Why SMBs need a standalone solution for Windows 10 patch management

I’m a frequent lurker on two popular online communities (the AskWoody Forums and the PatchManagement group on Google Groups), where legions of IT professionals frequently share their frustration and anger over the chaotic mess that patching Windows has become. Windows 10 is a terrific operating system in most aspects, but the quality assurance Microsoft has been displaying of late concerning the patches they’re releasing has been disappointing, to say the least. I’ve commented here on TechGenix about these patch management problems in the past and how to get a handle on some of them.

Then there’s also the matter of deploying the patches to the PCs that need them on your network. Here again, Microsoft’s solutions -- Windows Update (WU), Windows Update for Business using Microsoft Intune, Windows Server Update Services (WSUS) using Windows Server and optionally System Center Configuration Manager (SCCM) -- may be good enough for some customers, but not everyone is happy with them.

Several third-party solutions for patching Windows are also available, and some of these are pretty good. What’s mostly been lacking, though, is a solution that specifically targets small- to mid-sized business (SMB) customers and Managed Service Provider (MSP) partners who service them. A solution that can be implemented in standalone mode and is easy to use and administer. Pulseway Patch, patch management software that was previously available only as part of their Remote Monitoring and Management (RMM) solution, maybe just the ticket for doing this.

To find out more about this new offering, I recently had a chat with Marius Mihalec is a founder and CEO of Pulseway, a mobile-first IT management software company. Marius launched Pulseway with one simple but yet important mission: to build a modern, easy to use solution for IT management that can be accessed from any device, anywhere to help IT professionals be more proactive and efficient. Below is the text of my conversation with Marius.

MITCH: Hi, Marius, thanks for talking with me today.

MARIUS: My pleasure, Mitch.

MITCH: Let me start with a question that’s bothering many of us IT pros who support SMB infrastructures. Why do small and mid-sized businesses often have problems keeping their Windows machines properly patched?

MARIUS: We found that only 14 percent of organizations are using a patching solution at the moment, so it might come down to the fact that the patching process is often associated with complexity, and automated patching solutions are themselves associated with high price tags, so most SMBs and MMEs choose to do the process manually which of course as you can imagine can lead to data breaches and vulnerabilities in IT infrastructures, as it is easy to overlook or delay critical patches.

MITCH: Yikes! So why aren’t Microsoft’s solutions like Windows Update or Windows Update for Business sufficient for most SMBs’ patch management needs? What are they lacking?

MARIUS: Modern-day SMBs use a broad spectrum of third-party applications outside of Microsoft suite, whether it’s to communicate with their team, billing, programming, design, options for those applications would be limitless. That is why patch management software that can oversee all those missing patches both in Microsoft suite and third-party apps is necessary as all software has potential vulnerabilities.

Shutterstock

MITCH: What’s the advantage for SMBs of using a standalone patch management tool like Pulseway Patch instead of using one that’s integrated into a full systems management/monitoring platform?

MARIUS: We learned that only a handful of businesses have a fully integrated IT management platform (RMM) in place, and those who have one, can be stuck in a long-term contract with the IT management platform that simply does not perform patching capabilities the way it is supposed to do. In the first scenario, an SMB that is relatively small and does not have a full RMM suite in place can benefit from Pulseway Patch without breaking the bank and get access to enterprise-standard patch management software from as little as $0.50/mo per endpoint.

In the second case, SMBs or mid-market enterprises (MMEs) who either have a contractual obligation to an IT management software or simply find switching IT management platforms too much of a hassle can benefit from adding standalone patch management tools to tackle all their patching needs.

We found that only 14 percent of organizations are using a patching solution at the moment, so it might come down to the fact that the patching process is often associated with complexity, and automated patching solutions are themselves associated with high price tags,

MITCH: From conversations with my colleagues, it seems that a good percentage of patches that come out of Redmond have problems associated with them. Can using a solution like Pulseway Patch help mitigate the frustration IT pros feel about keeping Windows patched?

MARIUS: There are a couple of ways that Pulseway Patch can mitigate this frustration. Firstly, it lets customers define multiple patching policies. So, for example, you could have one policy that automatically installs a patch into a test environment early to detect any potential problems that those patches might cause to the environment. Once no issues are found, other policies can kick in later and distribute patches to the Production environment. You could also specify to run the first policy a week or two after Microsoft releases their latest updates to minimize any potential impact.

The second feature that helps is that we allow users to create global rules that prevent specific patches from being installed or control where they are to be applied, by overriding individual policies. This helps prevent installing patches with known issues and also ones that cause specific issues with your environment because as policies are being executed, a full log is generated. You can use this to identify patches that failed in the test environment and also add them to the global rules.

MITCH: Anything else you want to add on this subject before we close off?

MARIUS: With this launch, we have tried to communicate to SMBs and MMEs of all verticals two messages: patching is important and is now a necessity rather than a choice in the modern landscape of cyberattacks and, second, it does not have to be complicated and can be fully automated, which saves you time and money in the long run. In addition to the third-party apps we support out of the box, it is easy to add your custom titles so they can be managed in the same way.

MITCH: Thanks a lot, Marius, I’ll have to look further into this product!

MARIUS: You’re welcome as always, thanks.

Featured image: Shutterstock / TechGenix photo-illustration

Mitch Tulloch

Mitch Tulloch is Senior Editor of both WServerNews and FitITproNews and is a widely recognized expert on Windows Server and cloud technologies. He has written more than a thousand articles and has authored or been series editor for over 50 books for Microsoft Press and other publishers. Mitch has also been a twelve-time recipient of the Microsoft Most Valuable Professional (MVP) award in the technical category of Cloud and Datacenter Management. He currently runs an IT content development business in Winnipeg, Canada.

Share
Published by
Mitch Tulloch

Recent Posts

Microsoft 365 administration: Changes to auto-forwarding rules

Microsoft has changed the way to prevent auto-forwarding of email in Microsoft 365. Never fear…

1 hour ago

Understanding Azure Key Vault protections against deletion

IT admins are all good guys (and gals), we assume. But Capt. Destruction is not.…

6 hours ago

Kubecon 2020 roundup: Key highlights and announcements

The Kubernetes ecosystem is growing rapidly and the cloud-native community is constantly working on tools…

24 hours ago

Enabling Front Door managed certificates in Azure: Status update

If you are working on your infrastructure-as-code (IaC) and having a hard time configuring the…

1 day ago

Salesforce buys Slack to send message to Microsoft

Salesforce will buy Slack in a mega deal that gives the customer relationship software pioneer…

1 day ago

Contactless payments are hot, but are they secure?

The trend to contactless payments has accelerated as retailers and consumers adjust to COVID-19 realities.…

2 days ago