Manage and secure your endpoints in hybrid environments with ManageEngine Endpoint Central

• Author
• Recent Posts

Brandon Lee

Brandon Lee has been in the IT industry 15+ years and focuses on networking and virtualization. He contributes to the community through various blog posts and technical documentation primarily at Virtualizationhowto.com.

Latest posts by Brandon Lee (see all)

• ManageEngine OpManager: Comprehensive monitoring for on-prem, cloud, and containers - Thu, Mar 23 2023
• Install K3s, a lightweight, production-grade Kubernetes distro - Mon, Mar 20 2023
• VMware NSX Advanced Load Balancer: Installation and configuration - Fri, Mar 10 2023

One of the most labor-intensive tasks for IT ops and the sysadmin is managing endpoints. Endpoint management is highly tedious and time-consuming, including patching, updates, and other activities. However, using the right tools, these tasks can be triggered using automation, easing the burden on the sysadmin.

What is ManageEngine Endpoint Central?

Endpoint Central is a solution from ManageEngine that provides unified endpoint management (UEM) and security features, allowing IT administrators to carry out endpoint management tasks.

For hybrid workforce environments and disaggregated and distributed infrastructure, Endpoint Central is a network-neutral architecture. It allows admins to manage endpoints across local area networks (LAN), wide area networks (WAN), demilitarized zone (DMZ) endpoints, and closed network environments.

It also allows managing endpoints in different network environments, including Active Directory, Novell eDirectory, and Windows Workgroups. So, it provides versatile management of dissimilar infrastructure, allowing flexibility for management scenarios.

Endpoint Central aligns with compliance frameworks, including GDPR, PCI, CIS, ISO, VPAT, HIPAA, and RBI, for organizations that must adhere to specific compliance requirements.

With Endpoint Central, admins also have access to an Endpoint Central mobile app that allows managing endpoints from anywhere in the world. Using the app, admins can deploy critical patches, create software and hardware reports, and launch remote control sessions to endpoints in the network. There is even a voice recognition assistant in Endpoint Central that allows carrying out tasks using voice commands.

Central features

Note the following features provided by ManageEngine Endpoint Central:

• Patch management—The patch management features of Endpoint Central allow automating patch deployments related to operating system patches and third-party applications. It can patch both Windows and Mac computers.
• Software deployment—You can deploy software installations with built-in templates for creating software deployment packages.
• Remote Desktop Sharing—Admins can connect with Remote Desktop Sharing to "see what the user sees" and help troubleshoot issues.
• IT Asset Management—IT asset management is crucial, especially as infrastructure becomes more hybrid and disaggregated. With Endpoint Central, admins can see software and hardware assets, even security-related information, such as prohibited software.
• Desktop configurations—With Endpoint Central, you can configure some 50+ predefined desktop configurations for endpoints, including power management options and security policies.
• Service pack installation—Find missing service packs and install them for operating systems and applications in an automated way.
• Active Directory reports—Endpoint Central offers 100+ reports out of the box that provide visibility into Active Directory infrastructure.
• User administration—Endpoint Central provides role-based management of the Endpoint Central solution.
• OS deployment—Endpoint Central provides the ability to deploy operating systems in both online and offline modes. This feature allows admins to take care of the organization's imaging needs across the board.
• USB device management—USB devices can be a critical security vulnerability. Endpoint Central allows controlling the usage of USB devices at both the user level and the machine level.
• Power management—You can apply power management schemes, shut down inactive computers, and query systems for uptime reports.
• Mobile App—Admins have access to a mobile app to run and manage endpoints from anywhere.

Installation

ManageEngine offers flexibility in the deployment of Endpoint Central. Organizations can self-host their Endpoint Central installation or choose the cloud edition, a Software-as-a-Service (SaaS) implementation. It is great to have the option to provide the solution via SaaS or on-premises if that still aligns best with the organization's infrastructure deployments.

Sign up for cloud or on premises version of Endpoint Central

Getting started with agents

Endpoint Central works according to the concept of agent-based management and control of endpoints. This architecture aligns with most modern cloud-based management platforms, allowing managed endpoints to exist on any network or location. As long as they have network connectivity to the Internet, they can be managed accordingly.

Pulling up the Endpoint Central console will display the Getting Started page with simple steps to get agents onboarded into Endpoint Central.

Overview of the agent onboarding process and desktop management

The first step in onboarding an endpoint is downloading the agent from Endpoint Central. When you navigate to Views > Computers, you will see the instruction to Download Agent.

Download agent for a managed endpoint

Select the Remote Office you want to associate the agent with and then select the platform for your agent. Once you have those things selected, click Download Agent.

Downloading the agent for the remote office and platform

Once the agent is installed, go to the Approval Page in Endpoint Central.

Informational note on approving endpoints

Now, let's install the agent on an endpoint.

Installing the Endpoint Central agent

The Endpoint Central agent is installed with a simple "next, next, finish" process.

Beginning the installation of the Endpoint Central agent

After installing the agent package, click Close to finish the installation.

Finishing the installation of the Endpoint Central agent

Once the Endpoint Central agent installation is complete, the agent will start running an inventory of the software, hardware, etc.

Approving the Endpoint Central agent

If you navigate to the Scope of Management > Computers > Waiting for approval dashboard, you will see the newly added agent. Place a check next to the endpoint, and select Approve.

New agent endpoint displaying in the console ready for approval

Once approved, the computer will move from Waiting for approval to Managed Computers. The Agent Status column will show Install Succeeded.

The agent now displays in the managed computers

Viewing software, hardware, patches, and reporting

Now that we have the Endpoint Central agent installed on an endpoint, Endpoint Central runs an inventory of the software, hardware, patching, etc. The Views > Software dashboard displays the software discovered during the endpoint inventory. As you can see, you get detailed information, including the name, version, manufacturer, license type, category, etc.

Viewing software inventory using Endpoint Central

With the Views > Hardware dashboard, you can see a detailed view of the hardware configuration of the endpoint.

Viewing the hardware inventory of an Endpoint Central endpoint

After the inventory, we can browse to the Patch Mgmt dashboard and see Installed Patches and Missing Patches.

Missing patches overview screen in Endpoint Central

The patch information is clickable so you can click the missing patches to view their information quickly.

Viewing missing patches in Endpoint Central

Under the Tools tab, Endpoint Central has several available tools, including remote control, shutdown, Wake On LAN, etc.

Viewing the tools available in Endpoint Central

Under Reports, you will see the available reports, including User-defined Reports and Other Reports. For example, I have clicked on the Patch Reports below. You can also get detailed reporting on missing patches across your endpoints, etc.

Viewing Endpoint Central reports

You can easily deploy software to endpoints using the Software Deployment > Templates screen. Endpoint Central includes many templates out of the box for various endpoints.

Software Deployment dashboard with templates

You can also easily deploy operating systems with Endpoint Central. You can create images, customize deployments, create deployment tasks and image repositories, and add additional applications, licensing, etc.

Looking at the OS deployment screen in Endpoint Central

Wrapping up

ManageEngine Endpoint Central is an excellent solution that provides administrators with the tools and automation needed to control endpoints effectively. ManageEngine also allows organizations to deploy Endpoint Central as a SaaS installation or on-premises in their self-hosted data center. It enables businesses to choose the best deployment option with their current infrastructure and compliance strategies.

With new hybrid work strategies, Endpoint Central helps businesses bolster hybrid remote work configurations, disaggregated infrastructure, and multiple network locations spread across the Internet. To explore more in-depth features and see how Endpoint Central can fit your business needs, you can request a one-on-one session with their product experts.