Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.
Course Of The Month
2 days, 2 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
What is the best third party patch management solution for a company with 130 server (90% VMs)
Posted on 2013-10-30
What 3rd party tool does the job best against VMs? We are running vSphere 5. WSUS in my experience is not so great. What tool has the best technical service support in case you run into issues with patching. We are a company that rely heavily upon our web servers for our business to function. Our clients and vendors use our propriety systems within our website to do there job. We are a background check company. It is mission critical that are servers are up and running 24x7, or if there is a post patching issue, then we can rollback easily without affecting production. We are a windows shop running Jboss, Tomcat in our server environment. Please if have any insights for a best practice approach for patching servers, to include your experience.
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2-
2
5 Comments
Active today
I wonder why you seem to think VMs have to be treated differently. Makes no difference for patching. For me, the answer would be quite simple: use WSUS. Before scheduled updates, have your hypervisor do a snapshot (can be scripted). If updates won't install, it's not the patching solutions fault, so that does not matter here. To rollback patches can be done with WSUS. Patches that can't be rolled back because they don't support it won't offer a rollback no matter what patching solution you use. No difference. You would need to resort to your latest snapshot.
From my experience, WSUS is really bad in regards to reporting. We have the money to buy third party patching tool, but what are the top three? We plan to manage patching and apply them to both workstations and servers. How do patching license work? Do we pay per server? If so, is it per year?
McKnife,
To follow up on your comment. VMs have to be treated differently because we need to keep in mind that during patching, Memory, CPU, Storage all being utilized on the same LUN during patching can cause a bottleneck on the ESX host.
Other than that, I am comparing Symantec vs Shavlik. Any thoughts? How do licensing work for both products?
To follow up on your comment. VMs have to be treated differently because we need to keep in mind that during patching, Memory, CPU, Storage all being utilized on the same LUN during patching can cause a bottleneck on the ESX host.
Other than that, I am comparing Symantec vs Shavlik. Any thoughts? How do licensing work for both products?
Active today
I see, right. But what would the patch management ideally do to mitigate this effect? It would group servers and have one group start at 10pm, the next at 11 pm,... and so on. That's something we can do by GPOs, set a scheduled installation time based on a security group the server is in.
Sorry, I cannot help out with hints on products. My overall impression is that those don't really do a better job but only manage to make a better impression. The real problems with patch management are common to all:
-how to test?
-how to rollback?
-what to do if installation fails?
I don't see any technical solution that could solve these.
Sorry, I cannot help out with hints on products. My overall impression is that those don't really do a better job but only manage to make a better impression. The real problems with patch management are common to all:
-how to test?
-how to rollback?
-what to do if installation fails?
I don't see any technical solution that could solve these.
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Background Information
Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
OfficeMate Freezes on login or does not load after login credentials are input.
This is a high-level webinar that covers the history of enterprise open source database use. It addresses both the advantages companies see in using open source database technologies, as well as the fears and reservations they might have.
In this…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Suggested Courses
Course of the Month2 days, 2 hours left to enroll
717 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.