Evaluation Checklist

This checklist shows the many features that are available with Security Controls. Feel free to use this checklist to compare Security Controls with products from other vendors.

Item Ivanti Security Controls Competitor A Competitor B
Installation and Licensing
  • Prerequisites automatically installed if missing
 yes    
  • Installed and running in 30 minutes or less
 yes    
  • Licenses available for a variety of feature sets
 yes    
Ease of Administration
  • Simple to use: Can use with no training
yes    
  • Intuitive, easy-to- understand interface
yes    
  • Perform patch and asset scans within minutes of product installation
 yes    
  • View patch status immediately after completion of scan
 yes    
  • Easy-to-perform patch remediation
 yes    
  • Initiate scans automatically or on-demand
 yes    
  • Automated remediation
 yes    
  • Scalable – can be used with small or large number of machines
 yes    
Useability in Small, Medium and Large Organizations
  • Works with multiple operating system vendors (Microsoft, Red Hat and CentOS)
 yes    
  • Works with multiple Microsoft operating systems
 yes    
  • Works with multiple software products
 yes    
  • Works with multiple product vendors (Microsoft and non-Microsoft)
 yes    
  • Works with multiple machine types (servers, workstations, tablets, ATMs, etc.)
 yes    
  • Works well with multiple networks
 yes    
  • Flexible – able to grow with the organization
 yes    
  • Can perform tasks agentlessly from a central console
 yes    
  • Can perform tasks using agents installed on target machines
 yes    
Patch Scanning Criteria, Accuracy and Security
  • Supports all current Microsoft operating systems
yes    
  • Supports all current Red Hat and CentOS operating systems
 yes    
  • Supports all popular Microsoft applications
 yes    
  • Supports large number of non-Microsoft applications
 yes    
  • Can scan for both security and non-security patches
 yes    
  • Can scan Microsoft’s security tools
 yes    
  • Scans for both patches and service packs
 yes    
  • Real-time patch validation (via XML file)
 yes    
  • Patch supersedence (superseded patches are not presented)
 yes    
  • Detailed patch analysis and validation via file version + registry keys
 yes    
  • Digitally signed files for security during the patch process
 yes    
  • Provides detailed information about each detected patch
 yes    
  • Supports the use of custom patches
 yes    
  • Supports patches for a variety of languages
 yes    
  • Can group patches by criticality, then scan for & deploy by group
 yes    
Control Over How Target Machines are Patched
  • Ability to identify missing patches
 yes    
  • Ability to fix incorrectly patched machines
 yes    
  • Can deploy individual patches or multiple patches
 yes    
  • Can deploy based on user-defined criticality
 yes    
  • Automatically deploy missing patches after a scan
 yes    
  • Scheduled patch deployment options
 yes    
  • Patch rollback
 yes    
Virtual Machine Support (Online and Offline VMs)
  • Discover, inventory, and patch online virtual machines hosted on workstations
 yes    
  • Discover, inventory, and patch offline virtual machines hosted on workstations
 yes    
  • Discover, inventory, and patch online virtual machines hosted on ESX server
 yes    
  • Discover, inventory, and patch offline virtual machines hosted on ESX server
 yes    
  • Manage and track vCenter Servers and ESXi hypervisors
 yes    
  • Scan and deploy patches to managed and unmanaged ESXi hypervisors
 yes    
Application Control
  • Executable control
 yes    
  • Privilege management
 yes    
  • Browser control
 yes    
Asset Management
  • Discover and catalog software assets
 yes    
  • Discover and catalog hardware assets
 yes    
  • Discover and catalog virtual assets
 yes    
  • All virtual machine information available in one location
 yes    
  • Ability to initiate asset scans automatically or on-demand
 yes    
  • Can schedule agentless or agent-based asset scans
 yes    
Power Management
  • Ability to shut down machines
 yes    
  • Ability to restart machines
 yes    
  • Ability to put machines into sleep state
 yes    
  • Ability to put machines into hibernate state
 yes    
  • Ability to send Wake-on-LAN (WoL) request
 yes    
  • Ability to initiate power tasks automatically or on-demand
 yes    
  • Can schedule agentless or agent-based power management tasks
 yes    
PowerShell Scripts
  • Access to free scripts and all pre-defined scripts provided by Ivanti
 yes    
  • Execute scripts against target machines
 yes    
  • Execute scripts from the console
 yes    
  • Create PowerShell templates
 yes    
  • Import custom scripts
 yes    
  • Share your custom scripts with the ITScripts community
 yes    
  • Execute scripts immediately
 yes    
  • Schedule script execution to run at some time in the future
 yes    
Reports
  • Easy to generate
 yes    
  • Large number of reports available
 yes    
  • Large scope of reports, from enterprise view to machine-level detail
 yes    
  • Indicates degree of compliance with patch policies
 yes    
  • Export results to other formats
 yes    
  • Ability to filter results
 yes    
  • Find the exact information you want using advanced filtering
 yes    
  • Send reports automatically via e-mail
 yes    
Application Program Interface (API)
  • Support for both REST API and PowerShell API
 yes    
  • Interact with different systems in your environment
 yes    
  • Script a sequence of complex events that contain dependencies
 yes    
  • Perform bulk operations or process list inputs from other systems
 yes    
  • Programmatically stage patch deployments or initiate patch downloads
 yes    
Product Documentation and Support
  • Robust, online Help system
 yes    
  • Product documentation available online
 yes    
  • Video tutorials
 yes    
  • Available e-mail support
 yes    
  • Online support forum
 yes    
  • RSS feeds that provide security-related news & important messages
 yes