Page 1 of 1
WSUS and Enterprise Version
Published: November 30, 2018 - 10:25 AM
by Nicolas
Good morning,
We are currently testing the tool.
The WSUS functionality is of particular interest to us in the company I work for.
Hence my first question:
- From what I understand in the documentation, the Enterprise version is linked to Active Directory. Can you confirm this?
THANKS.
[SOLVED] Re: WSUS and Enterprise Version
Published: November 30, 2018 - 2:29 PM
by xdarras
Hello,
WSUS features are indeed linked to the WAPT Enterprise version.
The Enterprise version does rebuild Active Directory (AD) information (Forest, OU) but also offers other features.
To discover them, please feel free to contact us at +33 2 40 97 57 55 for more information
.
Sincerely
Re: WSUS and Enterprise Version
Published: Dec 3, 2018 - 10:22
by Nicolas
Hello Xavier,
Thank you, but I still have a question about your answer.
Is it possible to have the Enterprise version without an Active Directory in our infrastructure?
In the installation documentation (which is very comprehensive, by the way), regarding the Kerberos authentication configuration, you specify that it is mandatory in the Enterprise version. It seems that this isn't possible.
Thank you.
Best regards,
Re: WSUS and Enterprise Version
Published: Dec 4, 2018 - 10:08 AM
by vcardon
Hello,
The Enterprise version also works without Active Directory.
Active Directory offers the advantage of automatically registering clients on the WAPT server using Kerberos. Without Active Directory, you must register your clients manually.
Active Directory also allows administrators to authenticate on the console, thus providing better traceability of actions performed with WAPT by the organization's staff.
Furthermore, using Active Directory allows you to replicate the Organizational Unit (OU) hierarchy in the console to assign packages to your organization's OUs. This facilitates the automatic assignment of packages based on the company's structure.
Finally, the major advantage we see in Active Directory is the ability to apply Software Restriction Policies (SRP) Group Policy Objects (GPOs) to clients, a very effective way to prevent the execution of viruses and ransomware that can bypass all the protection measures you may have implemented.
In the context of SRPs, WAPT becomes an indispensable tool for providing the flexibility to deploy and maintain software and configuration environments.
Finally, Active Directory can be obtained cost-effectively and efficiently using Samba-AD.
Regards,
Vincent