We're looking to enable local Windows Firewalls on most client PCs where I work. We'd like to keep any incoming rules to a minimum; this made the Patch Manager agent look very attractive.
From my understanding, the Patch Manager agent will initiate an outbound connection from the client to the server, removing the need to allow unsolicited incoming connections from Patch Manager. Someone please correct me if I'm understanding this wrong.
The troubles I am having is deploying this client. We use MDT to build our PCs; I'm hoping to be able to install the agent on PCs prior to connecting to Patch Manager. We're unable to deploy the components via Patch Manager as these PCs will not accept incoming connections.
The only way I've managed to get this agent to work is by provisioning an offline installer for a PC, and then manually installing. This requires me to not only specify the PC the package is used for, but also provide a password for the cert. This would be tough to automate in MDT.
My questions:
1. Is there a offline installer for Patch Manager agent that I could deploy via MDT during the build process? Preferably one that can be automated.
2. Is there a difference between the "Solar Winds Client Components" and the agent itself? It seems like the client components do not work as they should, but creating an offline agent does.