So, as we've seen all over server fault, and over the years I've built several of each system,
- System / Network Monitoring (I use nagios)
- System / Network Trending (I use Cacti)
- Centralized Log Monitoring (syslog-NG)
- Host-Based Intrusion Detection System (OSSEC)
- Ticketing Systems (Request Tracker)
- Internal Wiki Software (MediaWiki)
- IP Tracking (in house NMAP-based software)
However at the end of the day, I sometimes feel like I've somewhat "cobbled together" what seems like it could be one or two softwares, at most.
I'm kinda looking for an "All-in-one solution thats easier to manage then having to deal with 7 different softwares. Something that just works.
Anyone know of any? I've seen tons of monitoring apps and all that, but they always are missing the wiki and ticketing portions. That never made much sense to me, in my opinion if a alert goes off that should be a ticket for an engineer to address. Same goes for the IDS going off, and maybe trending warnings for future notice.
There's also Groundwork Open Source which performs this "cobbling" for you. I don't think it has a wiki or ticketing system though:
http://www.groundworkopensource.com/
I've used an earlier version a few years ago and it seemed very promising. In the end, my company decided to blow their budget on HP OpenView, so we never went past initial trials.
It's worth a look IMHO.
It won't replace all 7, shows ads, sits on Windows, and has device limits, but if you're a forgiving sort you might look at Spiceworks. Version 5 is now in beta.
I have indeed felt the same about this motley set of software components. Both nagios and RT3 seem pretty venerable and in need of being dragged into 2010. (Zabbix was a contender for the nagios replacement, but it was more pain that it was worth and I reverted to nagios, (after taking a diversion via hyperic))
HOWEver I may have found an answer! ;-) well a solution to having to deal with these many different configurations problem, and its data centre automation in the form of Puppet Labs (http://www.puppetlabs.com/)
Once you come over to the puppet way of thinking, you start to think of writing puppet recipes rather than configuring servers directly, and a lot of pain and trial and error of disparate a tool-set goes away.
Puppet (or if you prefer cfengine) combine revision management for your config files and centralised management of many of those tools.
I would estimate that once you have your servers managed by a template engine like puppet, 50% of your administrative pain goes away.
I just had a thought which is that all these tools have to pull their configuration data from somewhere. ie nagios needs a list of servers to monitor, cacti some devices to poll, syslog needs to know where the central syslog-ng server is. Additionally rt3 and mediawiki need authentication backends, ie user lists and passwords
And no-one wants to be maintaining these lists in many places.
Really the way to simplify the management of all these apps is to use a common configuration directory and database.
And this makes MS Active Directory looks like a really good idea!
As far as commercial products goes, KACE software gets very good reviews. I'm not sure of the expense, but if you're planning to use all its features and have the "single pane of glass" that marketers love, it's not unreasonable at all.
It includes patch management, software management, help desk ticketing, remote assistance (something you don't currently have), host re-imaging, and several other features that you mentioned.
I have no relation to KACE, but have seen several successful installs. That said, if you do like your individual solutions for each problem, there's no huge reason to go with something like KACE.