Ivanti’s Security Nightmare: How to Manage Your Devices Without Losing Your Mind

Question:

How do you cope with the security vulnerabilities of Ivanti products that require frequent firmware updates or factory resets? Are there any reliable alternatives to Ivanti that offer similar features and granular control for your devices? What are the pros and cons of switching to a different UEM solution?

Answer:

How to deal with Ivanti’s security woes

Ivanti is a leading provider of unified endpoint management (UEM) solutions, which enable organizations to manage and secure their devices, applications, and data across multiple platforms and environments. Ivanti’s products are widely used in various industries, such as healthcare, education, retail, and government.

However, Ivanti has also been plagued by a series of security vulnerabilities that have exposed its customers to potential cyberattacks and data breaches. In the past year alone, Ivanti has issued several critical security advisories for its products, some of which required urgent firmware updates or factory resets to mitigate the risks. These updates and resets can be disruptive, time-consuming, and costly for the users, especially if they have a large number of devices to manage.

So how can you cope with the security challenges posed by Ivanti products? And are there any better alternatives to Ivanti that can offer you similar or superior features and control over your devices? In this article, we will explore these questions and provide some insights and recommendations.

One of the most recent and severe security issues affecting Ivanti products was the PrintNightmare vulnerability, which was discovered in July 2021. This vulnerability affected the Windows Print Spooler service, which is used by Ivanti’s Xtraction and Endpoint Manager products. The vulnerability allowed remote attackers to execute arbitrary code on the affected systems, potentially compromising the entire network.

Ivanti quickly released patches for its products, but some of them required a factory reset, which meant that the users had to reconfigure their settings and preferences from scratch. Moreover, some users reported that the patches did not fully resolve the issue, and that they still experienced problems with their printers.

Another security issue that affected Ivanti products was the Zerologon vulnerability, which was disclosed in September 2020. This vulnerability affected the Netlogon protocol, which is used by Ivanti’s Endpoint Manager and Endpoint Security products. The vulnerability allowed attackers to impersonate any computer on the network, including the domain controller, and gain access to sensitive information and resources.

Ivanti also released patches for this vulnerability, but some of them required a firmware update, which could take several hours to complete. Furthermore, some users complained that the patches caused performance issues and compatibility problems with other applications.

These are just two examples of the security issues that have impacted Ivanti products in the recent past. There have been other vulnerabilities, such as CVE-2020-13777, CVE-2020-1472, and CVE-2020-15505, that have also affected Ivanti’s products and required patches or updates.

The alternatives to Ivanti products

Given the security issues of Ivanti products, you may be wondering if there are any reliable alternatives that can offer you similar or better features and control over your devices. Fortunately, there are several UEM solutions in the market that can compete with Ivanti in terms of functionality, security, and usability. Some of the most popular ones are:

  • Microsoft Endpoint Manager: This is a cloud-based UEM solution that integrates Microsoft’s Intune and Configuration Manager products. It allows you to manage and secure your Windows, iOS, Android, and macOS devices from a single console. It also offers features such as application management, device compliance, identity protection, and threat detection. Microsoft Endpoint Manager is known for its tight integration with Microsoft’s ecosystem, such as Azure, Office 365, and Windows 10. However, it may not be the best choice for non-Microsoft environments, as it may have limited support or compatibility for other platforms and applications.
  • VMware Workspace ONE: This is a cloud-based UEM solution that leverages VMware’s AirWatch and Horizon products. It allows you to manage and secure your Windows, iOS, Android, macOS, Chrome OS, and Linux devices from a single console. It also offers features such as application delivery, device enrollment, identity management, and analytics. VMware Workspace ONE is known for its broad support and compatibility for various platforms and applications, as well as its user-friendly interface and experience. However, it may not be the most cost-effective option, as it can be expensive and complex to deploy and maintain.
  • IBM MaaS360: This is a cloud-based UEM solution that uses IBM’s Watson technology. It allows you to manage and secure your Windows, iOS, Android, macOS, and Linux devices from a single console. It also offers features such as application catalog, device inventory, policy enforcement, and risk management. IBM MaaS360 is known for its artificial intelligence and machine learning capabilities, which can help you optimize your device management and security. However, it may not be the most user-friendly option, as it can have a steep learning curve and a cluttered interface.
  • The pros and cons of switching to a different UEM solution

    Switching to a different UEM solution can have its advantages and disadvantages, depending on your needs and preferences. Here are some of the pros and cons of switching to a different UEM solution:

  • Pros:
  • You can benefit from the latest features and updates of the new UEM solution, which may be more advanced and secure than Ivanti’s products.
  • You can avoid the security issues and vulnerabilities that have affected Ivanti’s products, which may have compromised your data and devices.
  • You can choose a UEM solution that best suits your environment and requirements, such as platform support, application compatibility, user experience, and cost.
  • Cons:
  • You may have to invest time and money to migrate your data and devices from Ivanti’s products to the new UEM solution, which may be challenging and risky.
  • You may have to retrain your staff and users to use the new UEM solution, which may cause confusion and frustration.
  • You may encounter new issues and problems with the new UEM solution, which may not be compatible or stable with your existing systems and applications.
  • Conclusion

    Ivanti’s products are powerful and versatile UEM solutions, but they have also been affected by several security vulnerabilities that have exposed their users to potential cyberattacks and data breaches. These vulnerabilities have required frequent firmware updates or factory resets, which can be disruptive, time-consuming, and costly for the users.

    If you are looking for alternatives to Ivanti’s products, there are several UEM solutions in the market that can offer you similar or superior features and control over your devices, such as Microsoft Endpoint Manager, VMware Workspace ONE, and IBM MaaS360. However, switching to a different UEM solution can also have its pros and cons, such as improved security and functionality, but also increased complexity and cost.

    Ultimately,

the decision to switch to a different UEM solution depends on your specific needs and preferences, as well as the trade-offs that you are willing to make. You should carefully evaluate the features, security, usability, and cost of each UEM solution, and compare them with Ivanti’s products, before making your final choice.

Leave a Reply

Your email address will not be published. Required fields are marked *

Privacy Terms Contacts About Us