Ivanti Security Controls is an agentless tool which means we do not need to install any agent on the server or endpoint. Through agentless capabilities, it can install software, install patches, and control over the server, including asset management. It is a very good tool feature that we appreciate for organizing our patch management as well as asset management. These are the two main features we are using in Security Controls. Ivanti Security Controls has mainly categorized into two different types when it comes to patching: agent and agentless. With agentless, we scan the server based on scan results to get output. Once we receive all results from the server, we immediately schedule a patch. We may have different environments that require DevOps, development, pre-production and production environment where we scan initially and start deploying patches. Once deployment is completed, we check stability. Based on the results, we proceed with production. We schedule it all together, and it has capability of running PowerShell scripts where special handling is required for servers. Based on requirements, we provide pre-required PowerShell scripts to run, such as stopping a service before rebooting. The main capability of Ivanti Security Controls is being agentless, which is the key aspect everyone uses. The second part is its capability of running scripts in the back end. If something goes wrong in any machine and we need to stop or add any registry, it has capability of running scripts as well as scanning the complete machine. It provides output of all applications and OS security, giving a clear picture of all vulnerabilities.
