- Docker logs tail: Troubleshoot Docker containers with real-time logging - Wed, Sep 13 2023
- dsregcmd: Troubleshoot and manage Azure Active Directory (Microsoft Entra ID) joined devices - Thu, Aug 31 2023
- Ten sed command examples - Wed, Aug 23 2023
One of the most labor-intensive tasks for IT ops and the sysadmin is managing endpoints. Endpoint management is highly tedious and time-consuming, including patching, updates, and other activities. However, using the right tools, these tasks can be triggered using automation, easing the burden on the sysadmin.
What is ManageEngine Endpoint Central?
Endpoint Central is a solution from ManageEngine that provides unified endpoint management (UEM) and security features, allowing IT administrators to carry out endpoint management tasks.
For hybrid workforce environments and disaggregated and distributed infrastructure, Endpoint Central is a network-neutral architecture. It allows admins to manage endpoints across local area networks (LAN), wide area networks (WAN), demilitarized zone (DMZ) endpoints, and closed network environments.
It also allows managing endpoints in different network environments, including Active Directory, Novell eDirectory, and Windows Workgroups. So, it provides versatile management of dissimilar infrastructure, allowing flexibility for management scenarios.
Endpoint Central aligns with compliance frameworks, including GDPR, PCI, CIS, ISO, VPAT, HIPAA, and RBI, for organizations that must adhere to specific compliance requirements.
With Endpoint Central, admins also have access to an Endpoint Central mobile app that allows managing endpoints from anywhere in the world. Using the app, admins can deploy critical patches, create software and hardware reports, and launch remote control sessions to endpoints in the network. There is even a voice recognition assistant in Endpoint Central that allows carrying out tasks using voice commands.
Central features
Note the following features provided by ManageEngine Endpoint Central:
- Patch management—The patch management features of Endpoint Central allow automating patch deployments related to operating system patches and third-party applications. It can patch both Windows and Mac computers.
- Software deployment—You can deploy software installations with built-in templates for creating software deployment packages.
- Remote Desktop Sharing—Admins can connect with Remote Desktop Sharing to "see what the user sees" and help troubleshoot issues.
- IT Asset Management—IT asset management is crucial, especially as infrastructure becomes more hybrid and disaggregated. With Endpoint Central, admins can see software and hardware assets, even security-related information, such as prohibited software.
- Desktop configurations—With Endpoint Central, you can configure some 50+ predefined desktop configurations for endpoints, including power management options and security policies.
- Service pack installation—Find missing service packs and install them for operating systems and applications in an automated way.
- Active Directory reports—Endpoint Central offers 100+ reports out of the box that provide visibility into Active Directory infrastructure.
- User administration—Endpoint Central provides role-based management of the Endpoint Central solution.
- OS deployment—Endpoint Central provides the ability to deploy operating systems in both online and offline modes. This feature allows admins to take care of the organization's imaging needs across the board.
- USB device management—USB devices can be a critical security vulnerability. Endpoint Central allows controlling the usage of USB devices at both the user level and the machine level.
- Power management—You can apply power management schemes, shut down inactive computers, and query systems for uptime reports.
- Mobile App—Admins have access to a mobile app to run and manage endpoints from anywhere.
Installation
ManageEngine offers flexibility in the deployment of Endpoint Central. Organizations can self-host their Endpoint Central installation or choose the cloud edition, a Software-as-a-Service (SaaS) implementation. It is great to have the option to provide the solution via SaaS or on-premises if that still aligns best with the organization's infrastructure deployments.
Getting started with agents
Endpoint Central works according to the concept of agent-based management and control of endpoints. This architecture aligns with most modern cloud-based management platforms, allowing managed endpoints to exist on any network or location. As long as they have network connectivity to the Internet, they can be managed accordingly.
Pulling up the Endpoint Central console will display the Getting Started page with simple steps to get agents onboarded into Endpoint Central.
The first step in onboarding an endpoint is downloading the agent from Endpoint Central. When you navigate to Views > Computers, you will see the instruction to Download Agent.
Select the Remote Office you want to associate the agent with and then select the platform for your agent. Once you have those things selected, click Download Agent.
Once the agent is installed, go to the Approval Page in Endpoint Central.
Now, let's install the agent on an endpoint.
Installing the Endpoint Central agent
The Endpoint Central agent is installed with a simple "next, next, finish" process.
After installing the agent package, click Close to finish the installation.
Once the Endpoint Central agent installation is complete, the agent will start running an inventory of the software, hardware, etc.
Approving the Endpoint Central agent
If you navigate to the Scope of Management > Computers > Waiting for approval dashboard, you will see the newly added agent. Place a check next to the endpoint, and select Approve.
Once approved, the computer will move from Waiting for approval to Managed Computers. The Agent Status column will show Install Succeeded.
Viewing software, hardware, patches, and reporting
Now that we have the Endpoint Central agent installed on an endpoint, Endpoint Central runs an inventory of the software, hardware, patching, etc. The Views > Software dashboard displays the software discovered during the endpoint inventory. As you can see, you get detailed information, including the name, version, manufacturer, license type, category, etc.
With the Views > Hardware dashboard, you can see a detailed view of the hardware configuration of the endpoint.
After the inventory, we can browse to the Patch Mgmt dashboard and see Installed Patches and Missing Patches.
The patch information is clickable so you can click the missing patches to view their information quickly.
Under the Tools tab, Endpoint Central has several available tools, including remote control, shutdown, Wake On LAN, etc.
Under Reports, you will see the available reports, including User-defined Reports and Other Reports. For example, I have clicked on the Patch Reports below. You can also get detailed reporting on missing patches across your endpoints, etc.
You can easily deploy software to endpoints using the Software Deployment > Templates screen. Endpoint Central includes many templates out of the box for various endpoints.
You can also easily deploy operating systems with Endpoint Central. You can create images, customize deployments, create deployment tasks and image repositories, and add additional applications, licensing, etc.
Wrapping up
ManageEngine Endpoint Central is an excellent solution that provides administrators with the tools and automation needed to control endpoints effectively. ManageEngine also allows organizations to deploy Endpoint Central as a SaaS installation or on-premises in their self-hosted data center. It enables businesses to choose the best deployment option with their current infrastructure and compliance strategies.
Subscribe to 4sysops newsletter!
With new hybrid work strategies, Endpoint Central helps businesses bolster hybrid remote work configurations, disaggregated infrastructure, and multiple network locations spread across the Internet. To explore more in-depth features and see how Endpoint Central can fit your business needs, you can request a one-on-one session with their product experts.