← Back to News
Product Launch June 8, 2026 by Obsidian Group

Introducing Vigil Platform

Today we're officially introducing Vigil — the MSP automation and client portal platform built in-house by Obsidian Group. Vigil brings patch management, unified enrollment, Ansible playbooks, security monitoring, and threat intelligence together into a single cohesive system.

vigil platform patch-management ansible automation

We've been building and running Vigil internally for over a year, and today we're making it official. Vigil Platform is Obsidian Group's purpose-built MSP automation and client-portal platform — designed to replace the fragmented stack of SaaS tools that most MSPs stitch together, and replace it with something cohesive.

Why we built it

Every off-the-shelf MSP platform we evaluated had the same problem: they're either too expensive for small and mid-size businesses, require separate logins for every function, or simply don't integrate the way modern hybrid environments need them to. We needed a single system where patch management, enrollment, security monitoring, and automation shared context — so we built one.

What Vigil does today

  • Patch Management — Linux servers via Ansible/Semaphore, Windows workstations via ManageEngine, with maintenance windows, compliance reports, and CISA KEV cross-referencing.
  • Unified Enrollment — One bootstrap script that deploys Wazuh, Tactical RMM, Fleet osquery, and Ansible SSH access in a single run. Per-service toggles, x86_64 and ARM64 support.
  • Ansible Playbook Library — A curated catalog of 8 built-in playbooks (security hardening, fail2ban, disk cleanup, key enforcement, and more) plus a YAML editor for custom playbooks. Deployed directly to Semaphore from the portal.
  • Security Monitoring — Wazuh SIEM integration with agent status, alert surfacing, and FIM visibility per org.
  • Threat Intelligence — OpenCTI integration with live KEV tracking cross-referenced against your device inventory.
  • Remote Operations — Tactical RMM for real-time access and script execution; Fleet osquery for live endpoint queries.

Phase 2: automated Ansible push

Phase 2 of enrollment removes the manual bootstrap entirely. Once an org's SSH credentials are confirmed, Vigil manages the host inventory, syncs it to Semaphore automatically, and deploys playbooks on demand — including enforcing key-only SSH across the fleet. We're rolling Phase 2 out to active clients now.

What's next

Over the next few releases we're adding SSH connectivity verification directly from Vigil, auto-population of the host registry from enrolled Tactical RMM and Fleet devices, scheduled playbook runs, and a compliance dashboard that maps patch status against CISA KEV severity by org.

Vigil is available to all Obsidian Group managed services clients. Get access → or contact us to learn more.

← All news