Most Helpful Review
Find out what your peers are saying about BMC TrueSight Server Automation vs. BigFix and other solutions. Updated: January 2020.
397,408 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
One of the biggest benefits BigFix has had for our organization is the ease and efficiency to perform many different tasks, across pillars and platforms, all from one pane of glass.
The older version of the tools that I use also included the connectivity aspect, and the fact that the tool now has it separate from the collection of usage data makes the deployment of these tools much easier.
The most valuable feature is patch management, a must have, even for Linux and iOS.
It's enabled us to have a highly successful endpoint patching program for the past decade. It's been enormously successful there. It's also become a core part of many of our business processes, from compliance monitoring of endpoints, encryption management, key escrow, and local administrator password escrow. It's built into our inventory. It's very much everywhere.
Servers are patched more consistently than they have been previously.
Being able to intelligently create reports, gather data, export CSVs and give that to the leadership of some of the client groups that my team supports has helped my organization.
We are able to use BigFix through API connections to automate and reduce resources and time. The product's been great for us. It's increased the security posture ten-fold and it's increased our visibility across our endpoints enormously.
BigFix has drastically reduced the maintenance window period to patch and reboot servers.
With BMC, we even configured applications, like IE or things that were Java-related. When we scheduled the jobs, it worked fine. It saved us time and there was no need for resources to monitor them.
It gives us more speed to deliver services and applications, and we rely on security.
The most important feature is the schedulings.
The most valuable feature is its ability to remediate quickly and efficiently across a number of IT assets at the same time. It takes away manual efforts from the team to go out and fix those vulnerabilities through patching, conflict updates, etc.
Among the most valuable features is its flexibility and ability to work across multiple operating systems. Being able to execute some form of data collection and not have to worry about whether I'm working on a Linux box, or a Windows box, or the underlying OS, I can do these collections, get these results, and put them together in a uniform format which makes it easier to present back to management.
Compliance is also huge... By tying it to Atrium Orchestrator, our workflow tool, we'll be able to have a closed loop where we identify a compliance issue, cut CRs, get them approved, and then be able to execute these CRs and more seamlessly fix these issues on the fly.
Technical support is good.
I would like to see SDK for Web UI included in the next release.
I self-taught for this online, so the initial setup was a little difficult to pick up at first. I had to create a couple of testing environments and destroy them in order to learn how to use it. There was a lot of trial and error, a lot of reading of the manuals.
I would like to see the Self Service section made more user-friendly.
Around the scalability concern, I would like to see the ability to run teamed, clustered, or hierarchical root servers, in order to provide a more robust, high availability system. The single monolithic root server model does somewhat bother me.
I would like to see the integration of user security between the different products to be improved. There's separate security for compliance, separate security for web reports, and the console, and you have to manage those things separately.
The stability is generally pretty good. The one thing that we came across is the battle between load on endpoints and load on our servers and relays versus how quickly, effectively and reliably actions can be taken. I'd like to not have to take an action on a system while I'm working with someone and then have to say whether something will happen between five seconds or thirty minutes from that point.
I would like to see API connectivity, built-in API connectors to the standard toolsets, whether it's for your ServiceNow or your Qualys. More API connectivity to make it easier to integrate to other tools.
I would like to see a web UI SDK so we could take what is provided currently and be able to build our own customized web UI for particular customers that want to sell service.
There is no option to see all the servers we patch and we cannot find what the server status is. Of course, we can what has been completed and what is pending and which servers have failed, but we cannot find server status from the BMC tool. For example, is the RDP up or not. We are using separate scripts for that.
Without any knowledge of the product, we used the KB articles to start working. As a result, we definitely did not have full knowledge of BMC BladeLogic... They need to provide a minimum of knowledge with training on YouTube or somewhere else.
Another area for improvement is group scheduling if I'm trying to do all the servers. For example, if I want to do all the 2012 Servers - since the patches are the same for all of them - I can't do so.
I would like to see more container integration in the next release of this solution.
We would like to see this solution handle more multitasking.
The number of APIs available within the tool needs improvement. At the moment, we have a couple of different scanning tools used within the organization, but only one of those is integrated back into Server Automation. There is another tool that they use in another part of the business where it doesn't have an out-of-the-box adaptor for it. We would have to go and create or develop something bespoke to be able to integrate it with that scanning tool. Whereas, with the other scanning tool, there was an API available. To make it easier, I would like to have more APIs available for different scanning tools within that line of business.
I would like to see a better methodology for handling REST calls and integration into the APIs. They add new APIs as they add functions, but they've missed some from older components which they still haven't added in. Some of the APIs are there but the CLI calls are not there.
Needs more use cases into compliance management and the remediation process.
Pricing and Cost Advice
Compliance, inventory, and licensing are really pricey. They should lower the price. It discourages users from getting onboard.
The product is less costly when compared to other solutions, and this is a good solid solution for what we have paid.
We're looking at less than $100,000 USD for this solution.
Licensing is a bit pricey. Be mindful about the components that you need and buy as appropriate.
Answers from the Community
out of 25 in Configuration Management
Average Words per Review
out of 25 in Configuration Management
Average Words per Review
Compared 42% of the time.
Compared 17% of the time.
Compared 5% of the time.
Compared 47% of the time.
Compared 15% of the time.
Compared 13% of the time.
Also Known As
|Tivoli Endpoint Manager||TrueSight Server Automation, BladeLogic Server Automation, BladeLogic Automation Suite|
IBM BigFix provides complete visibility and control into all endpoints through a single, unified platform. Enterprises can now bridge the bridge the gap between threat detection and response, drastically reducing remediation times and costs by consolidating best-in-class EDR, enterprise asset discovery, endpoint interrogation, rich threat intelligence, multi-platform patch management (90+ OS) and software distribution. Security and operations teams can see, understand and act on all endpoint threats while proactively reducing the attack surface. • SEE: Discover and audit every endpoint, on or off the corporate network—and rapidly detect evasive attacks using behavioral analytics that understand how attackers compromise your endpoints. • UNDERSTAND: Guided investigation enables security analysts to understand the full context and scope of an attack based on real-time endpoint information, not just historical data. • ACT: Respond with purpose. BigFix provides the capability to deliver targeted remediation—not only on patient zero but enterprise-wide—in minutes or hours.
BladeLogic Server Automation allows you to quickly and securely provision, configure, patch, and maintain physical, virtual, and cloud servers.
· Threat remediation: Combine with BMC SecOps Response Service to link vulnerabilities to identified patches and create a remediation plan
· Compliance: Integrates role-based access control, pre-configured policies for CIS, DISA, HIPAA, PCI, SOX, NIST, and SCAP, documentation, and remediation
· Provisioning: Supports unattended installs and image-based, script-based, or template-based provisioning
· Configuration: Consistently manage change and configuration activities across a broad range of server environments with one tool
· Reporting: Assess change impact or complete an audit using multiple dashboard views
· Patching: Supports and follows maintenance window guidelines to ensure timely delivery of patches
Learn more about BigFix
Learn more about BMC TrueSight Server Automation
|US Foods, Penn State, St Vincent's Health US Foods, Sabadell Bank, SunTrust, Australia Sydney, Stemac, Capgemini, WNS Global Services, Jebsen & Jessen, CenterBeam, Strauss, Christian Hospital Centre, Brit Insurance, Career Education Corporation||State of Michigan, Fujitsu FSAS, Transamerica Life Insurance Company, SAP|
Software R&D Company35%
Comms Service Provider10%
Financial Services Firm25%
Comms Service Provider13%
Software R&D Company58%
Comms Service Provider11%
Financial Services Firm6%