Security and software updates

To ensure maximum protection you must keep your Software and Security Rules and Patterns up to date. The Updates tab on the Administration > System Settings page allows you to set the location where Deep Security Manager checks for updates. To see the status of current updates, go to the Administration > Updates page.

Security Updates

Primary Security Update Source

  • Trend Micro Update Server: Connect to the default Trend Micro Update Server.
  • Other Update Source: If you were given an alternative source for updates, enter the URL here including "http://" or "https://". (SSL connections are supported.)




  • Allow supported 8.0 and 9.0 Agents to be updated: Select this option if you require support for agents on Windows 2000, AIX, HP-UX, or Solaris. By default, Deep Security Manager does not download updates for Deep Security Agent 9.0 and earlier, because for most platforms, Deep Security Manager does not support them (see System requirements). This reduces disk usage because older agents and appliances have a different update package format. However, those platforms do not have newer agent versions, and therefore require the older package format.
  • Download Patterns for all Regions: If you are operating in multi-tenancy mode and any of your tenants are in other regions, select this option. If this option is deselected, a relay will only download and distribute patterns for the region (locale) that Deep Security Manager was installed in.
  • Use the Primary Tenant Relay Group as my Default Relay Group (for unassigned Relays): By default, the primary tenant gives other tenants access to the its relays. This way, tenants don't need to set up their own relays. If you don't want other tenants to share the primary tenant's relays, deselect this option and create separate relays for other tenants.
    If this option is deselected, when you click Administration > Updates > Relay Groups, the relay group name will be "Default Relay Group" rather than "Primary Tenant Relay Group".
    This setting appears only if you have enabled multi-tenant mode.

Software Updates

Alternate software update distribution server(s) to replace Deep Security Relays:

Deep Security Relays are usually used to host Agent Software Updates. However, you can optionally use your own web servers to distribute Agent software packages. To use your own web servers for software distribution, enter the URL to the directory hosting the software.

Even though you are using your own web servers to distribute software, you must still import Agent software from the Trend Micro Download Center into the Deep Security Manager using the options on the Administration > Updates > Software screens. Then you must ensure that your software web server contains the same software that has been imported into Deep Security Manager, otherwise the alerts and other indicators that tell you about available updates will not function properly. For more information on configuring your own software distribution web servers, see Configuring a Software Web Server.