Of course there's a larger problem, none of which is within my control.
They've been screwing around with SCCM for several years, including using MS (Premier?) consulting. Now they're trying to get 2012 to work. Not worth the effort at this point. From: Rod Trent [mailto:rodtr...@myitforum.com] Sent: Thursday, January 17, 2013 10:29 AM To: NT System Admin Issues Subject: RE: Patch management recommendations Well, there's a larger problem then that needs to be addressed. These things should be automated. Patching using ConfigMgr is not that tough, and getting it to work right is not that tough, either. Maybe offer your help to get it working. It'll save you a lot of time and ensure that your endpoints are secure today, instead of having to wait for you to get around to each PC. All of those maintenance tasks and PC reviews can be automated, too. From: Ray [mailto:rz...@qwest.net] Sent: Thursday, January 17, 2013 12:15 PM To: NT System Admin Issues Subject: RE: Patch management recommendations Completely false as I'm doing it now and did it in my previous 2 jobs. If I had to wait for my domain admins to finally get it to work right we'd have been several hundred patches behind. The additional advantage, since I'm not in a nice pristine homogenous environment, is a hands on review of what's on the PC, do some maintenance, etc. From: Rod Trent [mailto:rodtr...@myitforum.com] Sent: Thursday, January 17, 2013 8:21 AM To: NT System Admin Issues Subject: RE: Patch management recommendations Fixed that for you... -----Original Message----- From: Ray [mailto:rz...@qwest.net] Sent: Thursday, January 17, 2013 9:53 AM To: NT System Admin Issues Subject: RE: Patch management recommendations In Kingman? Wow. Anyway, AZ Dept of Corrections tries to use SCCM. I'd say it's been a failure for many reasons. I work for basically an ADC subnet, and I try to manually touch every machine (about 200) on a regular basis. Obviously that's not practical for everyone anyone. -----Original Message----- From: Charlie Kaiser [ <mailto:charl...@golden-eagle.org> mailto:charl...@golden-eagle.org] Sent: Wednesday, January 16, 2013 4:03 PM To: NT System Admin Issues Subject: Patch management recommendations I work for a consulting firm that manages a variety of SMB clients. As we increase our client load and the size of the clients (moving from the 3-10 seat to the 50-1000 seat clients) we are implementing more advanced products for a variety of tasks. We are currently looking at patch management solutions. Our current paradigm is a mix of WSUS and manual intervention, but it's not enough, obviously. I haven't used a centralized patch management system for around 5-6 years (used to use early versions of Shavlik) so I haven't been keeping up with the market. We're now looking for something that does 3rd party apps, not just MS stuff, so WSUS is off the table. Our clients are all on MS platforms, though; almost no *nix or Apple. I don't envision a one-size-fits-all product. I expect that we'll want a variety of solutions tailored to the size and complexity of the client. And I have no illusions about the "ease" of patch management given any product. :-) My boss would love an MSP-style of centrally managed product that can handle all our clients, but my belief is that trying to go that route is much more difficult than doing per-client implementations, especially without dedicated patch management admins. Having said all that, is anyone working with patch management systems that they really like for this space? Also, any you really DON'T like? Thanks! *********************** Charlie Kaiser <mailto:charl...@golden-eagle.org> charl...@golden-eagle.org Kingman, AZ *********************** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ < <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: <http://lyris.sunbelt-software.com/read/my_forums/> http://lyris.sunbelt-software.com/read/my_forums/ or send an email to <mailto:listmana...@lyris.sunbeltsoftware.com> listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ < <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: <http://lyris.sunbelt-software.com/read/my_forums/> http://lyris.sunbelt-software.com/read/my_forums/ or send an email to <mailto:listmana...@lyris.sunbeltsoftware.com> listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
