Patch your ESXi Hosts from the command line easily and quickly

In many situations it is desirable to patch your ESXi host(s) prior to being able to install or use VMware vSphere® Update Manager™.

UPDATED 4/18/2016: HP has a new URL for HP Customized VMware ISO’s and VIB’s

For example:

  • Prior to installing vCenter in a new cluster
  • Standalone ESXi installations without a vCenter Server
  • Hardware replacement where you have ESXi Configurations backed-up with, but the rest of the hosts in the cluster are running a higher build number than the latest ISO available
  • It is just convenient on a new ESXi host, when internet connectivity is available!
  • Non-Windows environments that do not to intend to create a Windows instance just for patching ESXi

Furthermore, HP indexes vendor-specific updates in a “latest”-type folder structure, which allows us to automatically apply all of the most recent HP updates to our servers. In Truth, I imagine Dell does this too, but I can’t find the link.

  1. Begin by running: vim-cmd hostsvc/maintenance_mode_enter
  2. Now open the ESXi firewall for HTTP: esxcli network firewall ruleset set -e true -r httpClient
  3. View the current available bundles by running: esxcli software sources profile list -d
    1. The output from the previous command will generate a list of the latest build number for all supported versions of ESXi. Locate the latest ESXi-6.X.X-XXXXXXXXXXXX-standard version and write down or copy the version
  4. Now patch/update your ESXi host with the command, be sure to replace the version with the information you wrote/copied earlier: esxcli software profile update -d -p ESXi-6.0.0-20150504001-standard
    1. Let this run for several minutes with no response or feedback
    2. The output should liik like (you may have to scroll up a bit to find the successful status):
  5. Now apply HP-specific updates with the commands (updated:
    1. esxcli software vib install -d
      1. Expected output:
    2. esxcli software vib install -d
      1. Expected output:
  6. Now reset the firewall with: esxcli network firewall ruleset set -e false -r httpClient
  7. And finally, reboot: reboot

John Borhek

John Borhek (VCP 3-6.5) is the IT Director and Lead Solutions Architect at VMsources Group Inc. and an active consultant specializing in VMware vSphere, Linux, Networking and Infrastructure Design.


  1. Hi,

    Seems that this get only old drivers,
    is there a new Link for HPE & ESXi 6.0.0 ?

    Maybe they changed from hpq to hpe ?
    But then the comand will not work


Leave a Reply

Your email address will not be published. Required fields are marked *