Endpoint Management: Discover Unknown Devices and Monitor Patches

Knowing what endpoints are operating within your network is one thing, but knowing what your endpoints are operating on is another. IT administrators need an easy, automated way to detect new devices entering their network, and a way to stay on top of the new updates needed for the devices already in their network. Our latest MetaDefender Endpoint Management release makes it easier for admins to tackle both.

This release includes:

Automated Unknown Device Discovery

In order to better monitor new devices entering your networks, Endpoint Management administrators can now configure automated device discovery settings and:

  1. Elect a managed endpoint to scan the network for new devices
  2. Elect multiple discovery endpoints per subnet
  3. Have a single discovery endpoint scan multiple subnets

Elected scanners must be a Windows managed endpoint, but will be able to detect all Linux, OS, and mobile devices within the network. To start using Unknown Device Discovery, administrators will first need to enable the feature in their advanced global settings:

Enable Discovery in Advanced Global Settings
Click to Enlarge

Once enabled, administrators can elect a Windows managed device to serve as the unknown device scanner. Every elected device will scan all endpoints associated with the connected subnets for new, unknown devices. For better coverage, multiple machines can be enabled for scanning. Simply search for the managed device's nickname and add it to the enabled list.

Elect Endpoints for Discovery
Click to Enlarge

The discovery feature will allow admins to better monitor new devices by providing a list of all devices that did not detect an agent on their machine. If the device is not running an agent, MetaDefender Endpoint Management will report it is an unknown device within the network.

Monitor all Discovered Devices by Selecting MAC Address
Click to Enlarge

Being able to enable and elect a device to scan its network for unknown devices is a powerful feature for security admins. Being highly aware of all endpoints (known or unknown) is an important part of any security architecture, and our new unknown device discovery feature makes that awareness easier. We're really excited about this new discovery feature, and are already working on enhancing it. Stay tuned!

Monitor OS Patches

If you've spent any time working in IT, you know patches to operating systems happen regularly. Preparing for every patch's new features or vulnerabilities can make maintaining a large network difficult (remember Patch Tuesdays and Exploit Wednesday?). To help make patch management duties easier, we've added our missing OS patch feature to help show the missing patches on each endpoint. Currently, only devices running Windows 8.1 or later will be able to report their missing patches. As we further develop this feature, we will also be adding robust APIs for exporting missing patch data, as well as an updated UI for more filtering and searching capabilities.

Missing OS Patches Ordered by Severity
Click to Enlarge

Missing patches are even categorized based on severity, allowing admins to better prioritize which missing patches to research or address. For faster patch research, we've included KB numbers so that there is one less step for admins to do when researching new patches.

Generate Discovery and Patch Reports

With this release, MetaDefender Endpoint Management allows administrators to generate reports on discovered unknown devices and the patch status of their known endpoints. Summary reports for OS patches or unknown devices can be found within Reports and Notifications.

Patch-specific reports can also be generated to find out what endpoints have that specified patch missing, making it easier for administrators to locate what devices need the update.

Download Device, Patch Summary, and Patch-Specific Reports
Click to Enlarge

Nac for SaaS - Now Under Integrations

You can now find NAC for SaaS configurations under our new integrations page. As we add more features to MetaDefender Endpoint Management, we will continue to improve the layout of our settings and dashboard.

Click to Enlarge

The latest version of MetaDefender Endpoint Management is now accessible through the OPSWAT Portal. If you have any questions or comments, please do not hesitate to contact us.

Sign up for Blog updates
Get information and insight from the leaders in advanced threat prevention.