Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1519
  • Last Modified:

Patch management for ~100 systems that can do Windows and 3rd paty applications

I have used Lumension in the past and it was OK but it is too expensive. I have used Kaseya and don't like it. I have heard bad things about WSUS and it won't nativity do 3rd party applications. Shavlik is also expensive. ECORA's website is difficult to navigate and I am not interested in starting a trial simply based off that.

I downloaded a trial of GFI LANguard which looked nice but it is a standalone .NET application with no web or remote console and is crashing throwing .NET errors.

With that said, can anyone suggest me a reasonably priced/free patch management application that will do Windows and 3rd party applications, have a remote client or web interface, and that will also patch systems not joined to our network?
0
ThorinO
Asked:
ThorinO
3 Solutions
 
nsx106052Commented:
WSUS isn't bad.  I have encountered a few  issues in the beginning and was able to fix them. Currently my WSUS server is handling updates for 700 workstations with no real issues.  As for 3rd party updates.  I would just say write a basic script to install  the updates.  Most of the time a basic script can be written to update programs like Acrobat and Flash.  You can even use a software deployment server to install 3 rd party patches.   Programs like Altiris are pretty good with distributing 3rd party updates with a basic script.  Just something to consider if you want to go the cheapest route.

If you want something automated I would get a demo of GFI LAN guard or LANDesk then see what you like best.  
0
 
ThorinOAuthor Commented:
I heard (and could be totally wrong) is that WSUS won't automatically install patches and that you have to manually apply them but I can't believe this would actually be the case.

Will WSUS do other Microsoft products like Exchange, Office, SQL, etc? Can it deploy to disjoined systems?
0
Building an Effective Phishing Protection Program

Join Director of Product Management Todd OBoyle on April 26th as he covers the key elements of a phishing protection program. Whether you’re an old hat at phishing education or considering starting a program -- we'll discuss critical components that should be in any program.

 
DonNetwork AdministratorCommented:
We use WSUS for the normal security updates/patches and Local Updates Publisher(Free) for 3rd party

http://localupdatepubl.sourceforge.net/

http://sourceforge.net/apps/mediawiki/localupdatepubl/index.php?title=Main_Page

We also use Secunia CSI which is relatively inexpensive

http://secunia.com/vulnerability_scanning/corporate/wsus
0
 
ThorinOAuthor Commented:
How come you use local update and Secunia? How do you like Secunia, is it worth the money, the videos look nice.
0
 
DonNetwork AdministratorCommented:
We like Secunia, I was using Local Update beforehand. I have used LUP to update some of our propriatary applications. Secunia is worth the money and they keep improving. I even like PSI for my personal Pc's.
0
 
ThorinOAuthor Commented:
How has your experience with WSUS been, any complaints?
0
 
DonNetwork AdministratorCommented:
Huge advocate of WSUS!!! Strongly recommend it.
0
 
DonNetwork AdministratorCommented:
0
 
ThorinOAuthor Commented:
Does LUP scan for updates or just deploy them. Meaning Adobe Flash for example, will it scan the systems in WSUS or just allow me to deploy?
0
 
DonNetwork AdministratorCommented:
LUP basically allows you to add(using your Adobe Flash for example) into WSUS. Because this is a non-microsoft product you will only be able to view/monitor/approve/decline thru LUP. The clients that have Adobe flash versions that are lower than in LUP/WSUS when they query for updates will then update to this version. If a client doesnt have flash at all(For this example) it will not install it.
0
 
ThorinOAuthor Commented:
So it will add the package and remediate as needed but it won't deploy new installations.

For 100 licenses of Secunia they want $2,700. With your experience using both products would you say the cost of Secunia is worth it compared to the functionality and ease of use of LUP?

Secunia looks pretty sick from the videos I watched, LUP seems to have that open source frustration feel.
0
 
DonNetwork AdministratorCommented:
You should be able to get secunia for cheaper by talking to thier Rep(I believe we payed closer to $6000 for 3 years and 160 clients). LUP *only* allows you to add custom update packages into WSUS, it doesnt scan your network for vulnerabilities as Secunia does. I only continued to use LUP as Secunia's integration with WSUS is relatively new and all 3rd party applications havent been accounted for when it comes to packaging them to import into WSUS.
0
 
ThorinOAuthor Commented:
Thank you, I will continue to work with WSUS and figure out a 3rd party solution as I go along.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now