Solved

Looking for an automated Linux patching solution for RHEL and Ubuntu

Posted on 2015-01-07
6
149 Views
Last Modified: 2015-10-26
We have around 100 Linux servers here 90% virtual in VMware and about 50 Ubuntu, 25 RHEL 5 & 6, 12 CentOS and a few other stray items like a Solaris box etc.

We are looking for some type of an automated patch management product for these - ideally one that can handle all the various OS types - and hopefully not Tivoli due to cost and complexity to maintain.

What's out there either OpenSource or commercial that's good & reliable but not a huge time sink to keep running?? We need to be PCI compliant and doing this by hand is obviously terribly time and resource intensive. We DON'T want to go the automated OS patching route unless we can control what gets patched and when without touching every box (once on setup I one thing but to continually revisit each server is another).

Thanks,
George Kasica
Sr. Systems Administrator
Connecture.com
Brookfield WI
0
Comment
Question by:George R. Kasica
  • 3
  • 2
6 Comments
 
LVL 16

Expert Comment

by:Joseph Gan
ID: 40536536
For RHEL servers patching you can use Red Hat Satellite management tool.
0
 
LVL 16

Expert Comment

by:Joseph Gan
ID: 40536539
There is an open source of Satellite called Spacewalk, which could support for CentOS as well.
0
 

Author Comment

by:George R. Kasica
ID: 40536545
OK. I've seen that as well as Chef and one called puppet but know nothing of any of them. I'll take a look
+
0
Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

 

Author Comment

by:George R. Kasica
ID: 40536557
It doesn't look like Satellite will do the Ubuntu servers which are the largest portion of what we have and most of our production servers.
0
 
LVL 7

Accepted Solution

by:
Phil Davidson earned 500 total points
ID: 41124509
You could use Puppet or Chef.  

If you don't want to implement a CM tool, you could have an internal server for the Ubuntu updates and update the /etc/apt/sources.list files on the servers, and a RedHat satellite server internally for the RedHat server patches.  You could have cron jobs to run apt-get install on Ubuntu and yum on RedHat servers.
0
 

Author Closing Comment

by:George R. Kasica
ID: 41124566
We initially went with the internal repository and modifying the sources files but finally given the low cost on the Ubuntu and that it comes with 24/7 support as well we're using their landscape product. All but 6 of our servers are Ubuntu so the 6 centOS are manageable manually and getting converted over as well so it will soon be a non issue. Thank you for to reply we were looking at both chef and puppet.
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Site-to-Site VPN OpenSWAN in AWS VPC to a Sonicwall 5 69
Install MySQL 5.6 and PHP on Centos Linux 6 103
Virtualizing very old guest OS 4 80
Linux hostname change 2 56
SSH (Secure Shell) - Tips and Tricks As you all know SSH(Secure Shell) is a network protocol, which we use to access/transfer files securely between two networked devices. SSH was actually designed as a replacement for insecure protocols that sen…
I. Introduction There's an interesting discussion going on now in an Experts Exchange Group — Attachments with no extension (http://www.experts-exchange.com/discussions/210281/Attachments-with-no-extension.html). This reminded me of questions tha…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now