Recently, we have decided to make the jump from LANDesk to KACE. We had owned LANDesk for the past 3 years, and initially, the product was great. Without getting into too much detail, unfortunately, the more LANDesk updated their product, the buggier it started getting. Issues with Antivirus was getting worse and worse. Our agents started growing beyond 1.6 to 2.0Gb, and some of the scans were taking up hundreds of megabytes of RAM, and often times, bringing the user’s workstations to a screeching halt. Getting hit with the KIDO (Conficker) virus while LANDesk AV was installed (and not detected) was the straw that broke the camel’s back.
Not to completely diss LANDesk, as they have served a good 3 years at our district, but we felt that it was time to look at different solutions, as the combination of the LANDesk agent, and the LANDesk antivirus was just way too taxing on all the workstations.
Our new adventure: KACE management from Dell, combined with Nod32 for the Antivirus product. Happy to report that the performance and foot print is TINY! If you have followed any of my previous posts, you will find that I am also a VMware (View) shop, and I am very interested in having management capabilities, and AV on the VM workstations, while keeping performance acceptable. we have gotten the KACE 2000 box as well, though I don’t do a whole lot with it; same with the Nod32 which I don’t manage. So, in this article, and the upcoming ones, I will be concentrating mostly on the KACE 1200 (Management and Patching box)
The KACE agent is literally taking about 11Mb of space on the hard drive, and when idle, takes up about 5-7Mb of RAM, and when performing an inventory or a distribution, the usages goes up to 25-30Mb of RAM.
The one thing that is lacking at KACE, unfortunately, is the documentation, and the knowledge base. KACE admits to that, and is currently working on it, hence my series on my blog. When I first installed the box and started looking at the possibilities, I realized that they’re literally endless. The blessing and the curse of this box is in its flexibility. I call it a WYSIWIG box, and that, in itself is the curse and the blessing. If you write the scripts for it correctly, it’s a beautiful thing. For that to happen, you need to understand how it works, and understand how to do scripts that will do the job correctly. However, if you don’t, then the KACE box does not have mechanisms built in to handle certain things, and it could cause un-necessary traffic on your network, or even worse, break stuff; Essentially, KACE is just a medium for distributing stuff.
An example for this is in order. The most common one is the installation of the VNC client, since almost everyone is going to choose a remote control solution. KACE does have a built in wizard that allows the creation of a preliminary script that install VNC. What it does not do, is perform any sort of error checking. So let’s say we create a script to install VNC, and target 50 machines. If ran as it, and the script succeeds on 25, the remaining 25 are still left to be installed within that same task. Without any additional modifications, when the script is ran again, the task will apply, and install on all 50 again! So at this point, you have to think about a method to check for the existence of VNC in order to install it on a machine where VNC already exists.
In that same manner, another script would have to be written, with the same base, but different error checking conditions, that will force an upgrade if VNC is exist, but is of an older version, for instance.
The reason for these examples, is the purpose of the upcoming articles. I just got the KACE box, and will be heavily involved in writing the scripts for my environment, and I will be sharing some of the practical methods that I used to make this work for me. In addition, I have tons of questions, very few of which, are answered in the documentation, and the knowledge base, so my answers either come from KACE support, or trial and error. So perhaps my articles will help some KACE newbies avoid some of the pitfalls, or get some of the functionality questions answered.
Meanwhile, there are some resources that you can use, which are provided by KACE, though if you are like me, you will be disappointed in them (at least at the time of writing of this article. I will list them some of the most prominent ones here anyway:
KACE AppDeploy – http://appdeploy.com: this one is probably the most content-rich site that will help with deploying applications
KACE Knowledge base – http://www.kace.com/support/kb/index.php?action=show : this is less than satisfactory knowledge base, but is there nonetheless.
KACE Documentation – http://www.kace.com/support/documentation : This is the official KACE documentation.
KACE Tutorials – http://www.kace.com/support/tutorials: This section has some videos, but I found that most of them are for the much older versions of KACE, and will be harder to follow if you have a new version of the appliance.
Please check back often for any updates, even better, take the time to subscribe to my blog (on the right) to get notified of new posts.