Endpoint Central Cloud empowers IT administrators and team to step up their unified approach to endpoint security and management in Saas way. Endpoint Central features over-arching capabilities to control, secure and manage endpoints throughout their lifecycle, which includes device onboarding, device provisioning, application distribution and provisioning, threat detection and patch management, data security using bitlocker management, IT auditing and visibility, remote troubleshooting and peripheral device management. Continue reading this article to know how these tasks operate in your network with this architecture.
The cloud architecture is built up with the below components:
The Endpoint Central Cloud server is hosted in any one of the ManageEngine data centers (Check the available ManageEngine data centers in this page.). IT administrators and technicians can access the server to create the tasks and deploy it to the managed endpoints. All the information related to your activities and management will be stored in the server, which can be exported for IT auditing and compliance.
The distribution server of Endpoint Central Cloud primarily acts as an AD Connector for your network. Check this page to configure AD Connector in your network. In addition, this can be used as a distribution point to streamline the bandwidth rates through your network. Distribution Server can be setup in any one of your remote/branch offices. IT administrators can setup the distribution server with replication policy rules (the data will be replicated from central server to distribution server based on this rule). In addition, the distribution server synchronizes with the Endpoint Central Cloud server for missing patch details. These patches are then downloaded directly from the respective vendor's website and distributed across the branch office agents depending on the status of the missing patches on each computer.
Endpoint Central, being a domain based approach to your endpoint solution, will sync resources information from active directory or workgroup. In cloud hosted setup, business can populate the resource information using AD Connector.
Patch database is a repository hosted in ManageEngine data center. This database contains all the patch information, which will be passed to the central server at regular intervals. For users working from home, the agent installed on their machine will pull the patch information from this database directly and download and install the patches from the vendor websites.
Web Console is the graphical user interface of the Endpoint Central. IT administrators and technicians can access the web console anyplace, anytime.
Endpoint Central is tightly integrated with notification services such as Apple Push Notification service (APNs), Firebase Cloud Messaging (FCM), and Zoho Notification Service to manage mobile devices and implement modern management practices.
Endpoint Central agent is a lightweight software installed on the endpoints that is required to be managed by your IT administration team. This agent is responsible for carrying out the deployed tasks such as installing software/patches, distributing baseline settings, remote troubleshooting, device diagnosis and lot more.