Patch Management and Reporting with SimpleHelp

Complementary Tools
1

Hi all,

New SimpleHelp customer here. We bought it primarily as a secondary remote access tool in the event our primary app has a hiccup-- always nice to have another way in. Upon setup and use, it’s clear SH does a whole lot more than remote access. I’m finding myself defaulting to it as we really like the dashboard for an “at a glance” view of client machines and handy visuals like CPU and memory utilization.

That said, I searched the forums for patch management and reporting. I found these older posts, and curious in there have been any improvements since?

Is using ABC Update and Chocolaty still the primary go-to options if trying to keep patch management all within SH and not going with an “as a service” paid offering?

Any reporting capabilities that would pull a basic inventory with some general info like CPU model, amount of RAM, computername, friendly name, etc. by site/client? It looks like all the data is there, the amount of data in fact SH provides around end user machines is great.

Thanks for any feedback, we really like this-- patch management would be huge. If the best approach is still ABC Update/Chocolaty that’s fine… just checking since we’re just getting started and would like to go with best approach right out of the chute.

Thank any of you in advance for feedback!

1 Like
2

The machines I am under contract to take care of are windows domain machines. I use GPOS and WSUS, Powershell to handle windows patches.

For application patches I have started using SimpleHelp with RuckZuck https://ruckzuck.tools/
I have a simplehelp alert that runs a custom script. It checks if ruckzuck is installed or not. If not runs remediation to install it. Then ( not yet implemented. POC currently. ) runs an alert with custom script to check for updates. If updates/patches, run remediation to auto patch silently.

My customers under contract use BitDefender AV already. The basic gravityzone package they have already does risk assessment and shows what applications are out of date. It is a separate add-on cost if you want Bitdefender to patch third-party software. Pricing is not bad and I may move to that later. But for now what I have works. Example pricing: It varies depending on quantity and how many licenses you purchase, what vendor you use etc.https://www.insight.com/en_US/shop/product/2897ZZBEN120GLZZ/BITDEFENDER/2897ZZBEN120GLZZ/BitDefender-GravityZone-Patch-Management---subscription-license--1-year----1-license/

The toolboxes you listed above are also good options.

If you want more reporting capabilities, check out scancircle.https://www.scancircle.com/en
SimpleHelp integration here:
Integrate Scancircle with Simple Help. SC gives full stats

3

I have noticed that in alerts there is an option called “Operating System Updates” - I am nots sure what it does or can do?

4

It checks if the OS has updates. You can set an alert or remediation script.
It checks the OS be it, windows, mac, or linux.

5

For remediation, if you are using windows, you can use the OS updates trigger an alert then run a script to install the updates.
Here is a good for how to manage windows updates with powershell:
https://petri.com/how-to-manage-windows-update-using-powershell/

6

Thanks,

Are there built in scripts to resolve it?

7

No. Nothing built-in. Unless they added something recently I missed.

What you would do it create a toolbox, add tool, Type powershell script.
Then add something like the following but with your own search criteria.

Get-Command -Module WindowsUpdateProvider
$Updates = Start-WUScan -SearchCriteria “Type=‘Software’ AND IsInstalled=0”
Install-WUUpdates -Updates $Updates

Then on the alert, side add a trigger action. Action to take, run a toolbox tool. Then pick the tool you just made with script above. You can have multiple trigger actions. So you can set it to alert technician and run the tool.

image
image2172×390 19.8 KB

image
image2153×468 27.3 KB

1 Like
8

A year on and any updates on this especially with Windows 11?

9

I have found action1 which is free upto 100 devices and does patch Management

10

@Darrell_Swafford

Thank you for your help! :slight_smile:
OK, I have done the O/s alert notification, but I have set it to use ABC-Update.
ABC- Update runs and says 0 more updates, logging into the machine, shows all up to date, but still the alert shows? how can I fix this please?

also how can i set a prompt to get the user to restart please? is there a way to show a message?