With software—and the threats against that software—constantly evolving, organizations need an effective way to assess, deploy and manage a constant flow of patches for the myriad operating systems and applications in their heterogeneous environments. For system administrators responsible for potentially tens or hundreds of thousands of endpoints running various operating systems and software applications, patch management can easily overwhelm already strained budgets and staff. BigFix Patch balances the need for fast deployment and high availability with an automated, simplified patching process that is administered from a single console.

BigFix Patch gives organizations access to comprehensive capabilities for delivering patches for Microsoft Windows, UNIX, Linux and Apple Macintosh operating systems; third-party applications from vendors including Adobe, Mozilla, Apple and Java; and customer-supplied patches to endpoints—regardless of their location, connection type or status.

Endpoints can include servers, laptops, desktops and specialized equipment such as point-of-sale (POS) devices, ATMs and self-service kiosks. In addition, virtual machines can be patched so that virtual and cloud environments have the same level of security as physical systems.

BigFix Patch Highlights:

  • Automatically manage patches for multiple operating systems and applications across hundreds of thousands of endpoints—regardless of location, connection type or status
  • Fixlet® messages, delivered regularly by the BigFix development team, wrap the update with policy information (such as patch dependencies, applicable systems and severity level) which is read by an intelligent agent so only the relevant updates for that specific endpoint are downloaded and installed
  • Reduce security and compliance risk by slashing remediation cycles from weeks to days or hours
  • Gain greater visibility into patch compliance with flexible, real-time monitoring and reporting

Automate patch management

Manage and deploy patches across hundreds of thousands of endpoints, regardless of location, bandwidth or device type

Single management console

Reduce the effort in patching servers and workstations regardless of location, connection type, status or operating system

Streamline remediation cycles

Proactively reduce security risk by streamlining remediation cycles and achieve greater than 98% first-pass patch success rates

Leverage the cloud

Scale and adapt quickly to changing business needs without compromising security, privacy or risk levels in the cloud


Patch Compliance

Comply with government regulations, service level agreements and corporate policies

Patch Automation

Patch more than 90 OS types and delivers patches to endpoints for third-party applications

More Endpoint Support

Support a variety of endpoints: physical and virtual servers, laptops, desktops, POS devices, ATMs and self-service kiosks

Real-time Control

Intelligent agents continuously monitor endpoint states, including patch levels, and report them to a management server

Reduce Security Risks

Streamline remediation cycles from weeks to hours or minutes and create reports showing which endpoints need updates

Greater Visibility

Automatically assess the endpoint status once a patch is deployed, confirm successful installation and update the management server