Feeds

Lights out management - still waiting for the bulb to glow

Go vertical or go home

  • alert
  • submit to reddit

Application security programs and practises

My extant APC infrastructure is definitely looking like the limiting factor on my ability to build a simple and low-cost LOM for my network. If I want to manipulate any of my APC gear, it looks like my only simple options are SSH or being stuck using the web interface. Anything else is SNMP. SNMP leads me into the second stage of this quest: finding a centralised management tool to run my LOM setup. The problem I run right into here is that, so far as I know, there are absolutely no tools out there dedicated strictly to LOM. Every piece of software I can find that incorporates LOM capabilities is backed onto a much larger desktop management application. What’s worse, the LOM capabilities are often treated as an afterthought; the applications focus far more heavily on monitoring or application/operating system deployment.

Desktop management is obviously a sector that a lot of companies hope to make an absolute killing on. (This is amusing, given the steady rise of VDI.) The information available from most commercial desktop managers has many buzzwords and happy, fluffy phrases that say absolutely nothing of value. The only signal you can extract from the noise is that you are getting exactly nowhere until you talk to a sales rep.

As the worst offender, I point the finger at Symantec on this. I know for a fact that their Altiris gear can do everything I need it to do, but what products exactly I need, and how much I will be paying for the privilege were impossible to determine. I could spend an entire day looking over that website trying to extract usable information, but after about 45 minutes I gave up and relegated Symantec back to the “thanks but no thanks” category for the next five years. Provide information without the requirement of salespeople or I will simply move on, thank you.

As a notable contrast, Dell’s KACE website was fabulous. I could quickly and easily find every scrap of information I wanted, and they even had a “chat with a live pre-sales rep” button. This connected me with some wetware able to quickly and easily answer my questions, for which I must admit to being mightily impressed. A little bit of snooping around the website reveals that they apparently offer an enormous range of desktop management and desktop deployment toys that I now covet. Sadly, all the cool toys I want are spread out over multiple different appliances and they are simply priced out of reach.

Equally disappointing was that while these KACE appliances do support the WOL I need for this project, they support neither my APC gear, nor vPro. Still, they get kudos for an excellent website that was simply head and shoulders above the clouds of obfuscation offered by the competition. The place of honour for the open source centralised monitoring and management crowd is split for me between Nagios and Zenoss. They are both absolutely fantastic network monitoring tools, and they will stunningly actually talk to my APC equipment. Sadly, while you can use either product to built alert or event triggers to try to make your network more self-healing, neither offers much in the way of default options or templates for this.

Furthermore, they don’t incorporate WOL (unless you use an external executable and an event script you write yourself), and there is simply no way to integrate any remote access tools. Whether it be vPro, VNC, RDP or Teamviewer, there is simply no integration of remote control facilities in these products. Both are spectacular at telling you when something has gone wrong, they simply have little emphasis on do anything about it. Sadly it looks as though if I want to go open source, I’m having to use alternate tools to do the actual out of band management portion, placing the open source tools firmly outside the realm of practicability for s project dedicated to LOM.

This brings me to Microsoft’s System Center suite of applications. Configuration Manager (SCCM), Operations Manager (SCOM), Data Protection Manager (SCDPM), Service Manager (SSSM), Virtual Machine Manager (SCVMM) and Essentials (SCE). There is also Opalis in this family, but I’ll admit to knowing absolutely nothing about that one. All Systems Center applications naturally bear a cost for the server software, as well as CALs for each machine. (Anyone getting the feeling that Microsoft really wants to charge you a lot to manage you servers?) Of the System Center suite, three applications can integrate with vPro, and are probably the most common applications in use to do so today.

SCCM has been quoted to me several times as the answer to nearly every desktop or server management problem I could imagine. A few days after I’d gotten over the fairly sharp learning curve, I am reluctantly beginning to agree. The cost is fairly high (especially for server management licences) and it isn’t winning any cross platform awards, but it does do a fairly good job of helping you manage your network. As you might expect, SCCM integrates nicely with remote management applications, as well as other System Center applications.

If you can swallow the cost, SCCM has absolutely excellent WOL support, good SNMP and is extensible via a plug-in framework that is nicely filled in by “the Microsoft ecosystem”. Quest Software leads the pack here. If you are looking for software to support your LOM project, you’ve found it. The last time I touched this product, it was still “System Management Server” and I was fairly underwhelmed by its capabilities. Today, I’m absolutely blown away not only by SCCM, but the entire System Center suite.

Well, almost the whole suite. The exception is Microsoft System Center Essentials (SCE), which is, compared to its bigger brethren, painfully crippled. It has no WOL support, limited remote management, terrible reporting abilities and no plug-in functionality to speak of. It might be marginally useful for SME work, but it won’t do proper LOM.

Frankly, there are open source tools that do almost everything it can better and cheaper. If you can stump up for the full suite of grown-up System Center applications, do so, but SCE just isn’t worth the time or the money. So what am I going to do to finish up my LOM project? I don’t have the funds to fork out for the System Center suite, and the open source community has failed to come up with the right shaped peg for this particular hole. I could do it by hand with the simple tools I found, but I actually did find an alternative. After much research, and many different attempts at implementation, I learned one lesson that will encompass my entire next article. It’s called Spiceworks. ®

Bridging the IT gap between rising business demands and ageing tools

More from The Register

next story
Auntie remains MYSTIFIED by that weekend BBC iPlayer and website outage
Still doing 'forensics' on the caching layer – Beeb digi wonk
Attack of the clones: Oracle's latest Red Hat Linux lookalike arrives
Oracle's Linux boss says Larry's Linux isn't just for Oracle apps anymore
THUD! WD plonks down SIX TERABYTE 'consumer NAS' fatboy
Now that's a LOT of porn or pirated movies. Or, you know, other consumer stuff
Apple fanbois SCREAM as update BRICKS their Macbook Airs
Ragegasm spills over as firmware upgrade kills machines
EU's top data cops to meet Google, Microsoft et al over 'right to be forgotten'
Plan to hammer out 'coherent' guidelines. Good luck chaps!
US judge: YES, cops or feds so can slurp an ENTIRE Gmail account
Crooks don't have folders labelled 'drug records', opines NY beak
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
prev story

Whitepapers

Top three mobile application threats
Prevent sensitive data leakage over insecure channels or stolen mobile devices.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
The Essential Guide to IT Transformation
ServiceNow discusses three IT transformations that can help CIO's automate IT services to transform IT and the enterprise.