Stanford uses IBM BigFix — to deploy patches and updates to Windows and Macintosh computers. BigFix is administered by the Information Security Office in collaboration with IT organizations across the University.
The Endpoint Configuration Management service provides the following benefits:
- It allows Stanford to install critical security patches on computers as soon as they're made available by Microsoft and Apple and tested here.
- Release of patches occurs after targeted, campus-wide testing.
- BigFix is an agent-based software solution. Each computer communicates with the BigFix server to determine its patch status.
- Certain basic inventory information about the computer—such as the presence or absence of critical security updates, IP address, operating system, and some hardware data—is collected. A complete list of collected information is always available.
Client software must be installed on all computers that are to be managed by the BigFix system administrators.
- BigFix Client Installation for Windows
- BigFix Client Installation for Mac
- BigFix Removal Instructions
- BigFix Retrieved Properties List
- BigFix Security Updates