cross-posted from: https://lemmy.ml/post/2956502

I have 15 VM’s running for clients and I’m looking for a way to keep the tools up to date without having to connect to each server and do it manually. A few examples are WinDirStat, Firefox, SSMS, Filelocator, etc.

We have expanded recently and I’m at the limits of doing this manually. These servers are not domain joined and are in separate virtual networks.

  • KingSlareXIV@infosec.pub
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    1 year ago

    We are using Tanium, just put the agent on the servers and you are good to go…build your packages and set up deployment jobs.

    It also handles Windows patching, and can do system inventory, among other features.

    It’s also great for software deployments to you remote workforce systems that are rarely/never on the corporate network.

    And seriously, you want a domain. GPOs are incredibly useful for pushing out a huge variety of Windows config changes extremely easily.

      • KingSlareXIV@infosec.pub
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        Tanium has some common apps pre-packaged and regularly updated, you could just setup an ongoing deployment for those to automate keeping them up to date with minimal work on your part.

        If you need to update something not on that list, you will need to make an upgrade package yourself with the updated installer or files.

        Whether this is actually easy or not really depends on the app vendor and the software. It’s usually straight forward, but not always. But that’s the case with literally any software deployment solution.

        I have one app in particular who’s install and config essentially un-automateable. But it’s a shitty LOB app that was written in the 90’s to be intentionally obtuse to prevent privacy, hopefully that’s not an issue in your case.