Overview & Architecture

 

Multi-tenant architecture (Summary Server) for enterprises with more than 25000 endpoints

If you have not downloaded the summary server installable yet, fill out this form to receive the download link.

Please enter a valid email. Please enter a email.
By clicking 'Get Download link', you agree to the processing of personal data according to the Privacy Policy.

Table of Contents:

  1. Overview
  2. Architecture
  3. Components
  4. System Requirements

Check this guide to start your Summary Server and Probe Server setup.


Overview

Endpoint Central's Summary Server can manage endpoints with higher degree of visibility and scalability. This web based application helps IT admins to manage endpoints across globe with a user-centric dashboard. Summary Server is coupled with Probe Servers to achieve these factors. Here is a detailed guide on how Summary Server aids in scalable endpoint management for enterprise.

Architecture

This section explains the following

  • Architecture
  • Components
  • Secure communication between agent and server

Endpoint Central Summary Server


Components

Endpoint Central Summary Server:
The Summary Server is a real-time data driven dashboard made available for the executives of an enterprise. All the Probe Servers will report to Summary Server reguarly to post the endpoint management reports. This server can be accessed through a web console, which will require authentication. A separate set of users can be created to access this server. Summary Server will communicate only with the Probe Server. It is advisable to have your server turned on without fail to achieve maximum efficiency in monitoring and managing the endpoints.

Endpoint Central Probe Server:
Probe servers are standalone Endpoint Central Servers that manage devices in the business network. IT technicians can create and deploy the policies from this server. In this architecture, multiple Probe Servers can be installed in the enterprise network and maintain a degree of autonomy while managing the endpoints. Every Probe Server will have a set of technicians and admins to manage endpoints under that Probe Server. A Probe Server will communicate with Summary Server and Endpoint Central Agents. The Probe Server contacts Summary Server to post the data on a regular basis and contacts Endpoint Central agents to execute the deployments triggered. Probe Servers can be installed with Secure Gateway Server to manage roaming users securely.

Web Console:
The Web console component is used to access the Server from a remote location using the internet or VPN. A dedicated web console is available for Summary Server as well as Probe Server(s).

Endpoint Central Agent:
Endpoint Central agent is a lightweight software installed on the devices which are to be managed by the Endpoint Central. The agent is used to execute tasks like:

Software distribution and filtering
Applying patches (manual/automatic)
IT Asset Management, and generating reports and more.

For instance, if the admin wants to show a popup message to a specific user/computer, then these settings are configured in the Probe server and the details are replicated to the agent, thereby executing the task successfully.
The agent will contact the respective Probe Server following the agent refresh policy to execute the deployed tasks.

Agent Server communication takes place during:

  • User logon
  • Device Logon
  • 90 minutes refresh policy

For User-specific Configuration:
The agent contacts the Server during

  • User logon
  • 90 minutes refresh policy

For Computer-Specific Configuration:
The Agent contacts the server during

  • System logon
  • 90 minutes refresh policy

Active Directory:
Endpoint Central is a domain based approach. Therefore, it can be synced with an Active directory/Workgroup to fetch the resource information.

Patch Database:

Patch database is a repository hosted on ManageEngine website. This database will transfer the patch information for the devices managed under the Endpoint Central scope. Endpoint Central server communicates with the patch database through the internet or VPN.

Securing Agent Server Communication
The communication across this architecture will take place in https mode only.


System Requirements:
Find the below list of system requirements for this architecture:

  • Summary Server is capable of managing minimum of 100k endpoints.
  • Each Probe Server can manage between 25k and 30k endpoints.
  • Ports Used by Summary Server and Probe Server
  • Hardware requirements for Summary Server, Probe Server, Distribution Server, Endpoint Central agent, Secure Gateway Server and SQL Server.
  • Network requirements such as internet speed, bandwidth.
  • Supported Operating systems for Summary Server, Probe Server, Distribution Server, Endpoint Central agent, Secure Gateway Server and SQL Server.
  • Supported Browsers, Database, and Web Servers.

 

Ports Used by Summary Server

Port Purpose Type Connection
8383 For accessing Web console HTTPS In bound to server
8443 For Sharing Remote Desktops, System Manager, Chat and File Transfer. HTTPS/UDP In bound to server

Ports Used by Probe Server
To know the ports used by Probe Server, please visit this page.

Hardware requirements:
This section lists the hardware specifications for Summary Server, Probe Server and Distribution Servers:

Summary Server

Parameters Requirements
Processor Information Intel Xeon E5(16 core/ 32 thread) 3.0Ghz
RAM Size 32GB
Hard disk Space 500GB*
Network Requirement
Network Card Speed Minimum 1GBPS Network Interface Card (NIC)
Bandwidth Minimum 1MBPS (T1 Connection)
SQL Server
RAM Size 128GB
Hard Disk Space 1TB*
Edition Standard/Enterprise

* May increase dynamically according to the frequency of scanning

Probe Server

Parameters Requirements
Probe Server
Processor Information Intel Xeon E5(16 core/ 32 thread) 3.0Ghz
RAM Size 32GB
Hard disk Space 500GB*
Endpoint Central Agents
Processor Intel Pentium
Processor Speed 1.0Ghz
RAM Size 512MB
Hard disk Space 30GB**
Network Requirement
Network Card Speed Minimum 1GBPS Network Interface Card (NIC)
Bandwidth Minimum 1MBPS (T1 Connection)
SQL Server
RAM Size 128GB
Hard Disk Space 1TB*
Edition Standard/Enterprise

* May increase dynamically according to the frequency of scanning

** May Increase dynamically depending on the operations performed on the client computer

Distribution Server

The hardware requirements for a distribution server include the following:

No. of Computers Managed Using the Distribution Server Processor Information RAM Size Hard Disk Space
1-500 Intel Core i3 (2core/4thread) 2.0Ghz 3MB Cache 4GB 6GB*
501-1000 Intel Core i3 (2core/4thread) 2.0Ghz 3MB Cache 4GB 12GB*
1001-3000 Intel Core i5 (4core/8hread) 2.3Ghz 8GB 16GB*
3001-5000 Intel Core i7 (6core/12hread) 3.2Ghz 8GB 20GB*

*- May increase depending on the number of software applications and patches that are deployed.

Note: It is highly recommended to install Distribution Server for every 1000 computers.

Supported Operating Systems:

Endpoint Central Servers can be mounted on any of the below mentioned Operating Systems:

  • Windows 11
  • Windows 10
  • Windows 8.1
  • Windows 8
  • Windows 7
  • Windows Server 2019*
  • Windows Server 2016*
  • Windows Server 2012 R2*
  • Windows Server 2012*
  • Windows Server 2008 R2*
  • Windows Server 2008*

* recommended for managing more than 5000 endpoints

For Endpoint Central Agents

Windows OS Windows Server OS macOS Linux OS*
Windows 11 Windows Server 2022 macOS12 Monterey Ubuntu 10.04 & later versions
Windows 10 Windows Server 2019 macOS 11 Big Sur Debian 7 & later versions
Windows 8.1 Windows Server 2016 macOS 10.15 Catalina Red hat Enterprise linux 6 & later versions
Windows 8 Windows Server 2012 macOS 10.14 Mojave CentOS 6 & later versions
Windows 7 Windows Server 2012 R2 macOS 10.13 High Sierra Fedora 19 & later versions
Windows Vista Windows Server 2008 R2 macOS 10.12 Sierra Mandriva linux 2010 & later versions
Windows XP* Windows Server 2008 macOS 10.11 El Captain Linux Mint 13 & later versions
*- Conditional Support Windows Server 2003* macOS 13 Ventura OpenSuSE 11 & later versions
  *- Conditional Support macOS 14 Sonoma SuSE Enterprise Linux 11 & later versions
      Pardus 17 & 19
      Oracle Linux Server 6 & later versions
      *- We Support Kernel versions above 2.6.33

For Managing Mobile Devices:

  • Android: Android devices running on version 4.0 or above
  • iOS (incl. iPhone, iPad and iPod): iOS devices running on version 4.0 or above
  • Windows Smartphones: Devices running on version Windows Phone 8.1 or above
  • Windows laptops (incl. Surface Hubs and Surface Pros): Devices running on Windows 10
  • Chrome OS: Devices running on version 57.0 or later
  • tvOS: Devices running on version 7.0 or above
  • macOS: Devices running on version 10.11 or later

Supported Browsers:

You are required to install any of the following browsers on your computer to access the Endpoint Central Console:

  • Microsoft Internet Explorer 11 & later versions
  • Mozilla Firefox 44 & later versions
  • Google Chrome 47 & later versions

Note: The screen resolution should be 1280*1024 pixels or higher

Supported Database:

Endpoint Central supports the following database:

  • PGSQL
  • MSSQL
    • SQL Server 2019
    • SQL Server 2017
    • SQL Server 2016
    • SQL Server 2014
    • SQL Server 2012
    • SQL Server 2008

Note: Endpoint Central supports those mentioned above SQL Server versions in AWS as well.

Supported Web Servers:

Endpoint Central supports the following Web Servers:

  • Apache (for static file services)
  • NginX (for static file services)
  • TOMCAT (for application related services)