What's your favorite patch management software?

Sheriff-Andy · 2019-11-20T19:45:07.000Z

I’ve been shopping around a bit to replace WSUS and have kicked the tires on a few products but I’m not really settled on a particular patch management software. What’s your favorite? I need it to handle 3rd party updates also.

overdrive · 2019-11-20T19:48:59.000Z

PDQ+WSUS+ WSUS Automated Maintenance (WAM) ©

mikechoices1397 · 2019-11-20T19:49:36.000Z

I’ve been looking into Bitdefender’s solution. Bitdefender GravityZone Integrated Patch Management

Waiting on a demo. Looks nice. Does Microsoft and 3rd party.

GDaddy · 2019-11-20T19:52:44.000Z

PDQ and WSUS as Adam says, have not seen the combination beat for the price. Would like to do the WAM part, but waiting for boss and budget

titusovermyer · 2019-11-20T20:01:42.000Z

I think PDQ is great for 3rd party patching. It also does Cumulatives if you want, but I would still use WSUS.

bryandoe · 2019-11-20T20:15:17.000Z

Why replace WSUS since it’s free? That plus WSUS Package Publisher does what I want.

If the systems are typically out of the office, that’s a different story. I let those go to Microsoft for updates, but am browsing a bit for third party stuff.

peter-avast · 2019-11-20T20:16:38.000Z

We recently rolled out our Patch Management solution as an add-on to our Avast Business endpoint security solutions — so if you are already using our managed console for your AV deployment, it would be easy to test out. It’s compatible with Windows devices and also supports 3rd party software, so it meets those requirements for you. (Here’s the whole list of supported software)

Otherwise, you can get a trial of both at no cost to evaluate , and we’d love to hear what you think.

One final thought, too — do you have any other requirements, either critical or “features that would be awesome to have?” e.g., scanning for missing patches easily, deployment from a local device as an agent, rollback/ignore, etc.?

@andrewbaxter2

nic-automox · 2019-11-20T21:43:33.000Z

I really like the free tool Action1. Action1 can deploy software , execute Windows update, install patches etc. This solution works from the cloud, so you can perform all actions on all your PCs even on remote laptops which isn’t connected to the corporate network all time (vpn users).

cmdlette · 2019-11-20T22:29:36.000Z

Another vote for PDQ from me. It’s really hard to beat $1000 per year per admin for both of their excellent products.

gerardbeekmans · 2019-11-20T22:52:36.000Z

I use BatchPatch, along with WSUS. It comes in handy to trigger windows updates in controlled circumstances when you can’t wait for a GPO to take care of it automatically (due to timing constraints like users giving a small window of time to take care of updates and reboots).

In addition it provides an easy way to run your custom scripts as well (which have nothing to do with Windows Updates) like triggering all computers in an environment to run an immediate gpupdate for faster results after changes were made. The sky is the limit. The price is just right.

spiceuser-axzzr · 2019-11-20T23:28:04.000Z

cmdlette:

Another vote for PDQ from me. It’s really hard to beat $1000 per year per admin for both of their excellent products.

Second on PDQ!

Also, I didn’t know that Mayberry had computers… I figure Barney would go into shock seeing what they can do.

rebelscum · 2019-11-21T00:41:17.000Z

We use Patch Management in ManageEngine’s Desktop Central product. It does an excellent job. If you don’t need full UEM, they have the patch management available on its own

peter-action1 · 2019-11-21T05:58:08.000Z

Our free cloud-based software Action1 executes security patch management , such as an option to deploy security patches on selected systems, install Windows updates and more.

msm1000 · 2019-11-21T08:40:10.000Z

Also using PDQ Deploy and PDQ Inventory along with WSUS.

boyejoayo · 2019-11-21T09:21:57.000Z

Chocolatey

inkmaster · 2019-11-21T10:53:14.000Z

We moved patch management away from WSUS earlier this year to Patch Manager Plus by Manage Engine.It handles all of our WIndows and 3rd party updates for on-prem and remote users without the VPN requirement.

gavins38 · 2019-11-21T10:59:00.000Z

Another thumbs up for Desktop Central. Been using it for a while and it works well for Windows and third party updates.

bianca-heimdal · 2019-11-21T11:08:48.000Z

Check out X-Ploit Resilience . It covers Microsoft updates and 3rd party patching.

richardhenry3 · 2019-11-21T12:49:40.000Z

PDQ is pretty awesome for in house stuff. We added NinjaRMM to the the mix last year to get a better handle on our environment as we have a lot of users that travel often. WSUS doesn’t help much in that case coupled with their terrible interface. So far testing of Ninja to handle Windows updates has gone rather well and allows it to work for people that never touch our network as well.

Nick-C · 2019-11-21T12:50:58.000Z

SCCM - it’s a beast and does way more than just patch management but it is getting lots of love from MS lately (and SCCM licenses now get you intune for free).

If you have been buying the M365 E3 license pack then you already have licenses for all your desktops as SCCM is included here.