Platform • Real-Time Endpoint Operations

Click. Execute. Done.

200 built-in endpoint actions across Windows, macOS, and Linux — executed instantly over a persistent encrypted channel. Across Intune, ConfigMgr, Azure Update Manager, and standalone devices. No sync delays. No firewall rules. No hoping the device checks in.

200
Built-In Actions
3
Platforms
<1m
Quick Inventory Refresh
0
Inbound Ports Required

Always-On, Always Reachable

The Patchblox agent maintains a persistent SignalR connection to your gateway — whether that gateway is on your network or in the Patchblox cloud. No inbound ports on the endpoint. No WMI. No SMB. No Remote Registry. For SaaS customers, the outbound-only connection traverses NAT, firewalls, and proxies — remote devices are just as reachable as the ones down the hall. For self-hosted customers, communications stay entirely on your network.

View device data from the latest inventory — or trigger a quick inventory on any single device and have fresh data in under a minute . Then act on what you see. 200 built-in actions available out of the box, plus a full script repository when you need something custom. Role-based access control determines who can run what. Every action can be run immediately or scheduled. No polling, no "check back in an hour."

Real-Time Action Execution

What You Can Do Right Now

Purpose-built, structured actions with typed inputs, validation, and formatted results — ready to use out of the box. Every action can be run immediately or scheduled for later.

Security & Encryption

Harden endpoints, verify encryption, manage certificates, and enforce security policies across all three platforms.

  • Enable BitLocker / FileVault / LUKS encryption
  • Configure Windows Firewall, macOS Firewall, UFW, firewalld, iptables
  • Install and manage certificates (Windows, macOS Keychain, Linux SSL/TLS)
  • Configure SELinux, AppArmor, Gatekeeper, XProtect
  • Configure LAPS, reset LAPS passwords
  • Audit system security (Lynis, OpenSCAP)
  • Configure Fail2Ban, SSH hardening, sudo access
  • Manage password policies across all platforms

User & Access Management

Create, modify, delete user accounts. Manage group memberships and admin privileges. Reset passwords. Lock accounts.

  • Create, rename, delete local users (Windows, macOS, Linux)
  • Reset user passwords across all platforms
  • Add/remove users from admin groups
  • Manage local group memberships
  • Lock/unlock user accounts
  • Configure PAM modules and sudo access
  • Manage macOS Secure Tokens
  • Bind/unbind Active Directory on macOS and Linux

Software & Updates

Install, update, and remove software. Manage Windows Update, macOS updates, and Linux packages across APT, YUM, DNF, and Zypper.

  • Software update management via Windows Update and Patchblox Package Manager
  • Install packages via APT, YUM/DNF, Zypper
  • Deploy macOS software via PKG and DMG
  • Uninstall macOS applications with cleanup
  • Repair Windows Update agent
  • Install macOS system and security updates
  • Update all Linux packages to latest versions
  • Manage package repositories and clean caches

Network & Connectivity

Configure interfaces, DNS, VPN, proxies, Wi-Fi, and static routes. Flush DNS caches. Test connectivity.

  • Configure network interfaces (Windows, macOS, Linux/Netplan/NetworkManager)
  • Set DNS servers and search domains
  • Flush DNS cache across all platforms
  • Configure VPN clients (IKEv2, L2TP, WireGuard, OpenVPN)
  • Configure Wi-Fi profiles including WPA2/WPA3 Enterprise
  • Manage proxy settings, static routes, network bonding
  • Configure SMB/CIFS and NFS mounts
  • Manage AirDrop, Bluetooth, and Screen Sharing on macOS

Storage & Disk Operations

Disk cleanup, health checks, partition management, backups, and volume operations across all platforms.

  • Perform disk cleanup (Windows, macOS, Linux)
  • Check disk health via SMART diagnostics
  • Verify and repair macOS disks (First Aid)
  • Mount/unmount/eject volumes
  • Manage LVM volumes, RAID arrays, swap space
  • Resize partitions and filesystems
  • Configure Time Machine backups
  • Configure fstab and persistent mounts

System & Device Control

Reboot, shutdown, terminate processes, manage services, configure power settings, and control hardware devices.

  • Reboot and shutdown (Windows, macOS, Linux — immediate or scheduled)
  • Terminate processes by name or PID
  • Stop, start, restart services (Windows services, systemd, LaunchDaemons)
  • Enable or disable hardware devices
  • Wake-on-LAN
  • Configure energy and sleep settings on macOS
  • Set hostname and computer name
  • Configure GRUB bootloader, kernel parameters, kernel modules

Intune & ConfigMgr Operations

Management-plane-specific actions that go beyond what the native consoles offer — repair agents, force syncs, trigger cycles.

  • Force Intune IME re-sync, restart IME agent, reinstall IME
  • Verify Intune agent health and collect Intune logs
  • Trigger Intune remediation scripts on demand
  • Enroll/re-enroll devices in Intune, Autopilot reset
  • ConfigMgr policy retrieval and evaluation cycles
  • Hardware/software inventory cycles on demand
  • Software update scan and deployment evaluation
  • Clear ConfigMgr client cache, run deployments

Scripting & Automation

Run custom scripts or schedule tasks — with signature enforcement and configurable execution context.

  • Run PowerShell scripts on Windows (Authenticode signed)
  • Run Bash scripts on Linux (signed)
  • Run Shell scripts on macOS (signed)
  • Run Python scripts on Linux
  • Schedule cron jobs and systemd timers on Linux
  • Manage macOS Login Items and Launch Agents/Daemons
  • Monaco editor with IntelliSense in the Script Repository
  • Use scripts standalone or as pre/post actions in automation tasks

macOS Device Management

65 macOS-specific actions covering FileVault, Gatekeeper, printers, screen sharing, device lock, remote wipe, and more.

  • Configure Gatekeeper, XProtect, SIP verification
  • Manage Keychain, Secure Tokens, Recovery Lock
  • Configure screen saver, lock screen, login window
  • Manage printers, Spotlight indexing, Content Caching
  • Configure TCC/PPPC permissions (Full Disk Access, Camera, Mic)
  • Lock device, erase device, send messages
  • Check battery health, reset NVRAM/PRAM
  • Upgrade macOS version
Windows (~26 actions) macOS (~65 actions) Linux (~80 actions) Intune (10 actions) ConfigMgr (15 actions) Azure VMs Standalone

For Intune Admins: Query Is Not Enough

Intune syncs policies on an 8-hour maintenance cycle. Push notifications add a 5-minute throttle after the first 8 hours. PowerShell scripts run on a completely separate 8-hour timer that the "Sync" button doesn't trigger. When you need to troubleshoot a device right now, you're waiting.

Intune does offer Device Query — KQL-based read-only queries against ~20 property categories on Windows devices. It requires the Advanced Analytics add-on license. And the key word is read-only. Device Query tells you a service is stopped. It cannot restart it. It shows you a runaway process. It cannot kill it. You can look, but you cannot act.

Patchblox gives you 500+ data views across 18 categories on Windows, macOS, and Linux — with the ability to act on everything you see . Need current data? Trigger a quick inventory on any device — fresh results in under a minute. See a failed service? Restart it. Find an unauthorized scheduled task? Remove it. Spot a suspicious process? Kill it. All from the same portal, across Intune, ConfigMgr, AUM, and standalone devices. No add-on license required.

Real-Time Operations on Intune Device

For ConfigMgr Admins: Beyond Right-Click

The real-time tools you depend on use WMI, SMB, and Remote Registry to reach devices. That works inside your network perimeter, but breaks for remote workers, VPN users, untrusted domains, and cloud-managed devices. They require open firewall ports, local admin rights on the target, and separate proxy infrastructure for every network boundary. If you've ever had to ask a remote user to open a command prompt and read you an IP address, you know the problem.

Patchblox delivers the same operational capability over a persistent encrypted channel that works everywhere. Home office, coffee shop, hotel WiFi — if the device has an outbound HTTPS connection, you can reach it. No firewall rules to manage. No proxy infrastructure per domain. No local admin rights required on the target.

And unlike console extensions that only work inside ConfigMgr, Patchblox works across all three management planes simultaneously. Your Intune devices, your AUM VMs, and your ConfigMgr clients — all from one portal with the same actions.

Cross-Platform Real-Time Operations

How Real-Time Approaches Compare

Not all "real-time" is created equal

Capability
Intune Native
WMI/SMB Tools
Patchblox
Query live device state
KQL / Windows only
Act on what you find
Works off-network / remote
Limited
No inbound firewall ports
On-demand script execution
8-hr timer
No local admin required
Works across untrusted domains
Cloud only
Needs proxy
Cross-platform (macOS, Linux)
Pure Intune (cloud-only) devices
Read-only query
No add-on license required
Advanced Analytics
Enterprise license
Included
No additional infrastructure
RMS + Proxy

The Actions That Change Everything

The real-time operations that Intune and ConfigMgr admins reach for most

Instant Troubleshooting

User reports an issue. Trigger a quick inventory — under a minute you have fresh process data, service status, disk space, software inventory, and network configuration. Then act on what you find — restart services, kill processes, run remediation scripts — all while Intune is still deciding whether to wake the device.

Compliance Verification

Intune reports a device is compliant based on last check-in. Is BitLocker actually on? Is Defender running? Is the firewall enabled? Refresh the inventory and verify actual endpoint state in under a minute, not the cached state from hours ago.

Windows Update Recovery

WU is stuck. Clear the SoftwareDistribution folder, restart the Windows Update and BITS services, force a detection scan — all remotely, all immediately. The alternative is waiting for a Proactive Remediation to maybe run in 8 hours.

Software Audit on Demand

License audit in 48 hours. Trigger a quick inventory sweep and pull the actual installed software list from every endpoint — not inventory data from last week's cycle. Include browser extensions, user-installed apps, and sideloaded software.

Security Incident Response

Suspicious activity on an endpoint. Refresh its inventory immediately and inspect running processes with network connections, check certificates, review scheduled tasks, examine firewall rules — then take action before the attacker moves laterally.

Bulk Remediation at Scale

A misconfiguration affects 500 devices. Execute a targeted remediation across all of them simultaneously with per-device status tracking. Run immediately or schedule for the next maintenance window. Not "deploy a script and check back tomorrow."

View All 200 Actions

Click to expand the full action reference

Windows

Collect Patchblox Inventory
Software Update Management
Software Distribution
Repair Windows Update
Reboot or Shutdown Device
Terminate a Process
Stop or Start a Service
Enable BitLocker
Reset LAPS Password
Configure LAPS
Configure Windows Update Settings
Configure Windows Firewall
Configure Password Policies
Configure Network
Install Certificates
Add or Remove Feature or Role
Add User to Local Group
Delete a Local User
Rename a Local User
Local Group Members
Enable or Disable Device
Perform Disk Cleanup
Run PowerShell Script
Collect Inventory
Add Source to Patchblox Package Manager
Upgrade Patchblox Endpoint Components
Install Patchblox Endpoint Components

Intune

Force IME Re-sync
Verify Intune Agent Health
Restart IME Agent Service
Reinstall IME
Collect Intune Health Logs
Enroll Device into Intune
Re-enroll User
Autopilot Reset
Trigger Remediation
Refresh Device Token

Configuration Manager

Machine Policy Retrieval & Evaluation Cycle
User Policy Retrieval & Evaluation Cycle
Hardware Inventory Cycle
Software Inventory Cycle
Discovery Data Collection Cycle
Heartbeat Discovery Cycle
Software Updates Scan Cycle
Software Updates Deployment Evaluation Cycle
Application Deployment Evaluation Cycle
Install Missing Software Updates
Run Deployment
Clear CCMCache
Wake On LAN
Ping System
Message Tool

macOS

Collect Inventory
Software Update Management
Install MacOS Software Updates
Upgrade MacOS Version
Deploy Software (PKG)
Deploy Software (DMG)
Uninstall Application
Manage App Store Apps
Enable/Configure FileVault
Enable Secure Token
Configure Gatekeeper
Configure XProtect Updates
Verify SIP Status
Configure MacOS Firewall
Configure Password Policy
Configure Login Window Security
Configure Lock Screen
Configure Screen Saver
Configure TCC/PPPC Permissions
Configure Recovery Lock
Install Certificates
Manage Keychain
Manage Local Users
Manage Local Groups
Add User to Admin Group
Reset User Password
Configure Mobile Account
Bind to Active Directory
Unbind from Active Directory
Configure Network Interfaces
Configure DNS Settings
Configure Wi-Fi Profile
Configure VPN
Configure Proxy Settings
Configure SSH/Remote Login
Flush DNS Cache
Configure AirDrop
Configure Bluetooth
Configure Screen Sharing
Configure Remote Management
Configure Content Caching
Configure Software Update Server
Reboot Device
Shutdown Device
Terminate Process
Manage Launch Agents/Daemons
Manage Login Items
Set Computer Name
Configure Energy Settings
Configure Date and Time
Configure Kernel Extensions
Manage Disk Volumes
Verify Disk (First Aid)
Perform Disk Cleanup
Configure Time Machine
Trigger Time Machine Backup
Manage Printers
Manage Spotlight Indexing
Flush System Caches
Clear Print Queue
Check Battery Health
Reset NVRAM/PRAM
Collect System Diagnostics
Collect System Logs
Send Message to Device
Lock Device
Erase Device
Run MacOS Shell Script

Linux

Collect Inventory
Software Update Management
Update All Packages
Install Packages (APT)
Install Packages (YUM/DNF)
Install Packages (Zypper)
Remove/Purge Packages
Manage Package Repositories
Clean Package Cache
Configure Unattended Upgrades
Configure UFW Firewall
Configure firewalld
Configure iptables Firewall
Configure SELinux
Configure AppArmor
Configure Fail2Ban
Configure SSH Security
Configure LUKS Encryption
Configure Password Policy
Configure PAM Modules
Configure sudo Access
Install SSL/TLS Certificates
Rotate SSH Keys
Audit System Security
Create Linux User
Modify Linux User
Delete Linux User
Reset User Password
Lock/Unlock User Account
Manage Linux Groups
Configure LDAP/AD Integration
Configure Network Interface
Configure Netplan
Configure NetworkManager
Configure DNS Resolver
Configure Static Routes
Configure Network Bonding
Configure VPN Client
Configure Proxy Settings
Configure SMB/CIFS Mounts
Configure NFS Mounts
Flush DNS Cache
Reboot Device
Shutdown Device
Terminate Process
Manage systemd Services
Manage SysVinit Services
Configure Hostname
Configure Timezone
Configure Locale
Configure Environment Variables
Configure Kernel Parameters
Manage Kernel Modules
Configure GRUB Bootloader
Wake-on-LAN
Configure SNMP Agent
Configure Ansible Agent
Configure NTP Time Sync
Configure Mail Relay
Check Disk Usage
Check Disk Health (SMART)
Check Memory Usage
Perform Disk Cleanup
Manage LVM Volumes
Manage RAID Arrays
Manage Swap Space
Resize Partition/Filesystem
Mount/Unmount Volume
Configure fstab
Manage Printers (CUPS)
Manage Docker Containers
Schedule Cron Job
Configure systemd Timer
Performance Tuning
Configure Process Limits
Configure rsyslog
Configure journald
Configure Logrotate
Collect System Logs
Clear Log Files
Collect Hardware Information
Run System Health Check
Run Bash Script
Run Python Script

Azure

Start or Stop Azure Virtual Machines

See Real-Time in Action

Schedule a live demo and watch us interact with an endpoint — no scripts, no delays, no waiting

Schedule a Demo Back to Platform