Fleet Device Management
UnclaimedOpen-source device management for Apple, Linux, Windows, and Android endpoints.
Visit WebsiteFreemiumVisit Website
TL;DR - Fleet Device Management
- Manages and secures Apple, Linux, Windows, and Android devices.
- Offers flexible deployment (cloud or self-hosted) and GitOps support.
- Provides comprehensive inventory, software management, and remote control capabilities.
Pricing: Free plan available
Best for: Growing teams
Pros & Cons
Pros
- Supports a wide range of operating systems, including Linux, which is often underserved by other MDMs.
- Offers both cloud-hosted and self-hosted deployment options without feature restrictions.
- Embraces an open-source model, promoting transparency and community contributions.
- Provides GitOps capabilities for managing device configurations as code.
- Features rapid device reporting, often under 30 seconds.
Cons
- Some advanced security features like Binary authorization and Asset discovery are marked as 'coming soon' in the free tier.
- The free version lacks dedicated email, phone, or video call support.
- Mobile device management features like 'Mobile not supported' are noted in comparisons with other tools, indicating potential limitations for some mobile-specific functions compared to dedicated MDMs.
Key Features
Multi-platform MDM support (Apple, Linux, Windows, Android)Zero-touch setup and BYOD enrollmentComplete device inventory and targeted device scopingApplication deployment and self-service installationScript execution and device remediationRemote lock and wipe commandsConfiguration as Code (GitOps)Real-time device reporting (<30 seconds)
Pricing Plans
Free
$0/host / month
- Multi-platform MDM support
- MDM migration
- Zero-touch setup
- Bring your own device (BYOD) enrollment
- Work profiles for personal (BYOD) Android
- Account-based user enrollment for iOS/iPadOS
- User account sync
- Human-endpoint mapping
- Device inventory
- Search inventory
- Targeted device scoping
- Enforce operating system (OS) updates
- Enforce OS settings
- Declarative Device Management (DDM) support for configuration profiles
- Device health
- Application deployment
- Self-service application installation
- Script execution
- Device remediation
- Send lock and wipe commands
- Queries
- Custom tables
- Labels
- Policies
- Reporting
- Managed cloud
- Self-hosted
- Multi-tenancy
- Deployment tools
- Configuration
- Control agent versions
- Command line tool (CLI)
- GitOps
- Two-factor authentication
- Role-based access control
- Scope transparency
- REST API
- Webhooks
- Single sign-on (SSO)
- Grant Wi-Fi access
- Third-party automation
- Third-party orchestration
- Munki compatibility + visibility
- Open-source issue tracker (GitHub)
- Community Slack channel
Premium
$7.00/host / month
- Multi-platform MDM support
- MDM migration
- Zero-touch setup
- Bring your own device (BYOD) enrollment
- Work profiles for personal (BYOD) Android
- Account-based user enrollment for iOS/iPadOS
- User account sync
- Human-endpoint mapping
- Human-endpoint mapping (IdP groups)
- Device inventory
- Search inventory
- Targeted device scoping
- Enforce disk encryption
- Enforce operating system (OS) updates
- Enforce OS settings
- Declarative Device Management (DDM) support for configuration profiles
- Device health
- Application deployment
- Self-service application installation
- Application management*
- Script execution
- Device remediation
- Maintenance windows
- Send lock and wipe commands
- Queries
- Query performance monitoring
- Custom tables
- Remote settings
- Teams
- Labels
- Policies
- File integrity monitoring (FIM)
- File carving
- Binary authorization*
- Reporting
- Incident response
- Custom logging
- Malware detection (YARA/custom IoCs)
- Continuous scanning
- Vulnerability scores
- CISA KEVs
- Asset discovery*
- Managed cloud
- Self-hosted
- Multi-tenancy
- Deployment tools
- Configuration
- Private update registry
- Control agent versions
- Command line tool (CLI)
- GitOps
- Two-factor authentication
- Role-based access control
- Audit logging
- Scope transparency
- REST API
- Webhooks
- Grant API-only access
- Single sign-on (SSO)
- Automatic user creation (JIT, SCIM)
- Grant Wi-Fi access
- Third-party automation
- Third-party orchestration
- Munki compatibility + visibility
- Open-source issue tracker (GitHub)
- Community Slack channel
- Unlimited email support (confidential)
- Phone and video call support
Custom
Contact us
- All features
About Fleet Device Management
By Toolradar Team·
Fleet is an open-source device management platform designed for IT and security teams to configure, update, and secure a wide range of computing devices, including laptops and servers. It supports Apple, Linux, Windows, and Android operating systems, providing comprehensive control over endpoints.
The platform enables remote management, task automation through orchestration (like app installs and script execution), and robust software management for inventory, patching, and updates. Fleet emphasizes flexibility with deployment options, allowing users to host it themselves or utilize a managed cloud service, and supports management via UI, API, or GitOps for infrastructure as code. It is particularly beneficial for organizations seeking to eliminate tool overlap and streamline device management across diverse operating systems, offering deep visibility and control over their entire device fleet.
Fleet is built on an open-core model, with a significant portion of its code, documentation, and content being public and source-available. This approach fosters transparency and community contributions, while also providing enterprise-grade features and support through its paid offerings. It aims to empower IT and cybersecurity teams to move quickly on strategic projects, reduce complexity, and ensure secure, compliant device environments.
Reviews
No reviews yet. Be the first to review Fleet Device Management!
Best Fleet Device Management Alternatives
Top alternatives based on features, pricing, and user needs.
N-ablePaid
End-to-end cybersecurity and IT management solutions for managed service providers and IT departments.
DatadogFreemium
Cloud monitoring platform
FalcoFree
Cloud-native runtime security
DynatracePaid
Full-stack observability and AIOps platform
ElasticFreemium
The Search AI Company powering search, observability, and security with open and flexible solutions.
Grafana OnCallFreemium
On-call management for Grafana
Explore More
Fleet Device Management FAQ
How does Fleet's GitOps for device management work, and what are its benefits?
Fleet's GitOps integration allows you to manage device configurations, policies, and scripts as code within a Git repository. This approach enables version control, auditability of all changes, and the ability to roll back to previous states, ensuring consistency and reliability across your device fleet. It streamlines infrastructure management by applying software development best practices to device configuration.
Can Fleet manage both corporate-owned and employee-owned (BYOD) Android devices, and how does it handle privacy for BYOD?
Yes, Fleet supports both corporate-owned and BYOD Android devices. For BYOD, it utilizes Android Work Profiles to create a separate, managed container for work-related applications and data, keeping personal data private and unmanaged. This ensures corporate security policies are enforced without compromising employee privacy on their personal devices.
What is the typical latency for device reporting and how does Fleet achieve this speed compared to other solutions?
Fleet achieves device reporting typically under 30 seconds. This speed is attributed to its efficient architecture and use of osquery, which allows for real-time, low-impact querying of device state. This contrasts with many traditional MDMs that might have reporting intervals of several hours or rely on one-off scripts for data collection.
How does Fleet's open-source nature impact its security capabilities and transparency for security engineers?
Fleet's open-source core provides complete transparency into its code, allowing security engineers to inspect its workings, contribute to its development, and verify its security posture. This open approach fosters a strong community that identifies and addresses vulnerabilities, enhancing the platform's overall security and trustworthiness, especially for organizations with stringent security requirements.
What specific integrations does Fleet offer for existing IT and security toolchains, beyond just a REST API?
Beyond a comprehensive REST API and Webhooks, Fleet offers integrations for Single Sign-On (SSO) with automatic user creation (JIT, SCIM), and compatibility with third-party automation and orchestration tools. It also has specific support for Munki, a popular open-source software deployment tool for macOS, providing visibility and management capabilities within Fleet.
Does Fleet provide any mechanisms for enforcing disk encryption and operating system updates across different platforms?
Yes, Fleet can enforce disk encryption and operating system updates across supported platforms. For macOS, it leverages Declarative Device Management (DDM) support for configuration profiles to ensure compliance. For other operating systems, it provides policies and scripting capabilities to mandate and verify that devices meet specified encryption and update requirements, enhancing overall security posture.
Source: fleetdm.com