I'm wondering if anyone has transitioned away from SCCM for patch management (for both Windows and third-party apps). If you've made the switch, what did you switch to and why? I'm especially interested in feedback from those working in tightly controlled environments where patches are only applied on specific days and times. Thanks for your input!
2 Answers
We decided to go with Tanium because we were dealing with a lot of client health issues and wanted better visibility on our endpoints. Even though we had some challenges with VPN and cloud management, overall, I'm quite satisfied with Tanium, especially since it provides vulnerability data alongside patching.
We've switched to Autopatch for Windows and use PatchMyPc for third-party apps through Intune. It simplifies the patch management process, especially for the apps we support.
I've heard mixed things about the Tanium agent causing performance issues on machines. Have you faced any of those challenges?