I'm looking for advice and information on how to effectively manage Linux systems in a corporate setting. I've primarily worked with Windows and some macOS/iOS/Android in roles involving imaging, app management, patch management, and security configurations using tools like SCCM and Intune across various sizes of companies. Now, some of my clients want to start testing Linux as an operating system for their workforce. They need solutions to ensure the Linux clients are secure, manageable, and suitable for employees.
I'm considering distributions like Ubuntu or Fedora Workstation/KDE based on my experience. I'm curious about what tools and management solutions you recommend for overseeing Linux clients, especially since some clients want to transition back to on-premises management while others prefer to keep certain services in the cloud. Any tips on starting this process would be greatly appreciated!
5 Answers
Transitioning to Linux for your clients doesn't mean everything changes drastically. Just ensure your patch management solution is compatible with the Linux OS you choose. You’ll also need a solid antivirus and endpoint detection response. Ansible will definitely be useful for configurations and updates. And don't forget about user experience; something akin to an app finder similar to macOS could improve usability when implementing Linux. Also, check compatibility of any ERP systems your clients may depend on.
Ansible is a great option for managing Linux systems. It allows you to handle software installations and script deployments efficiently, although it can have a bit of a learning curve. For remote support, consider using RustDesk or VNC, especially within LAN environments. Setting up centralized identity management can be tricky, but FreeIPA is a solid choice if you want to go that route. Just keep in mind that scaling can be a bit of a challenge, as devices typically need manual setup.
You mentioned AD integration not being pretty - what’s the real experience with that? I've got a lot of systems joined to AD and it works fine for me!
Consider using immutable distributions like Fedora Silverblue for better reliability and security. They help standardize deployments and could simplify management significantly. Also, don't overlook Salt and other configuration management tools alongside Ansible for versatility in deployment.
For an RMM solution, Endpoint Central has comprehensive management support for Linux environments. Additionally, checking out Hexnode for UEM could be beneficial for managing Linux devices efficiently.
While NinjaRMM has Linux support, it isn't always reliable. It tends to attempt installations that may not be necessary, especially on headless machines. For better remote access solutions, I've had good experiences with MeshCentral, which also supports multiple OS types.
I've heard that FreeIPA can scale well, but the manual setup requirement for new devices can be cumbersome, unlike the automated processes on Windows.