re-use or templates  Java JRE file version rule template  Operating system version © 2014 Monterey Technology Group Inc.
SCUP  Pre-reqs  WSUS  SCCM  Initial setup tasks  Client trust  Enable “Allow signed updates for an intranet Microsoft update service location”  Choose signing certificate  Deploy toTrusted Root CAs,Trusted Publishers  Install SCUP © 2014 Monterey Technology Group Inc.
SCUP  Over all process 1. Get the patch 2. Research  Pre-requisites  Applicability criteria  Installation evidence 3. Perform manual install using necessary command line parameters 4. Verify installation evidence  Files  Registry keys 5. Stage the software where clients can access it 6. Create Software Update in SCUP 7. Publish toWSUS 8. Test via SCCM  Installed on required systems?  Not installed on n/a systems? 9. Rollout to systems via SCCM © 2014 Monterey Technology Group Inc.
Bottom line  Very few vendors publish catalogs for updating their own tools  Adobe  Acrobat and Flash  Oracle Java  Those that do seem have quality issues  Create updates yourself  Viable but time-consuming  Why does everyone have to re-invent the wheel?  They don’t © 2014 Monterey Technology Group Inc.
SCUP with Lumension  SCUP with Lumension 1. Get the patch 2. Research  Pre-requisites  Applicability criteria  Installation evidence 3. Perform manual install using necessary command line parameters 4. Verify installation evidence  Files  Registry keys 5. Stage the software where clients can access it 6. Create Software Update in SCUP 7. Publish toWSUS 8. Test via SCCM  Installed on required systems?  Not installed on n/a systems? 9. Rollout to systems via SCCM Import Lumension catalog © 2014 Monterey Technology Group Inc.
“Better than Free” 18 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION For more, see https://www.lumension.com/system-center/ patch-manager-desktop/requirements.aspx (scroll to bottom)
Additional Information 19 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION Free Catalog https://www.lumension.com/system-center/ patch-manager-desktop/free-catalog.aspx https://www.lumension.com/system-center/patch-manager-desktop.aspx
Global Headquarters 8660 East Hartford Drive Suite 300 Scottsdale, AZ 85255 1.888.725.7828 info@lumension.com http://blog.lumension.com

More Related Content

PPT
Ksplice Presentation External
byOrlando F. Delgado
 
PPTX
Using SCCM 2012 r2 to Patch Linux, UNIX and Macs
byLumension
 
DOCX
Sccm Interview Questions and Answers
byKashifSCCMTrainer
 
PPT
SolarWinds Patch Manager - How does it compare to SCCM Patch Management?
bySolarWinds
 
PDF
Software Deployment by DeskCenter USA
byDeskCenter USA Inc.
 
PPTX
Whats New in OSSIM v2.3?
byAlienVault
 
PPT
SP3 features
byAxle-IT
 
PPTX
Patch Tuesday Analysis - November 2015
byIvanti
 
Ksplice Presentation External
byOrlando F. Delgado
 
Using SCCM 2012 r2 to Patch Linux, UNIX and Macs
byLumension
 
Sccm Interview Questions and Answers
byKashifSCCMTrainer
 
SolarWinds Patch Manager - How does it compare to SCCM Patch Management?
bySolarWinds
 
Software Deployment by DeskCenter USA
byDeskCenter USA Inc.
 
Whats New in OSSIM v2.3?
byAlienVault
 
SP3 features
byAxle-IT
 
Patch Tuesday Analysis - November 2015
byIvanti
 

What's hot

PPTX
Desktop Management Using Microsoft SCCM
byJerry Bishop
 
PDF
SCCM Training Tutorials | SCCM Online Training
byKashifSCCMTrainer
 
PPTX
Application Virtualization overview - BayCUG
byDenis Gundarev
 
PPT
ZCM Software Packaging and ZENworks Application Virtualization
byRoel van Bueren
 
PPT
WSUS Deployment on Windows Server 2008
bySolarWinds
 
PPTX
Automated Operating System Deployment Using SCCM 2012
byAbdelslam Elsobky
 
PPTX
SCOM 2012 & SCCM 2012
byAmit Gatenyo
 
PDF
System Center Configuration Manager-The Most Popular System Center Component
byC/D/H Technology Consultants
 
PPTX
what is sccm ? sccm online Training
byKashifSCCMTrainer
 
PPTX
Wsus best practices
byConcentrated Technology
 
PPT
Symantec Endpoint Protection 12.1 RU6 MP6
bySarah Isaacs
 
PDF
1 mrg002586 configuration_migration_for_670_series_in_pcm600_user_manual
byfaqrelion
 
PPT
Os Deployment With Configuration Manager 2007
byAmit Gatenyo
 
PPTX
Microsoft System center Configuration manager 2012 sp1
bysolarisyougood
 
DOCX
Sql server 2008 r2 security overviewfor admins
byKlaudiia Jacome
 
PDF
ESM 6.5 Patch 1 Release Notes
byProtect724migration
 
PDF
Gonzo - Increasing Agility by Understanding Risk
bycroomes
 
PPT
LANDesk Service pack 3 features
byInfraVision
 
PDF
ESM 5.5 Patch 1 Release Notes
byProtect724
 
PPTX
Patch Tuesday Analysis - September 2015
byIvanti
 
Desktop Management Using Microsoft SCCM
byJerry Bishop
 
SCCM Training Tutorials | SCCM Online Training
byKashifSCCMTrainer
 
Application Virtualization overview - BayCUG
byDenis Gundarev
 
ZCM Software Packaging and ZENworks Application Virtualization
byRoel van Bueren
 
WSUS Deployment on Windows Server 2008
bySolarWinds
 
Automated Operating System Deployment Using SCCM 2012
byAbdelslam Elsobky
 
SCOM 2012 & SCCM 2012
byAmit Gatenyo
 
System Center Configuration Manager-The Most Popular System Center Component
byC/D/H Technology Consultants
 
what is sccm ? sccm online Training
byKashifSCCMTrainer
 
Wsus best practices
byConcentrated Technology
 
Symantec Endpoint Protection 12.1 RU6 MP6
bySarah Isaacs
 
1 mrg002586 configuration_migration_for_670_series_in_pcm600_user_manual
byfaqrelion
 
Os Deployment With Configuration Manager 2007
byAmit Gatenyo
 
Microsoft System center Configuration manager 2012 sp1
bysolarisyougood
 
Sql server 2008 r2 security overviewfor admins
byKlaudiia Jacome
 
ESM 6.5 Patch 1 Release Notes
byProtect724migration
 
Gonzo - Increasing Agility by Understanding Risk
bycroomes
 
LANDesk Service pack 3 features
byInfraVision
 
ESM 5.5 Patch 1 Release Notes
byProtect724
 
Patch Tuesday Analysis - September 2015
byIvanti
 

Viewers also liked

PPTX
Managing Updates with System Center Configuration Manager 2012
byJasonCondo
 
PPTX
System Center Endpoint Protection
byScientia Groups
 
PPTX
What's New in System Center 2012
byPerficient, Inc.
 
PPTX
2011 11-28 sccm-2012_technical_overview
byfannaq786
 
PPTX
Microsoft System Center Configuration Manager for Education
byHerman Arnedo
 
PDF
Microsoft System Center Configuration Manager 2012 R2 Installation
byShahab Al Yamin Chawdhury
 
PPT
SolarWinds Patch Manager Compared to Shavlik / VMware
bySolarWinds
 
PDF
Up is Down, Black is White: Using SCCM for Wrong and Right
byenigma0x3
 
PDF
System Center Configuration Manager and Mobile Device Management
byC/D/H Technology Consultants
 
PDF
Sccm hands-on-lab
byDPA
 
DOC
Arun SCCM Profile
byArun M
 
PPTX
Ultima 14th March
byJISC RSC Eastern
 
PPTX
Microsoft system center 2012 r2 configuration manager
byapponix1
 
PDF
System Center Configuration Manager 2012 Sneak Peek
byC/D/H Technology Consultants
 
PDF
System Center 2012 R2 - Enterprise Automation
byScientia Groups
 
PDF
Microsoft sccm 2012 seminar ddls sydney 22 nov 2012
byDDLS
 
PDF
ITCamp 2011 - Adrian Stoian - System Center Configuration Manager 2012
byITCamp
 
PDF
IT/Dev Connections: Intune, ConfigMgr, or Both: Choose the Right Tool for the...
byPeter Daalmans
 
PDF
Overview of System Center 2012 R2 Configuration Manager
byDigicomp Academy AG
 
PDF
World Population Datasheet 2008
byrichm711
 
Managing Updates with System Center Configuration Manager 2012
byJasonCondo
 
System Center Endpoint Protection
byScientia Groups
 
What's New in System Center 2012
byPerficient, Inc.
 
2011 11-28 sccm-2012_technical_overview
byfannaq786
 
Microsoft System Center Configuration Manager for Education
byHerman Arnedo
 
Microsoft System Center Configuration Manager 2012 R2 Installation
byShahab Al Yamin Chawdhury
 
SolarWinds Patch Manager Compared to Shavlik / VMware
bySolarWinds
 
Up is Down, Black is White: Using SCCM for Wrong and Right
byenigma0x3
 
System Center Configuration Manager and Mobile Device Management
byC/D/H Technology Consultants
 
Sccm hands-on-lab
byDPA
 
Arun SCCM Profile
byArun M
 
Ultima 14th March
byJISC RSC Eastern
 
Microsoft system center 2012 r2 configuration manager
byapponix1
 
System Center Configuration Manager 2012 Sneak Peek
byC/D/H Technology Consultants
 
System Center 2012 R2 - Enterprise Automation
byScientia Groups
 
Microsoft sccm 2012 seminar ddls sydney 22 nov 2012
byDDLS
 
ITCamp 2011 - Adrian Stoian - System Center Configuration Manager 2012
byITCamp
 
IT/Dev Connections: Intune, ConfigMgr, or Both: Choose the Right Tool for the...
byPeter Daalmans
 
Overview of System Center 2012 R2 Configuration Manager
byDigicomp Academy AG
 
World Population Datasheet 2008
byrichm711
 

Similar to Using SCUP (System Center Updates Publisher) to Security Patch 3rd Party Apps with WSUS

PPTX
There's more to third-party patching than SCCM 1806
byIvanti
 
PPTX
Deploying Windows Vista Service Pack 1
byMicrosoft TechNet
 
PPTX
WEEK 1 ICT 10.pptxnannsjdjenrnfjfjsksbejs
byAprilRoseRedulaJalua
 
PPTX
Beyond Windows Patching: Dealing with the New Imperative to Patch Adobe, Appl...
byLumension
 
PPTX
Bringing Patch Management to Spiceworks
bySpiceworks
 
PDF
The how and why of patch management
bySolarwinds N-able
 
PPTX
Patch management
bySyAM Software
 
PDF
Watch power user manual 20160301
byAugusto SANCHEZ MILLA
 
PPT
SolarWinds Patch Manager - How does it compare to WSUS Patch Management?
bySolarWinds
 
PDF
Llunitebe2018 best of_two_worlds-manage.your.servers.the.azure.or.configmgr.way
byKenny Buntinx
 
PDF
Windows 10: Mehr als viele bunte Kacheln
byA. Baggenstos & Co. AG
 
PPTX
SCCM
byMick Pletcher
 
PDF
Microsoft system center 1
byWael Sharba
 
PDF
FlexNet Connect Datasheet April 2014
byFlexera
 
PDF
2010-03 Yesterday's Trusted Web Sites are Today's Malicious Servers
byRaleigh ISSA
 
PPTX
Best ofmms2013 kb_managing_software_updates_part3
byDieter Wijckmans
 
PPTX
Best ofmms2013 kb_managing_software_updates_part3
byKenny Buntinx
 
PPTX
Stopping the Adobe, Apple and Java Software Updater Insanity
byLumension
 
PPTX
System Center Configuration Manager 2012 SP1 and the new way of handling soft...
byMicrosoft TechNet - Belgium and Luxembourg
 
PDF
Ms Patch Man Ch8
bygopi1985
 
There's more to third-party patching than SCCM 1806
byIvanti
 
Deploying Windows Vista Service Pack 1
byMicrosoft TechNet
 
WEEK 1 ICT 10.pptxnannsjdjenrnfjfjsksbejs
byAprilRoseRedulaJalua
 
Beyond Windows Patching: Dealing with the New Imperative to Patch Adobe, Appl...
byLumension
 
Bringing Patch Management to Spiceworks
bySpiceworks
 
The how and why of patch management
bySolarwinds N-able
 
Patch management
bySyAM Software
 
Watch power user manual 20160301
byAugusto SANCHEZ MILLA
 
SolarWinds Patch Manager - How does it compare to WSUS Patch Management?
bySolarWinds
 
Llunitebe2018 best of_two_worlds-manage.your.servers.the.azure.or.configmgr.way
byKenny Buntinx
 
Windows 10: Mehr als viele bunte Kacheln
byA. Baggenstos & Co. AG
 
SCCM
byMick Pletcher
 
Microsoft system center 1
byWael Sharba
 
FlexNet Connect Datasheet April 2014
byFlexera
 
2010-03 Yesterday's Trusted Web Sites are Today's Malicious Servers
byRaleigh ISSA
 
Best ofmms2013 kb_managing_software_updates_part3
byDieter Wijckmans
 
Best ofmms2013 kb_managing_software_updates_part3
byKenny Buntinx
 
Stopping the Adobe, Apple and Java Software Updater Insanity
byLumension
 
System Center Configuration Manager 2012 SP1 and the new way of handling soft...
byMicrosoft TechNet - Belgium and Luxembourg
 
Ms Patch Man Ch8
bygopi1985
 

More from Lumension

PPTX
Adobe Hacked Again: What Does It Mean for You?
byLumension
 
PPTX
Java Insecurity: How to Deal with the Constant Vulnerabilities
byLumension
 
PPTX
Careto: Unmasking a New Level in APT-ware
byLumension
 
PPTX
Windows XP is Coming to an End: How to Stay Secure Before You Migrate
byLumension
 
PPTX
APTs: The State of Server Side Risk and Steps to Minimize Risk
byLumension
 
PPTX
Defending Your Corporate Endpoints How to Go Beyond Anti-Virus
byLumension
 
PPTX
2015 Endpoint and Mobile Security Buyers Guide
byLumension
 
PPTX
2014 Ultimate Buyers Guide to Endpoint Security Solutions
byLumension
 
PPTX
2013 Data Protection Maturity Trends: How Do You Compare?
byLumension
 
PPTX
2014 Security Trends: SIEM, Endpoint Security, Data Loss, Mobile Devices and ...
byLumension
 
PPTX
2014 Data Protection Maturity Survey: Results and Analysis
byLumension
 
PPTX
2014 BYOD and Mobile Security Survey Preliminary Results
byLumension
 
PPTX
Top 10 Things to Secure on iOS and Android to Protect Corporate Information
byLumension
 
PDF
Greatest It Security Risks of 2014: 5th Annual State of Endpoint Risk
byLumension
 
PPTX
Real World Defense Strategies for Targeted Endpoint Threats
byLumension
 
PPTX
BYOD & Mobile Security: How to Respond to the Security Risks
byLumension
 
PPTX
Data Protection Rules are Changing: What Can You Do to Prepare?
byLumension
 
PPTX
Securing Your Point of Sale Systems: Stopping Malware and Data Theft
byLumension
 
PPTX
3 Executive Strategies to Reduce Your IT Risk
byLumension
 
PDF
The Evolution of Advanced Persistent Threats_The Current Risks and Mitigation...
byLumension
 
Adobe Hacked Again: What Does It Mean for You?
byLumension
 
Java Insecurity: How to Deal with the Constant Vulnerabilities
byLumension
 
Careto: Unmasking a New Level in APT-ware
byLumension
 
Windows XP is Coming to an End: How to Stay Secure Before You Migrate
byLumension
 
APTs: The State of Server Side Risk and Steps to Minimize Risk
byLumension
 
Defending Your Corporate Endpoints How to Go Beyond Anti-Virus
byLumension
 
2015 Endpoint and Mobile Security Buyers Guide
byLumension
 
2014 Ultimate Buyers Guide to Endpoint Security Solutions
byLumension
 
2013 Data Protection Maturity Trends: How Do You Compare?
byLumension
 
2014 Security Trends: SIEM, Endpoint Security, Data Loss, Mobile Devices and ...
byLumension
 
2014 Data Protection Maturity Survey: Results and Analysis
byLumension
 
2014 BYOD and Mobile Security Survey Preliminary Results
byLumension
 
Top 10 Things to Secure on iOS and Android to Protect Corporate Information
byLumension
 
Greatest It Security Risks of 2014: 5th Annual State of Endpoint Risk
byLumension
 
Real World Defense Strategies for Targeted Endpoint Threats
byLumension
 
BYOD & Mobile Security: How to Respond to the Security Risks
byLumension
 
Data Protection Rules are Changing: What Can You Do to Prepare?
byLumension
 
Securing Your Point of Sale Systems: Stopping Malware and Data Theft
byLumension
 
3 Executive Strategies to Reduce Your IT Risk
byLumension
 
The Evolution of Advanced Persistent Threats_The Current Risks and Mitigation...
byLumension
 

Recently uploaded

PPSX
AppSec Role Based Training OWASP Global AppSec USA 2025-11-06
byRobert Grupe, CSSLP CISSP PE PMP
 
PDF
Transparency Exchange API: How Do You Find the SBOM for a Smart Light Bulb?
byPavel Shukhman
 
PPTX
Governance, Deployment & Methodologies for Agentic Automation [2/3]
bysuhanisingh58689
 
PDF
Unveiling the Basics of Agentic AI - OSUG Mumbai
bythesubuiyer
 
PDF
Open Source SecurityCon 2025 in Atlanta - Transparency Exchange API: Where To...
byPavel Shukhman
 
PPTX
Sephora UAE API Service Real-Time Product & Price Data Access.pptx
bycreativeclicks1733
 
PDF
From Pixels to Insights: Getting Started with Imagery in FME
bySafe Software
 
PDF
Manage Networking in RHEL - RHCSA (RH124).pdf
byLinuxCert Guru
 
PDF
MathML Core in WebKit
byIgalia
 
PDF
#MakeAIMatter for HR Professionals | AI Transformation Workshop by Tekdi Tech...
byParth Lawate
 
PDF
Do more with the HP Z2 Mini G1a
byPrincipled Technologies
 
PDF
Install and Update Software - RHCSA (RH124).pdf
byLinuxCert Guru
 
PDF
Career Blueprint: Mentor Tracks & Career Clinic - Part 2
byDianaGray10
 
PDF
Dr. Robert Krug - Specializes In Predictive Modeling
byDr. Robert Krug
 
PDF
How to not make bugs (in JSC), and the future of 32-bits
byIgalia
 
PPTX
A GREEN BUSINESS TOOLKIT FOR EARLY-STAGE ENTREPRENEURS (1).pptx.pptx
bylearnskillsofficial1
 
PDF
Manage Files Using CLI - RHCSA (RH124).pdf
byLinuxCert Guru
 
PDF
Access Linux File System in RHEL - RHCSA (RH124).pdf
byLinuxCert Guru
 
PDF
Catalog Data - Keys to the Kingdom.pdf‎ ‎
byPrecisely
 
PDF
Private Governance: How Decentralized Mechanisms Can Regulate the Crypto Economy
byFederico Ast
 
AppSec Role Based Training OWASP Global AppSec USA 2025-11-06
byRobert Grupe, CSSLP CISSP PE PMP
 
Transparency Exchange API: How Do You Find the SBOM for a Smart Light Bulb?
byPavel Shukhman
 
Governance, Deployment & Methodologies for Agentic Automation [2/3]
bysuhanisingh58689
 
Unveiling the Basics of Agentic AI - OSUG Mumbai
bythesubuiyer
 
Open Source SecurityCon 2025 in Atlanta - Transparency Exchange API: Where To...
byPavel Shukhman
 
Sephora UAE API Service Real-Time Product & Price Data Access.pptx
bycreativeclicks1733
 
From Pixels to Insights: Getting Started with Imagery in FME
bySafe Software
 
Manage Networking in RHEL - RHCSA (RH124).pdf
byLinuxCert Guru
 
MathML Core in WebKit
byIgalia
 
#MakeAIMatter for HR Professionals | AI Transformation Workshop by Tekdi Tech...
byParth Lawate
 
Do more with the HP Z2 Mini G1a
byPrincipled Technologies
 
Install and Update Software - RHCSA (RH124).pdf
byLinuxCert Guru
 
Career Blueprint: Mentor Tracks & Career Clinic - Part 2
byDianaGray10
 
Dr. Robert Krug - Specializes In Predictive Modeling
byDr. Robert Krug
 
How to not make bugs (in JSC), and the future of 32-bits
byIgalia
 
A GREEN BUSINESS TOOLKIT FOR EARLY-STAGE ENTREPRENEURS (1).pptx.pptx
bylearnskillsofficial1
 
Manage Files Using CLI - RHCSA (RH124).pdf
byLinuxCert Guru
 
Access Linux File System in RHEL - RHCSA (RH124).pdf
byLinuxCert Guru
 
Catalog Data - Keys to the Kingdom.pdf‎ ‎
byPrecisely
 
Private Governance: How Decentralized Mechanisms Can Regulate the Crypto Economy
byFederico Ast
 

Using SCUP (System Center Updates Publisher) to Security Patch 3rd Party Apps with WSUS

  • 1.
    Sponsored byUsingSCUP (SystemCenter UpdatesPublisher) toSecurity Patch 3rd PartyApps with WSUS © 2014 Monterey Technology Group Inc.
  • 2.
    Thanks to Russ Ernst,Director, Product Management © 2014 Monterey Technology Group Inc. www.Lumension.com
  • 3.
    Preview of Key Points SCUP overview  Building software updates  Understanding the overall process  Where to obtain pre-built update catalogs? © 2014 Monterey Technology Group Inc.
  • 4.
    Compliance  3rd partysecurity patching  What’s your state of compliance?  How do you demonstrate it? © 2014 Monterey Technology Group Inc.
  • 5.
    SCUP  Single-user application Define software updates  Update program itself  Prerequisites  Applicability rules  Already installed rules  Publish to WSUS and SC Configuration Manager © 2014 Monterey Technology Group Inc.
  • 6.
    SCUP  SCUP objects Catalog  Software Updates  Software Update Bundles  Publications © 2014 Monterey Technology Group Inc.
  • 7.
  • 8.
    SCUPCatalog  Catalog  Collectionof pre-built software updates  Some published through Microsoft on the Internet  Others available for import  Creating your own updates?  No need for a catalog © 2014 Monterey Technology Group Inc.
  • 9.
    SCUP Software Update  Software Update Actual installation file  Rules © 2014 Monterey Technology Group Inc.
  • 10.
    SCUP Software Update  Software Update Actual installation file  Types  MSP – Windows Installer patch file  MSI – Windows installer file  EXE – Standalone EXE that performs update  Java  Success return codes  Command line parameters © 2014 Monterey Technology Group Inc.
  • 11.
    SCUP Software Update  Software Update Prerequisites  CPU Architecture  Language  Other updates  Installable rules  i.e. Does this computer need this update?  Installed rules  i.e. Does this computer already have this update?  Superseded updates © 2014 Monterey Technology Group Inc.
  • 12.
    Applicability rules  Depend onthe update file type  EXEs  Specify files that should be present with version number, date, etc  Registry keys  MSPs  Automatically generated from meta-data in the MSP itself  Should not have to create additional rules unless MSP not authored well  MSIs  Automatically generated  But still necessary to add a rule to check if application being updated is installed or not © 2014 Monterey Technology Group Inc.
  • 13.
    Pre-built rules  Greatfor re-use or templates  Java JRE file version rule template  Operating system version © 2014 Monterey Technology Group Inc.
  • 14.
    SCUP  Pre-reqs  WSUS SCCM  Initial setup tasks  Client trust  Enable “Allow signed updates for an intranet Microsoft update service location”  Choose signing certificate  Deploy toTrusted Root CAs,Trusted Publishers  Install SCUP © 2014 Monterey Technology Group Inc.
  • 15.
    SCUP  Over allprocess 1. Get the patch 2. Research  Pre-requisites  Applicability criteria  Installation evidence 3. Perform manual install using necessary command line parameters 4. Verify installation evidence  Files  Registry keys 5. Stage the software where clients can access it 6. Create Software Update in SCUP 7. Publish toWSUS 8. Test via SCCM  Installed on required systems?  Not installed on n/a systems? 9. Rollout to systems via SCCM © 2014 Monterey Technology Group Inc.
  • 16.
    Bottom line  Veryfew vendors publish catalogs for updating their own tools  Adobe  Acrobat and Flash  Oracle Java  Those that do seem have quality issues  Create updates yourself  Viable but time-consuming  Why does everyone have to re-invent the wheel?  They don’t © 2014 Monterey Technology Group Inc.
  • 17.
    SCUP with Lumension  SCUPwith Lumension 1. Get the patch 2. Research  Pre-requisites  Applicability criteria  Installation evidence 3. Perform manual install using necessary command line parameters 4. Verify installation evidence  Files  Registry keys 5. Stage the software where clients can access it 6. Create Software Update in SCUP 7. Publish toWSUS 8. Test via SCCM  Installed on required systems?  Not installed on n/a systems? 9. Rollout to systems via SCCM Import Lumension catalog © 2014 Monterey Technology Group Inc.
  • 18.
    “Better than Free” 18 PROPRIETARY& CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION For more, see https://www.lumension.com/system-center/ patch-manager-desktop/requirements.aspx (scroll to bottom)
  • 19.
    Additional Information 19 PROPRIETARY &CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION Free Catalog https://www.lumension.com/system-center/ patch-manager-desktop/free-catalog.aspx https://www.lumension.com/system-center/patch-manager-desktop.aspx
  • 20.
    Global Headquarters 8660 EastHartford Drive Suite 300 Scottsdale, AZ 85255 1.888.725.7828 [email protected] http://blog.lumension.com