How it works
The power behind all BigFix functions is a unique, single-infrastructure approach that distributes decision-making out to the endpoints, providing extraordinary benefits across the entire solution family, with features that include:
BigFix places an intelligent agent on each endpoint to perform multiple functions, including continuous self- assessment and policy enforcement—with minimal impact on system performance.
The single, unified console built into BigFix orchestrates a high level of visibility that includes real-time and continuous reporting and analysis from the intelligent agent.
The scalable and lightweight BigFix architecture allows any agent to be configured as a relay between other agents and the console. This function enables the use of existing servers or workstations to transfer packages across the network, reducing the need for servers.
HCL Fixlet® Messages
The Fixlet Relevance Language is a published command language that enables users, business partners and developers to create custom policies and services for endpoints managed by BigFix solutions.
BigFix acquires, tests, packages and distributes many patch policies directly for users, removing considerable patch management overhead. This largely automated process provides a consistent, high-quality patch in a timely manner.
The BigFix intelligent agent continuously monitors and reports the endpoint status, including patch levels, to a management server. This intelligent agent also compares endpoint compliance against defined policies, such as mandatory patch levels.
An organization can quickly create a report showing which endpoints need updates and then distribute those updates to the endpoints within minutes. IT administrators can safely and rapidly patch Windows, Linux, UNIX and Mac operating systems with no domain-specific knowledge or expertise, and the solution stores audit information that tracks who ordered which updates to be applied to which endpoints.
Once a patch is deployed, BigFix automatically reassesses the endpoint status to confirm successful installation and immediately updates the management server in real time. This step is critical in supporting compliance requirements, which require definitive proof of patch installation. With this solution, operators can watch the patch deployment process in real time via a centralized management console to receive installation confirmation within minutes of initiating the patch process. By closing the loop on patch times, organizations can ensure patch compliance in a way that is smarter and faster.
The BigFix intelligent agent provides continuous endpoint enforcement and ensures that endpoints remain updated. If a patch is uninstalled for any reason, the agent can be configured to automatically reapply it to the endpoint as needed.
Integrated web reporting capabilities allow end users, administrators, executives, management and others to view dashboards and receive up-to- the- minute reports. Dashboards and reports indicate which patches were deployed, when they were deployed, who deployed them, and to which endpoints. Special “click-through” dashboards show patch management progress in real time.