In practice, this means installing Windows security patches as soon as your corporate information security policy allows and subject to appropriate testing. This advice fits within AP ENPS’s traditional guidance to our customers about installing Windows patches.
We continue to test AP ENPS functionality both with and without the Spectre and Meltdown patches and we do not anticipate any negative impact from installation of the patches. If you have a specific question, please contact the AP ENPS team at email@example.com or on our 24-hour support hotline.
If you wish to read more information about this vulnerability, read the following Microsoft knowledge base article: https://support.microsoft.com/en-us/help/4072698/windows-server-guidance-to-protect-against-the-speculative-execution
Do note that if you have anti-virus software installed on your ENPS servers and wish to install the patch, you must have the following registry setting in place: Key="HKEY_LOCAL_MACHINE" Subkey="SOFTWARE\Microsoft\Windows\CurrentVersion\QualityCompat" Value="cadca5fe-87d3-4b96-b7fb-a231484277cc" Type="REG_DWORD”
More information on this registry change can be found here: https://support.microsoft.com/en-us/help/4072699