I'm looking to manage several standalone Kiosks that can be installed anywhere with internet access. The challenge is that I can't allow inbound connections for management purposes. They will be able to connect out, but I need a way to implement remote configuration and patch management for these endpoints without setting up a direct tunnel in. I considered using Tailscale on the endpoints, but I'm curious if there are simpler solutions available. Is there a tool like Ansible that can work with an agent to securely connect back for configuration? I'm thinking along the lines of how Intune or JAMF handle endpoint management for Windows and macOS. Any suggestions on reliable solutions that others have found effective?
7 Answers
Perhaps check out Azure Arc? While Intune does provide some support for Linux, it hasn't received great reviews. Azure Arc might offer better options for remote management, though I haven't had a chance to use it for that specific purpose yet.
Action1 is gearing up to launch Debian support next month, with RHEL on the horizon! They promise great patch and scripting support with an agent-based system. It looks similar to their Windows support and should be free for up to 200 installations.
Have you thought about using Wireguard together with Ansible? It could be a good combo to help manage those connections securely without needing a direct tunnel.
Definitely a solid choice! Any VPN would work, but I'm also a fan of Wireguard. Once you handle the connectivity, the rest of the setup becomes easier.
Anyone out there tried this setup already? Would love to hear experiences.
I’ve been looking into OpenVox, which is a fork of Puppet. In my experience, Intune for Linux is not really viable and doesn’t hold up well.
If you're looking for an alternative, NinjaOne is pretty solid for managing Linux as well, as long as there's an outbound connection available.
WAPT would be a great fit for your requirement. It's an agent-based tool that works well with Linux, macOS, and Windows.
Are you referring to the enterprise version here? It's hard to sift through all the information out there about WAPT.
Intune does have some support for Linux, but I've heard mixed reviews about how well it actually works. It's not the most user-friendly option out there.
Yeah, I've seen similar feedback—lots of licensing headaches and functionality quirks.
I’m open to suggestions if someone has practical experience with Azure Arc for remote management. Definitely looking for something user-friendly!