BigFix Patch Management
On this page:
Overview
Internet-based attacks upon individual desktop and laptop computers are a world-wide problem. New vulnerabilities are discovered every month. This underscores the importance of keeping operating systems up-to-date by installing security patches as soon as they become available. Failure to keep all systems patched can place everyone on the network at risk.
Stanford uses a patch management system called BigFix Enterprise Suite (BES). It is administered by IT Services in collaboration with others across the University. This patch management system allows Stanford to install critical security patches on computers as soon as they're made available by Microsoft and Apple and tested here.
BigFix is an agent-based software solution. Each computer communicates with the server to determine its patch status. The server will automatically apply appropriate updates once they have been released. Release of patches occurs after broad campus-wide testing and follows a rigorous, but rapid, procedure.
Client software must be installed on all computers that are to be managed by the BigFix system administrators. Certain basic inventory information about the computer - such as IP address, operating system, some hardware data, and the presence or absence of critical security updates - is collected. A complete list of collected information is always available.
Install the BigFix Client Software
More Information
For more information please see the BigFix FAQ.
If you encounter problems or need assistance, please submit a HelpSU request.
