Desktop Central from ManageEngine is a client desktop management with patching, remote control, and configuration.
$795
per year per user
SentinelOne Singularity
Score 8.9 out of 10
N/A
SentinelOne is endpoint security software, from the company of the same name with offices in North America and Israel, presenting a combined antivirus and EDR solution.
We preferred Endpoint Central for several reasons. The wide range of functionality, the ability to manage our entire infrastructure from a single console, and the capability to manage our smartphones. No other solution allowed us to do all this, except Microsoft Intune which is …
Compared to other endpoint management tools that I have experience with, the patch management and the system health statistics functions work much better and are easier to navigate. The endpoint control functions are nowhere near as good as what I've used with Kaseya's VSA application - with that you could remote control a machine via a remote desktop type interface, or you could connect to the command line or PowerShell and it functioned as if you were directly connected to the machine - command history, tab completion, etc.. "just worked" and if the endpoint disconnected, you didn't lose anything that was going in the window when it reconnected (Exception being if the machine rebooted), grouping systems by department or building was also easier, as was moving systems between groups
It works extremely well for investigating the root cause analysis of events because you can see so much detail into what was happening before, after, and around the detective incident. A weak point would be when the AI gets a little over-aggressive or doesn’t quite understand the use case for specific tools. Our RMM tool was detected as a pup.
We set alerts when a devices gets low on disk space. That is automatic and creates a ticket in ME SDP. We are then able to Add space to a VM Desktop, and then go thru ManageEngine Endpoint Central to extend the drives so the entire process can be done without interruption to the end user.
Using the patch scans we can easily see what patches have been installed for all manufacturers not just Microsoft, without having to physically go to the device. It also allows us to choose which patches we want to push out and automate the process so we can be hands off, freeing up out time for other things.
Remote access to devices. This allows us to remotely make changes, not just via remote control but also make registry changes and clean up space without going to the device and without interruption to the end user.
Alerts. We have set up to get email alerts when new hardware is plugged into any computers. This lets us know if someone is bringing in un-authorized equipment (thumb drives, hubs, etc) to better manage what is/is not on our network.
When I first started using ManageEngine Endpoint Central, the UI felt very complicated and cluttered up, which means as a new user, it took a lot of time to get used to using it and knowing where certain features are. This was also because specific features aren't obvious to the user, it can take time to find them through multiple routes.
When pushing out specifc software to a large number of endpoint devices such as 1500 in my organisation, the deployment fails a lot more meaning some devices dont receive the software and this has to be done manually for them. This can take a lot of time.
When an issue is reported about ManageEngine Endpoint Central, for example it constantly crashing when being heavily used. The support was delayed and it took a lot of time for first line support to address the issue and escalate it.
ManageEngine is considered an excellent product due to its comprehensive suite of solutions for IT management, with ManageEngine Endpoint Central specifically excelling in endpoint management. The platform stands out for its user-friendly interface, robust features, and versatility in addressing diverse IT needs. It offers organizations a centralized solution for endpoint security, patch management, software deployment, and asset management
The application itself is great. However, I have little insight to what the patches are doing. Being able to see patch download progress, not just the status, would be great. The user interface could also use an overhaul. The countless menus, sometimes containing similar if not duplicate tabs can be frustrating to navigate.
There are some minor issues with the platform that can be mildly frustrating, but the overall performance, peace of mind, and ROI make it worth using. The management console is intuitive and easy to learn, the endpoint clients are simple but give IT professionals enough data to make management easy and simple
The immediate chat support is great and very helpful. However, if you need escalated support or have a deeper need that the chat tool can't help with, you will experience significant wait times and slow responses. The time zone difference becomes painful to the point of often just giving up.
Their support is good and quick to respond. The one issue we faced was when a non-protection issue arose there was a lot of dancing around trying to figure things out. This was frustrating as it took significantly longer to figure out issues. Lots of repetitive log gathers, screen caps, uninstalls that never seemed to resolve issues. Eventually, the product would be updated and the issue seemed to be resolved, but seemed to be the only solution.
I tend to use a combination of solutions to keep the estate running efficiently. ManageEngine Endpoint Central has more control over the timing of patching for users. Juggling users being able to work and keeping systems up to date with user satisfaction in mind is a monthly goal. Pushing updates with giving users some control seems to be working.
SentinelOne had all of the major features that we were looking for. The other products either required too much administrative attention or were lacking key features. For example, one could be uninstalled by the end user. We required that the installation be password protected to protect against end user disabling or uninstalling. One product required manual intervention for all remediation which put to high a burden on limited staff. All products are always being revised so these may no longer be issues but they had a significant impact on our decision.
It has greatly helped us with our compliances through the compliance scans, such as taking our CIS compliance from 36% up to around 90%.
It has massively reduced the number of application/patch vulnerabilities through automated patching & dynamic configurations with custom scripts. From 60 criticals and 300 highs down to just 5 criticals and 25 highs, very quickly.
It has helped us identify issues with our Bitlocker not syncing to Azure AD properly, because the recovery keys in ManageEngine were always correct but werent always correct in Azure AD.
SentinelOne has already proved its value by stopping attacks that would have gone otherwise unnoticed until much later in their infection process.
The Vigilance team has provided quick response to threats that were not easily contained via the automated response SentinelOne's agents provide. This has given us a significant piece of mind.
