this post was submitted on 07 Aug 2023
13 points (78.3% liked)
Sysadmin
7467 readers
4 users here now
A community dedicated to the profession of IT Systems Administration
No generic Lemmy issue posts please! Posts about Lemmy belong in one of these communities:
!lemmy@lemmy.ml
!lemmyworld@lemmy.world
!lemmy_support@lemmy.ml
!support@lemmy.world
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
We are using Tanium, just put the agent on the servers and you are good to go...build your packages and set up deployment jobs.
It also handles Windows patching, and can do system inventory, among other features.
It's also great for software deployments to you remote workforce systems that are rarely/never on the corporate network.
And seriously, you want a domain. GPOs are incredibly useful for pushing out a huge variety of Windows config changes extremely easily.
Does it handle application updates as well?
Tanium has some common apps pre-packaged and regularly updated, you could just setup an ongoing deployment for those to automate keeping them up to date with minimal work on your part.
If you need to update something not on that list, you will need to make an upgrade package yourself with the updated installer or files.
Whether this is actually easy or not really depends on the app vendor and the software. It's usually straight forward, but not always. But that's the case with literally any software deployment solution.
I have one app in particular who's install and config essentially un-automateable. But it's a shitty LOB app that was written in the 90's to be intentionally obtuse to prevent privacy, hopefully that's not an issue in your case.