Submit a ticketCall us

Quickly Address Software Vulnerabilities
Patch Manager is an intuitive patch management software which extends the capabilities of WSUS and SCCM to not only patch Windows® servers and workstations, and Microsoft® applications, but also other 3rd-party applications which are commonly exploited by hackers. Learn more about our patch management solution.

 

Home > Success Center > Patch Manager > Patch Manager 2.1.5 Administrator Guide > Wake on LAN > Placing the Patch Manager Servers

Placing the Patch Manager Servers

Created by Caroline Juszczak, last modified by MindTouch on Jun 23, 2016

Views: 25 Votes: 0 Revisions: 3

Use multiple Patch Manager servers to facilitate load balancing, fault tolerance, or the needs imposed by geographic distribution or securities boundaries within an enterprise. When you deploy multiple Patch Manager servers, consider the following as you design your deployment strategy.

Physical Location

In geographically distributed environments, deploy an additional Automation role server to each remote site. In this way, you enable these additional servers to facilitate client management and configuration processes on the local LAN of the target systems, instead of across the WAN.

Similarly, deploy additional Management role servers to each site to segregate management and data collection tasks as needed. Management role servers can also work in conjunction with the additional Application role servers to support remote system administrators.

Enterprise Size

In large environments with multiple subnets or large inventory requirements, deploy additional Application and/or Management role servers to optimize the Patch Manager environment. Use additional Application role servers to support multiple administration consoles. Use additional Management role servers to create smaller management groups for administration and reporting.

Wake-on-LAN

In environments that utilize Wake-on-LAN (WOL), deploy additional Automation role servers to facilitate WOL broadcasts for distributed systems. This helps administrators avoid the need to configure routers to support this functionality. It also increases the overall reliability by restricting WOL broadcasts to smaller, LAN-specific network domains.

Port Considerations and Bandwidth Restrictions

In environments with open-port or bandwidth concerns, deploy additional Automation and/or Management role servers to limit these requirements. Use additional Application role servers to limit WAN communication to a single port: 4092, the port used for server-to-server communication. With an Automation role server on each LAN, the other ports required in the Patch Manager environment only have to be open on each LAN.

Similarly, use additional Management role servers to limit the amount of traffic travelling across the WAN. With a Management role server on each LAN, inventory data only has to cross the WAN if a Patch Manager administrator runs a report for that LAN from a remote site.

Last modified
01:13, 23 Jun 2016

Tags

Classifications

Public