BigFix Reviews

Our primary use case is Patch Management.

This has very much improved our organization by saving time to deploy thousands of endpoints to our customers.

The most valuable feature is Patch Management.

We would like to see a different license plan, e.g. to include features from lifecycle with Patch Management, as an example.

We have been using BigFix for five years.

I have been using the patch management and server automation feature of this product. In terms of vulnerability management, it gives tough competition by providing a single management console with multiple benefits. Customization as per the requirements is one of of best it offers and almost any form of scripts and any OS can be supported for those customization.

The automation aspect has surely reduced the manual efforts leading to diverting those into other productive areas. Instead of manually bringing down any application prior to maintenance, this tool offers the capability to bundle a script ahead of patching, so maintenance and the corresponding patching is just a click of a button.

The tool should be more friendly in terms of Web UI and should be having better vulnerability scanning mechanisms so a third-party application is not required to fulfill that aspect.

I have been using the product for almost five years and have explored quite a lot with respect to its utilization and benefits.

The tool has been quite stable. It has improvements within each version, which have made it become better and more powerful.

No issues. It can well support clients, even if it is more than 100,000, easily and efficiently.

The support from IBM is good. It sometimes takes them a while to identify and come up with a workaround which can impact the environment.

Not really, I have been using multiple tools like BigFix/SCCM/Tanium for vulnerability remediation/inventory management. I never really switched from any other tool, but used them in parallel for different projects.

The setup is pretty straightforward, if you have a good knowledge about the geographical spread of your clients, so the relays are appropriately mapped.

Understand the requirements and the amount of use before choosing it. If you are just managing Windows machines with the regular MS released updates, than WSUS might be a cheaper and more viable solution. If you are looking forward to a single tool with third-party vulnerability remediation and in-house customization, then this is product is good to go.

SCCM was an option at one point, but we zeroed in on BigFix due to the customization possible.

It is a niche tool with good exposure to required customization and automation, but still requires quite a lot of expertise to handle in comparison to its competitive tools.

The most valuable feature for me is patching, because it's helped me to make sure I am always compliant. It's completely transparent. I can take care of what I need to do because BigFix is doing the patching by itself.

It is always taking me to the right level of security compliance.

Maybe they could introduce a preview of what is going to happen next, because generally what the project is doing is just asking you to execute some actions. I'd like to see a pop-up which says you are expected to do this or that and then I can decide if I have to do that today.

I never had problems, so I think it's highly stable.

I don't know about scalability because I'm not using it for a larger scale.

I haven't used the technical support.

I was not involved in the initial setup.

For me, the perception that I can see in the market about stability, quality and all those kinds of things is important when selecting a vendor. Cost is definitely also a criteria.

I would advise them to just do it.

The most valuable feature of this solution is its ease of use.

It improves the productivity of our organization, by helping the technical guys in our team.

We would like to see more of the extended reporting feature. It would help the technical teams, so as to drill down into the reports further.

The stability is good.

Scalability is also good.

This solution is giving us the results that it's meant for.

You should definitely take a look at it.

The most important criteria while selecting a vendor are the reliability, cost and technical support.

We use BigFix to manage Windows and Mac OS. We also use it for deploying patches and software across the company.

BigFix helped us to identify the compliance of devices and has also improved the way that we manage our software inventory for reporting to vendors.

It has helped to reduce network traffic when it comes to downloading patches. It helps a lot because we have the ability to customize the uses of the bandwidth in our company, and it helps us to reach every region no matter the size of the link that we have in the network. We use patch management for deploying Microsoft patches and compliance to deploy security policy across the environment.

Finally, it has helped to compress the patch cycles. It has helped us to reduce the time that we need to use for patch management by at least 50 percent.

The scalability and the ability to manage different operating systems are the two most valuable features. 

I would like to see improvements in the web UI program and also a BigFix console for Mac OS.

Scalability is really great because we have the ability to scale the solution no matter how many endpoints we have. The last updates came with a lot of improvements regarding the scalability.

Their technical support needs some improvement. We have had some cases where we didn't get enough support from the support team but I think it's improving now.

We switched to BigFix because of the scalability and because it can be used across multiple platforms.

The implementation is really straightforward and it's easy to implement with the environment.

SCCM is a complex solution that needs a lot of licenses which means a lot of money. It only supports Windows and BigFix can be deployed across Linux and Microsoft operating systems.

I would rate BigFix a nine out of ten. Not a ten because there are some improvements that can be done to the product and the support that we get from the vendor needs improvement.
BigFix can do almost anything. You should know how to use it based on your specific requirements, but it can do almost anything.

Ability to run custom reports and custom relevance.

It allowed us to proactively seek out issues as well as quickly react to issues and target only computers which needed fixes. It was very easy to streamline down to what was needed.

We need a much better multi-tenant option. 

We had 60 plus divisions and there was no real way to effectively give those people the help at the division sufficient rights within the console to see just their responsibilities. We wanted Bob at one of our divisions to have console access and only be able to manage his computers. We were not able to find a way to effectively do this. They had a web console that did not really handle our needs. 

My current company is a consulting firm. If they had a better way to have multi-tenant access, this could be a product that could potentially do great good for us. As it was, when I last used it, it would not work for us without setting up a new instance for every customer we manage. Not really effective for our needs.

I have used it for about four years.

Yes, occasionally we did.

Yes, we did find some “quirks” and had to get creative, but we were able to work within the solution to streamline transfer speeds to not saturate networks between sites when synchronizing enormous install packages to our relays scattered around the country. Also, we could not easily scale the management to multiple tenants as we hoped and as we were able to do with other products in the past.

I didn’t have to deal with them much. Others did. We frequently found that we were bringing solutions to them.

I did not do the initial setup.

This was not my responsibility.

I was not the decision-maker here.

It is a great product. Spend some time really learning about the capabilities and how things are organized within the product. Then, spend some time really planning your structure and how the organizational groups should play out. It will make things a lot easier down the road when you need to send something to just one area of your business. Unfortunately, it is usually after a product is implemented that we truly understand how to best implement for our environment.

I like the inventory and life cycle management feature. It's simple to use. This platform is easier than Azure.

The remote software installation could be better. I would also like to see mobile device management within the BigFix itself. I would also like to have GlobalProtect management.

I have been using BigFix for approximately three years.

BigFix is a stable solution. You can deploy it and forget about it. 

BigFix is easy to scale. 

Technical support is very good.

The initial setup is straightforward and took us a day to implement.

I would recommend BigFix to new users.

On a scale from one to ten, I would give BigFix a seven.

• A central engine for endpoint posture improvements
• Excellent compliance reporting with customizable dashboards
• Scalability and expandability support any heterogeneous environment.

BigFix has helped us in improving the overall endpoint posture and lifecycle management of the workstations as well as applications.

• Compliance reporting is the best.
• Patch management makes it easy for out-of-band and in-band patching.
• Inventory correlation with third-party tools.

• Complex design and administration
• Offline management
• Remote support on unsupported platforms
• A large infrastructure required to implement for a medium-sized organization
• Also, I would like to see if BigFix could be application aware for more in-depth compliance and reporting.