Manage off-domain PCs
Hi all - Since COVID has hit, we have a larger number of users working from home with IT-provided laptops. Everything was going fine but all of a sudden a lot of users are locking the local accounts and since they're at home, we have no way of helping without the users bringing the laptops back. We have the users RDP in by going through a RDP gateway; so there is no VPN involved. Is there a way to set up Desktop Central to be able to manage those laptops?
Critical Vulnerabilities
We have received notification of a critical vulnerability CVE-2019-1182 How long does a vulnerability take to appear within 'Critical Vulnerabilities'? https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1182
New to DC10 needs help Uninstall Cisco Email security pluging
i need to remove Cisco Email Security plugin that was previously manually installed in several computers. Some post in here and in other forums recommend doing it from Inventory\Software and using the uninstalling feature instead of creating a uninstall package. I read further more and discovered that either using regedit or powershell i should be able to find the uninstallationstring However the information i gather from it seems funky if i compare that to other who are able to get a clean string
Decline Superseded Patch
I show a windows 10 server pack needs to be installed on one machine, service pack 1709. However the machine is already patched to 1803. Since the checkbox for the patch is greyed out as it is superseded, how can i decline the patch in hopes of desktop central not incorrectly reporting that it is still needed?
How to check logs to identify why the installation failed?
Hi, I'm deploying custom scripts to many machines, of which some of them are successfully deployed, while the rest encounters the generic error "Script fails with error :. Unknown error -1073741819". Look forward to receiving your kind support.
DesktopCentral and MSSQL on linux
As I understand DesktopCentral migration to MSSQL needs "SQL Browser" service but unfotunately MSSQL on linux does not support it. Is there some kind of workaround to get this setup working? Why does DesktopCentral needs "SQL Browser" anyway? ServiceDesk can be set up without "SQL Browser" service.
POST request to Patch Management API
When trying to initiate a POST request using Python requests library to api/1.3/patch/downloadpatch I get the following response back. {"error_description":"No Patches Specified","message_type":"downloadpatch","error_code":"3004","message_version":"1.3","status":"error"} My code is as follows: headers = { "username": "<redacted username>", "password": "<redatcted password>", "auth_type": "ad_authentication", "domainName": "<redacted domain>", "Authorization":"<redacted auth token>",
Leveraging APIs with powershell
I am trying to wrap my head around the APIs. I have successfully been able to connect and authenticate via the API but I am wondering how I would query for all unapproved windows patches via the API? I also would like to be able to query specific computers for missing patches and store the results.
Desktop Central Service Account for connecting Active Directory
Does anyone know if its possible to connect Desktop Central to AD without having a domain admin account? I don't want to have to assign the service account domain admin privileges. Ideally, we can assign it specific permissions to read/enumerate user and computer accounts. I would be surprised to find out if banks or government agencies would allow a service account to have full domain admin privileges. Can we get more granular with the permissions required for the service account that connects DesktopCentral
Feature update 2004 multilanguages
Hi everyone, I'm currently test the feature update deployment for 2004 win10 upgrade but I have a problem with languages version (Unknown error code : 50006) We have 3 different languages in our office, fr-FR, fr-CA and en-EN Is it possible to add 3 diffrent ISO in the update repository? Thanks, Léo
Patch in Applied Status is Missing
Dear all, We are using Manage Engine Desktop Central to apply patches to our clients. I came across with an issue that might pose a risk in my opinion. We patch the clients and then make a cross check using Nessus Patch audit. Nessus found that, KB4484284 was missing in some clients. When I checked on Desktop Central console, it was in applied status in most of the clients. Then I tried to deploy this patch manually. I have chosen the package and tried to deploy. All deployments ended with non-applicable
KB4540673 and KB4528760 installation issues
Has anyone ran into issues trying to install KB4540673 and KB4528760? Were you able to resolve the issue?
Per Remote Office Dashboard and Permissions
Hi there, Desktop Central has this nifty Dashboard in it's Patch Management component and I would like to know if it is possible to have Dashboard for each Remote Office by itself. That would be super helpful to see the health of each of our supported locations at a glance. Also, is it possible to assign permissions to only a limited subset of the Remote Offices or managed devices to a technician? Example: Technician A can perform patching to location 1, 2 and 3 Technician B can perform patching
Desktop Central does not send installation of MS Office
Guys, I'm trying to make installation packages for Office 2013, 16 and 19 and I'm not getting it. I set up the installations on a VM (without doing it through Desktop Central) and it worked perfectly. Ai configuring the Central Desktop it does not send and is only on hold. What could be happening?
ACCESS REPOSITORY
Hi, i want view the desktop central DB repository , it's possible? I need to write query manually. Thanks
Add a Custom Dynamic Group to a configuration
Hello, I have created a configuration which's renames a file and places a new one. I also created a dynamic group with all machines containing the software regarding the renaming/replacing. Now I want to add the group to the target list but I can only add the customs static groups, the dynamic ones are not in the list. is this not possible? It is useful if the dynamic list updates itself if there are clients who also have the specific software installed. Regards, Mark
How to Block All .exe and .msi
Hi All, I want to block all .exe and .msi to run via Desktop Central. I am trying to use the option in inventory named as "block executables" but when I type "*.exe" and "*.msi" to block all msi and exe packages I get an error. Can anyone help me to block all software executable and allow only the ones I want them to use.
Python API support for Desktop Central
Hi I would like to know how can i use api to get details of a computer on desktop central actually looking for python based sdk if available can you please give me some pointers Best Regards Prasanth
Switch SQL server
Hi guys, i migrate my database to another sql server. Where can i change the servername for desktopcentral access to this new server ?
Machines reporting to Desktop Central
Is there a way we can email the assigned user of a desktop or a laptop that they have not connected to the network for x number of days and thus remind them to do so, so that Desktop Central might be able to push necessary updates to their computers?
Setup Agents to talk while not on the network
Does any have a detailed document on how to setup Desktop Central to talk to an agent while it is on a corporate network/vpn? I installed the Secure Gateway Server but can't seem to get it to negotiate. Using Fortigate for my firewall.
Default apps in Kiosk
Hi Must be a common thing but cannot find this anywhere. We use Kiosk mode to lock down many of our Android (v9) phones and deliver selected apps. Problem is how do you get default apps such as "Phone" "Messaging "Camera" to appear in Kiosk so the user can access them? Thanks LCD
Security updates for Microsoft Edge (Chromium - based)
Hello everyone, Security updates for Microsoft Edge (Chromium-based) has been released to fix several vulnerabilities. The details of the vulnerabilities addressed are as follows: CVE-ID Vulnerability details Severity CVE-2020-6510 Heap buffer overflow in background fetch Critical CVE-2020-6511 Side-channel information leakage in content security policy High CVE-2020-6512 Type Confusion in V8 High CVE-2020-6513 Heap buffer overflow in PDFium High CVE-2020-6514
Critical remote code execution vulnerability in Windows DNS server (CVE-2020-1350)
Hello there, Patch Tuesday July 2020 comes with a fix for the critical vulnerability CVE-2020-1350 in Windows DNS Server. This vulnerability is classified 'wormable' and has been given a CVSS score of 10. Cause of this vulnerability: This vulnerability exists due to the improper handling of requests by Windows Domain Name System (DNS) Servers. Impact of this vulnerability: To exploit this vulnerability, an unauthenticated attacker should send malicious requests to a Windows DNS server.
Desktop Central Silent Install using MDT
I am trying to deploy DesktopCentralAgent.msi using MDT 2013. I know that you can deploy using GPO but I would prefer to use MDT. The issue I'm having is none of the silent switches will work. Any advice would be greatly appreciated.
Notifications via the Mobile App?
It look like one of the more recent builds includes mobile app-based notifications? Is anyone using that functionality? I wanted to get some impressions on what notifications are available via the app (which IMO is sorely in need of functionality updates, it's pretty pitiful what you can do in the app vs the desktop interface).
Patch Tuesday July 2020 - Supported updates
Hello everyone, Below is breakdown of all the updates released this Patch Tuesday. New Security Bulletins : 2020-07 Servicing Stack Update for Windows 10 Version 1809 and Windows Server 2019 (KB4558997) 2020-07 Servicing Stack Update for Windows 10 Version 1803 (KB4565552) 2020-07 Servicing Stack Update for Windows 10 Version 1709 (KB4565553) 2020-07 Servicing Stack Update for Windows 10 Version 1903 and Windows Server, version 1903 (KB4565554) 2020-07 Servicing Stack Update for Windows 10 Version
Google stable channel updated to 84.0.4147.89
Hello everyone, Chrome 84 has been updated to stable channel 84.0.4147.89 for Windows, Mac, and Linux. Various security issues have been fixed with this release, the details of which are as follows: CVE-ID Vulnerability details Severity CVE-2020-6510 Heap buffer overflow in background fetch Critical CVE-2020-6511 Side-channel information leakage in content security policy High CVE-2020-6512 Type Confusion in V8 High CVE-2020-6513 Heap buffer overflow in PDFium High
When are DC going to support WhatsApp, fully?
Hi guys, You seem to now support it as a templated software deployment product, for Windows only. However, you do not seem to support it for patching and you don't support the Mac version at all. Cheers, David.
Identify unused software packages
Can a report be run to identify software packages not associated with "Configurations" or "Custom Groups" ?
Test new ticket
test
Office 2019 & Apple MAC
Hi ALL! I have DC 10 and several MacBook PRO (as AD domain members) How i can setup Office 2019 to my MackBooks via DC ??
Combine Patch Manager Plus Cloud with Desktop Central
Hi, we are Desktop Central users (on-premise) and I have seen that Patch Manager Plus has a "Cloud" version. Is there a way to combine cloud patching in our current Desktop Central management? We would like to update patches in remote users and foreign delegations (without a remote on premise server for each delegation). Thanks.
Is there a proper way to deploy multiple application installs in a single configuration
We have our software install configuration to deploy multiple application (usually about 12 packages). This was working properly until the upgrade to 10.0.518, now the process fails and install only a few packages. Usually this can be resolved by rebooting the computer and a few more packages get installed. Is there a limit to the number that should be pushed in a single configuration? or is this a bug i the new release? Should we be using a different method to push several applications together?
Microsoft Visual C++ 2015-2019 Redistributable (14.26.28720)
Hi everyone Has anyone looked into these two updates that Desktop Central offers as third-party updates? Microsoft Visual C++ 2015-2019 Redistributable (14.26.28720) - patch ID 31457 Microsoft Visual C++ 2015-2019 Redistributable (x64) (14.26.28720) - patch ID 314573 Reason I am asking: DC says these updates are missing, however, Microsoft Update, WSUS and a third-party vulnerability scanner do not show these updates as missing. The fact that Microsoft does not even offer these updates via Microsoft
How to deploy Powershell script for installation of Bitlocker through MBAM?
Hi, In my case, I wanna deploy a Powershell script for Bitlocker through MBAM. On Desktop Central, I deployed the following script as a package under "Software Deployment": "powershell.exe -ExecutionPolicy RemoteSigned -file Invoke-MbamClientDeployment.ps1" However, it requires some specific parameters, such as "Recovery Service Endpoint". So what does the revised syntax should be on Desktop Central? For example, here is the command line, which has been successfully run on Powershell: Invoke-MbamClientDeployment.ps1 -RecoveryServiceEndpoint
Autodesk Civil 3D packages
Hi, Has anyone had any luck (or attempted) creating a deployment of AutoCAD's civil 3D (either 2019 or 2020) and be able to deploy it using DC? We have a command line that works either from the PC itself or using a remote command line. Our command line that works is: \\domain.com\shares\DCShare\Autodesk_Civil3D_2020\Img\Setup.exe /q /I /w \\domain.com\shares\DCShare\Autodesk_Civil3D_2020\Img\AutoCad_Civil_3D_2020.ini When we try to deploy it just seemingly hangs and after the 4-hour time out it'll
Job history for Automatic Patch Deployment
Hi, We have two automatic patch deployment routines configured to run every fortnight. Is there any way to view the history of those routines to see when they last ran, what computers were patched and what patches were installed? Also can this information be got by way of a scheduled report? thanks Ed.
Feature request: Mac encryption reboot behaviour
Hi, I have a problem patching macOS systems that are encrypted using FileVault 2 -- when the system reboots, it requires the user to be present to enter the password for filevault to unlock the disk. This means that automatic patching of encrypted macs is not possible, as they do not automatically start up again afterwards. However, it looks like it is possible to use an encryption bypass option when initiatting the reboot: https://derflounder.wordpress.com/2012/09/22/fdesetup-authrestart-filevault-2s-one-time-encryption-bypass-feature/
Google releases chrome stable channel update 83.0.4103.116
Hello everyone, Google has updated its chrome stable channel to 83.0.4103.116 for Windows, Mac, and Linux. This following high severity vulnerability has been fixed in this release. CVE-2020-6509: Use-after-free in extensions To patch this vulnerability using Desktop Central, initiate a sync between the Patch Database and Desktop Central server. Once this is done, search for the following Patch IDs or Bulletin ID and install them in target systems. Patch ID Bulletin ID Patch Description 314753
Next Page