Seeking UEM Solutions for Managing 200k+ Windows Endpoints
Posted by ruhtra09@reddit | sysadmin | View on Reddit | 16 comments
Hi everyone,
I'm exploring UEM tools beyond ConfigMgr for our organization. We manage over 200k Windows endpoints spread across hundreds of sites, including users working from home.
A specific challenge we're facing is that over 50 of our sites have WAN connections that can't handle downloading software and patches from the cloud. We also want to avoid setting up 50+ distribution servers at these locations. We're looking for a solution that supports peer-to-peer content distribution—but not Delivery Optimization, since we don't have multicast enabled everywhere (which I've been told is a prerequisite).
For those of you handling similar large-scale environments with these constraints, which UEM solutions are you using?
I'd greatly appreciate any insights or recommendations based on your experiences.
Thanks in advance.
Essa_ea@reddit
Have you checked Manageengine , I have been using this for about two months in my organization, managing about 60 endpoints and 15 servers. It's very reliable and has many tools when it comes to security, software deployments and other stuff. Also supports remote sites.
MikeWalters-Action1@reddit
Does ManageEngine still require the deployment of local cache servers to cache large downloads on vLANs?
Essa_ea@reddit
No it doesn't, but it's recommended to setup a cache server if you're dealing with large network.
Hotdog453@reddit
Look into Adaptiva too, from a purely content management perspective. It works with both Intune and ConfigMgr, and can 100% fix the 'content delivery' aspect.
MikeWalters-Action1@reddit
Adaptiva has a fairly good content delivery engine that optimizes downloads of very large updates.
Humble-oatmeal@reddit
With SureMDM, managing patching and app deployment is simple. You can deploy updates over the internet or via relay servers, with a dashboard that shows patch status and available updates. Users can install approved apps through the AppStore without admin access, and you get access to a catalog of over 4,000 pre-approved Windows apps for easy software management.
Gro_fagia@reddit
Try Datto, we’ve been using Datto for managing our endpoints, and it’s been a solid choice.
JwunsKe@reddit
Yep, Datto its great, an with Autotask even better
Pl4nty@reddit
Delivery Optimization doesn't require multicast, and the reporting is better these days. I've heard 2Pint's third-party reporting is excellent too: https://2pintsoftware.com/solution/cache-management
DO and Intune are pretty difficult to configure though, especially in environments like yours. We built features to help similar customers, or some consultants (or msft ProServe) could help. there's lots of advice on the internet too, but we find teams need 6+ months to learn/test, let alone migrate endpoints
MagicHair2@reddit
2pint have another software that might be helpful https://2pintsoftware.com/products/stifler
ruhtra09@reddit (OP)
If multicast isn’t a requirement, Delivery Optimization becomes an option again. I need to follow up with the vendor of another product we were evaluating to understand why they mentioned this, as it was one of the main reasons we decided not to proceed.
Pl4nty@reddit
here's the official doc: https://learn.microsoft.com/en-us/windows/deployment/do/waas-delivery-optimization-faq#does-delivery-optimization-use-multicast
it's not entirely accurate anymore though. by default Win11 uses DNS-SD (multicast DNS) to search for endpoint/cache peers, but it's not required
Rohit_survase01@reddit
Hi, sounds like you're dealing with some major challenges! For large-scale environments like yours, I'd recommend checking out Scalefusion UEM. It's a robust solution designed to streamline device management across multiple locations while optimizing bandwidth usage. It offers seamless peer-to-peer content distribution, which can help reduce the load on WAN connections without the need for additional distribution servers. It's a complete solution with enterprise-grade features that should meet your scalability and performance needs.
smargh@reddit
Perhaps it may be useful to include a declaration of any potential conflict of interest, Rohit.
Senks@reddit
Tanium is probably your best bet based on what you’re describing.
BWMerlin@reddit
Highly recommend checking out Workspace ONE.