Ivanti Security Controls
Simplify and automate patch management for physical and virtual servers in the data center.
Leading patch management and application control
Ivanti Security Controls simplifies security with unified and automated prevention, detection, and response techniques that target your biggest attack vectors. It provides the security global experts agree creates the highest barriers to modern cyber attacks, including discovery, OS and application patch management, privilege management, and allowlisting.
Patch your Windows and Linux machines
Detect and remediate OS and third-party app vulnerabilities on systems running Windows, Red Hat Linux, and CentOS.
Patch your virtual servers
Discover, inventory, and patch physical servers, VMs, and templates, regardless of power state or if they are on or offline.
Simplify allowlisting
Provide authorized access to applications and services without making IT manage extensive lists manually and without constraining users.
Grant the correct privileges to your users
Implement Just Enough Administration and Just-in-Time Administration. Take back admin rights but still enable users to do what they need to.
Critical security made easy – the best patch and privilege management and allowlisting
With Ivanti Security Controls, patch management isn’t full of holes that could devastate your business. Allowlisting isn’t a chore that requires constant maintenance and updates to be effective. And, privilege management isn’t an all-or-nothing proposition that leaves your organization at risk in yet another way.
Discovery of vulnerabilities
Scan physical and virtual systems for missing patches.
Agentless patching
Assess and deploy patches to workstations and servers connected to your network while minimizing the impact on your team and system workloads.
Remote task scheduling
Keep the business moving. Schedule patching when it won't impact your users.
Integrate and automate beyond Ivanti
Patch REST APIs integrate Security Controls with other products, automate shared processes, and provide remote access and control.
CVE to patch list creation
Automatically, take a vulnerability assessment from any vendor, find all patches that relate to that list, and build a patch group of updates to quickly deploy.
Dynamic allowlisting
Create flexible, preventive policies to help ensure only known and trusted applications can execute on a system.
Granular privilege management
Balance access and security. Remove full admin rights, but easily elevate access for a limited time to apps users need.
Data-gathering mode
Gain insight into apps in your environment and who’s using them, so you can block execution, spot false positives, and react faster.
Advanced reporting
Make better decisions, faster, with comprehensive real-time dashboards that consolidate data from multiple sources into a single view.
Related content
Solution brief
Risk-Based CVE to Patch Approval
Whitepaper
The State of the Union on IT Security
Research report
A 2023 Cybersecurity Status Report
E-book
Building Strong IT and Security Foundations
Get started with Ivanti Security Controls
Get the upper hand on attackers.