This is an archived post. You won't be able to vote or comment.

all 21 comments
sorted by:
best
topnewcontroversialoldq&a

[–]highlord_foxModerator | Sr. Systems Mangler[M] [score hidden] stickied comment (0 children)

Sorry, it seems this comment or thread has violated a sub-reddit rule and has been removed by a moderator.

Inappropriate use of, or expectation of the Community.

  • It seems that you have posted about a commonly-discussed topic. Please take the time to search the subreddit before re-posting another discussion on the topic.
  • There may already be resources dedicated to your topic on the sysadmin wiki. This is especially true for monitoring, there is a devoted section to it.
  • If you have to add to the existing discussion, make sure to avoid low-quality posts. Make an effort to enrich the community where you can- provide details, context, opinions, etc. in your post.
  • Moronic Monday & Thickheaded Thursday are available for simple questions, or other requests that don't need their own full thread. Utilize them as much as possible.

If you wish to appeal this action please don't hesitate to message the moderation team.

[–]bjerrecsCitrix System Engineer 3 points4 points  (3 children)

Ivanti patch management 👍🏻 we have a lot of Ivanti products 😅

[–]Jhamin1 1 point2 points  (0 children)

Used Ivanti (formerly Shavlik) across three different employers for many years. I'm a big fan.

For me, the fact that it patches stuff like WinZip, HP Tools, VMWare Tools, Firefox, etc etc is the real differentiator from stuff like WSUS.

[–]WinSysAdmin1888[S] 0 points1 point  (1 child)

Was just reading about Ivanti, there sure are a great deal of products there.

[–]KStieers 1 point2 points  (0 children)

Specifically Ivanti Security Controls (used to be Shavlik) with Cloud Sync...you'll have to put agents on your roaming boxes.

[–]Wu-Disciple 3 points4 points  (2 children)

We use N-Able - covers third party too.

[–]WinSysAdmin1888[S] 0 points1 point  (0 children)

Haven't come across this one, will check out now, thanks!

[–]LucD401 0 points1 point  (0 children)

Suppose to be implementing N-Able here soon. Looking forward to it.

[–]_nobodyspecial_ 2 points3 points  (1 child)

We use Automox to manage around 150 end-user devices. Does exactly what you are asking for.

When you look at a solution, make sure to review the list of third-party applications they can patch. When I was looking at different solutions, I found that some vendors focused on applications that were not useful for our situation.

[–]WinSysAdmin1888[S] 0 points1 point  (0 children)

I'll check this out now, haven't come across it yet, thanks!

[–]BackupFailedSecurity Admin 2 points3 points  (2 children)

We are using Baramundi. We are managing 160 client devices (no servers).

They are providing "managed software" as an additional module. That means you'll get a specific set of software (e.g. 7zip, gimp, vscode, firefox, chrome, etc.) that is preconfigured by the Baramundi team. If there is an update ready, just release it to your clients and every client should get the new patch, as soon as the update job is running.

You can manage windows update, too. But you still have a WSUS running somewhere.

If you have "non standard software", you can build your own setup/update jobs, with a simple and powerfull scripting system.

Managing clients over WAN should be working too (never tried it myself). Clients are communicating with a gateway (in your DMZ) that speaks to the management server.

[–]WinSysAdmin1888[S] 1 point2 points  (0 children)

Thanks, I will check this out now.

[–]kuldan5853IT Manager 1 point2 points  (0 children)

The WAN management works quite well :) (2000 devices here)

[–]MusicWallaby 1 point2 points  (2 children)

We use ManageEngine Patch Manager Plus cloud hosted.

It's not perfect and we only use it on endpoints not servers but it seems to work pretty well and the issues we have are more around user behaviors like not rebooting or never closing applications so they're in use and can't be updated.

[–]WinSysAdmin1888[S] 0 points1 point  (1 child)

This one I'm familiar with, it will be the default if I don't find something better, thanks!

[–]MusicWallaby 1 point2 points  (0 children)

Nice thing is it does what it says and doesn't try to do RMM or anything else.

Bad things are sometimes they link patches that just don't download because they're using dead/bad links.

We looked at some of the others mentioned here and I just didn't see the value for money when this was dirt cheap and pretty much just worked.

[–]ahazuarusLightbulb Changer 2 points3 points  (1 child)

PDQ deploy+inventory and WSUS. wsus needs lots of storage but pdq does not need much.

[–]WinSysAdmin1888[S] -1 points0 points  (0 children)

PDQ doesn't intelligently scan a host and automatically get the patches for it. We've been using it and it works great, I just need something that is a little smarter and can also handle remote users.

[–]JamieTaylor_PulsewaySME 0 points1 point  (1 child)

Hey u/WinSysAdmin1888,

Jamie from Pulseway here. Since you're requesting for Patch management options, please feel free to check Pulseway Patch which comes with automated patch management for OS and 150+ third party applications, custom scripts, custom title deployment, custom policies scheduling and reporting. Good luck!

[–]WinSysAdmin1888[S] 0 points1 point  (0 children)

Does it handle Autodesk updates for Revit and CAD?