this post was submitted on 07 Aug 2023
11 points (82.4% liked)

Sysadmin

7645 readers
3 users here now

A community dedicated to the profession of IT Systems Administration

No generic Lemmy issue posts please! Posts about Lemmy belong in one of these communities:
!lemmy@lemmy.ml
!lemmyworld@lemmy.world
!lemmy_support@lemmy.ml
!support@lemmy.world

founded 1 year ago
MODERATORS
DarraignTheSane@lemmy.world
00Lemming@lemmy.world
L3s@lemmy.world
11
Software management for Windows Server (lemmy.ml)
submitted 1 year ago by InFerNo@lemmy.ml to c/sysadmin@lemmy.world
6 comments fedilink hide all child comments
 

cross-posted from: https://lemmy.ml/post/2956502

I have 15 VM's running for clients and I'm looking for a way to keep the tools up to date without having to connect to each server and do it manually. A few examples are WinDirStat, Firefox, SSMS, Filelocator, etc.

We have expanded recently and I'm at the limits of doing this manually. These servers are not domain joined and are in separate virtual networks.

top 6 comments
sorted by: hot top controversial new old
[–] PutangInaMo@lemmy.world 5 points 1 year ago (1 children)

Could use tools like ansible, chef, etc.

Why aren't they part of a domain?

[–] NocturnalEngineer@lemmy.world 5 points 1 year ago (1 children)

Even if they weren't, could use something like Chocolatey to automate updates, along with ansible, chef, etc.

[–] PutangInaMo@lemmy.world 1 points 1 year ago

Yeah for sure. From a security perspective s domain acts as a boundary though and when done correctly adds protection. 15 VMs all windows based would benefit from this and would add very little overhead.

[–] mrfwibble@lemm.ee 2 points 1 year ago

PDQ Deploy and Inventory. Simple and effective.

[–] possiblylinux127@lemmy.zip 1 points 1 year ago

Tactical RMM works well for me. You also can use ssh.

You will need a software manager such as Ruckzuck or scoop

[–] KingSlareXIV@infosec.pub 0 points 1 year ago* (last edited 1 year ago)

We are using Tanium, just put the agent on the servers and you are good to go...build your packages and set up deployment jobs.

It also handles Windows patching, and can do system inventory, among other features.

It's also great for software deployments to you remote workforce systems that are rarely/never on the corporate network.

And seriously, you want a domain. GPOs are incredibly useful for pushing out a huge variety of Windows config changes extremely easily.