As its Linux systems grew in number and complexity, Viollier wanted to tighten security by enforcing regimented patch management while at the same time streamlining system administration. By working with Adfinis SyGroup to implement SUSE Manager for its virtualized SUSE Linux Enterprise Server environment, the company accelerated major patch updates by 84 percent, enabling better production against emerging threats. In addition, the company streamlined day-to-day system management, saving time.
Having moved from a classic physical landscape to a virtualized environment a few years earlier, Viollier took advantage of its newfound flexibility to set up new Linux instances to accommodate separate systems. Virtualization provided many advantages, such as making it easier and more cost-effective to run production systems separately from more volatile test systems, but it also caused the number of servers to grow sharply.
This development presented the company with a fresh challenge: How could it manage and ensure the security of its rising number of virtual machines without expanding its IT team?
Marc Karcher, Project Manager at Viollier, said: “We run approximately 50 instances of SUSE Linux Enterprise Server. In the past, it was difficult and time-consuming to keep them protected by the latest security patches because we had to update each instance individually.
“When our partner Adfinis SyGroup gave us an insightful demonstration of how rapidly a bug like Shellshock can attack and devastate vulnerable systems, we knew that we had to find a better way to safe-guard our environment.”
Working closely with Adfinis SyGroup, Viollier deployed the SUSE Manager tool, which provides comprehensive, centralized, automated Linux server management.
“Adfinis SyGroup provided us with excellent training, showing us how SUSE Manager could help us patch our systems quickly and effectively,” said Marc Karcher. “Because SUSE Manager is easy to use, we can operate it without any external support.”
Now, Viollier has implemented an industrial, standardized approach to patch management. The company tests new updates thoroughly to detect and resolve any problems, then applies them to the production landscape.
“In the past, when we applied patches manually, it was difficult to gain an overview of which versions of software were on each machine and see where we needed to apply security updates,” said Marc Karcher. “Now we can check the status of the company’s SUSE Linux Enterprise Server instances at the touch of a button, see what’s going on, and identify potential vulnerabilities.”
With streamlined patch management supported by SUSE Manager, Viollier has enhanced system security.
“If we were attacked by a bug like Shellshock today, we would be able to respond very rapidly,” said Marc Karcher. “The advantage of working with a leading vendor like SUSE is that patches against emerging threats are created extremely quickly. Then, within 30 minutes of SUSE making the appropriate patch available, all of our servers can be protected. As data security climbs up the agenda for companies in all industries, it’s great to have the peace of mind that we are well-equipped to cope with emerging threats.”
Using the automation features of SUSE Manager, Viollier has also shrunk the time needed to apply new patches.
“Previously, it took around 25 hours to apply major patches to our entire SUSE Linux Enterprise Server environment because we had to manually find, download, verify, and deploy the patch individually on each server,” said Marc Karcher. “Now, we can complete major updates within just four hours–that’s 84 percent faster. As a result, our systems are protected against new threats much more quickly.”
Building on its early success, Viollier is now planning to extend its use of automation in SUSE Manager to further streamline system administration. This will generate time savings for IT staff, helping Viollier to continue to grow its business without having to increase IT headcount.
Marc Karcher said: “SUSE Manager provides enormous benefits in helping us enforce higher levels of security while keeping IT overhead down. It has made our lives so much easier.”