What would you recommend for a cloud based patch management solution for Windows/Mac/Linux?
-
Still not clear on the goal. The systems will all update themselves. What's the goal?
-
Goal - To monitor the patch (both OS and 3rd party software) status of my user workstations from a central console and update them or install the latest versions if necessary.
In an ideal world "systems will all update themselves" but it may not be the case in the real world or at-least in my situation. -
@sn said in What would you recommend for a cloud based patch management solution for Windows/Mac/Linux?:
In an ideal world "systems will all update themselves" but it may not be the case in the real world or at-least in my situation.
I'm not familiar with cloud solutions for this, but haven't run into this issue. What about your situation makes systems self updating not work? Wouldn't just monitoring the patches work?
Windows, I know, is a big pain. but how is this not working for Linux, for example?
-
@scottalanmiller
It is mainly for Windows. Linux machines are mainly R&D workstations supplied in addition to the regular workstations which needs to be updated only when required. So, more or less, I am looking for a controlled patch management solution. -
@sn said in What would you recommend for a cloud based patch management solution for Windows/Mac/Linux?:
@scottalanmiller
It is mainly for Windows. Linux machines are mainly R&D workstations supplied in addition to the regular workstations which needs to be updated only when required. So, more or less, I am looking for a controlled patch management solution.Tools like InTune can manage patches for Windows.
-
@scottalanmiller sure, but I will be needing the 3rd party patching option as well
-
@sn said in What would you recommend for a cloud based patch management solution for Windows/Mac/Linux?:
@scottalanmiller sure, but I will be needing the 3rd party patching option as well
You can manage them with Salt, but i don't know how much of a pain that is.
-
3rd party software updating... like what? Most 3rd party software does auto updating too... think Firefox and such. But depends on the vendor and if their software has built in update management.
For Windows OS updates, I can't imagine why having automatic updates enabled are not working. Maybe it's time for a Windows 10 upgrade.
Did you not configure the update settings on all of these computers? You can control when they update, how they up... how it handles missed update windows, etc.
If these "managed" computers are basically "unmanaged" because they never phone home or connect to the company network... well then they are really no different than personal computers.
Maybe WSUS plus MS DirectAccess would be the best option... as that combo would be centralized, managed, automatic, etc., and all client computers would be connected to the corporate network automatically as long as they have internet access. But depending on the 3rd party software, WSUS might not work.
I get what you want to do, but there may not be a realistic solution that makes sense financially for such a small amount of computers.
-
You can use chocoately to push a lot of patches... You can also write a powershell script that pulls the current patch level on each PC and compare it to a know list of updates.
There are several other windows patch/software deployment software packages... Including the new version is SMS from MS. Jared, help me with the name.
-
I use Comodo one to do this for my clients. It has a patch management feature.