Patch Tuesday June 2020 - Supported updates
Hello everyone, This month, we are witnessing the largest ever Patch Tuesday with 129 security fixes. Here is the list of supported updates New Security Bulletins : 2020-06 Security Update for Adobe Flash Player for Windows (KB4561600) 2020-06 Security Only Quality Update for Windows Server 2008 (KB4561645) (ESU) 2020-06 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4561669) (ESU) 2020-06 Security Only Quality Update for Windows Server 2012 (KB4561674) 2020-06 Security
Install and configure Windows SNMP from Desktop Central
Hello Support. We currently have Desktop Central v10.0.518 to manage Windows Server 2019 servers. From the Desktop Central console, is it possible to install and configure the SNMP Server component? We are in need of installing the SNMP component, as well as configuring the SNMP community and parameters. Regards, Rafael Vega.
Patching In Progress - stuck on offline machines
Here's the situation: I have a production deployment that consists of 1400 machines. We are at roughly 80% complete however, there is a list of 11 machines that have the status of "Patching in Progress." The problem here is that 9 of those machines have shown as offline for the last 3 days. This seems to be causing an issue to where the remainder of the machines are falling behind on getting patched. The WOL Status is always listed as "In Progress." and the WOl Remarks are listed as Processing wake
Chrome releases security updates to fix critical vulnerabilities
Hello everyone, Chrome has updated its stable channel to 83.0.4103.97 for Windows, Mac, and Linux. This update comes with security fixes for several vulnerabilities. The details of the vulnerabilities are as follows: CVE ID Vulnerabilities Severity CVE-2020-6493 Use after free in WebAuthentication High CVE-2020-6494 Incorrect security UI in payments High CVE-2020-6495 Insufficient policy enforcement in developer tools High CVE-2020-6496 Use after free in payments High To patch these vulnerabilities
Asset disposal
Hi I use DTC along with ServiceDesk Plus is there a way to mark/delete an asset in DTC and for it to appear in SDP as disposed of. I need to keep the history of the item in SDP within my CMDB but am happy to get rid of the item in DTC?
Build Version:10.0.550 Inventory -> Configure Alerts not working.
Hi ! Fresh instalation: Build Version:10.0.550, Mail Server Settings - setup OK. But can't access Inventory -> Configure Alerts https://localhost:8383/webclient#/dc/inventory/configure-alerts nothing shows up and can't setup email alerts. On old build Version:10.0.479 is Inventory -> Configure Email Alerts - still working good. You can setup alerts. Any help ? THX.
Chrome stable channel update fixes 3 vulnerabilities
Hello folks, Google has updated its chrome stable channel to 83.0.4103.106 for Windows, Mac, and Linux. This update comes with fixes for three vulnerabilities. The details of these vulnerabilities are as follows: CVE ID Vulnerability Severity CVE-2020-6505 Use after free in speech High CVE-2020-6506 Insufficient policy enforcement in WebView High CVE-2020-6507 Out of bounds write in V8 High To install this update using Desktop Central, initiate a sync between the Patch Database and Desktop
Windows SMB protocol hit again by a new critical vulnerability - SMBleed
Hello everyone, A mere three months after patching a wormable SMBv3 vulnerability dubbed SMBGhost (CVE-2020-0796), cybersecurity researchers have identified another similar vulnerability in Windows SMB protocol. This vulnerability is called SMBleed (CVE-2020-1206) and has a severity rating score of 10. What is SMBleed? SMBleed is a new critical wormable vulnerability found in the Windows Server Message Block (SMB) protocol. This vulnerability allows attackers to leak kernel memory remotely. SMBleed
Unknown Error. Code : -2145116137
On a Windows 2008 R2 server I am getting this error code. Please advise.
Anyone else unable to deploy a registry entry with curly brackets?
I'm trying to deploy a registry configuration to my workstations, but if the value I'm trying to deploy has curly brackets { }, the page just hangs and doesn't submit. If I remove the curly brackets and leave everything else the same, the configuration is created just fine. This is a problem of course because I need the curly brackets. Has anyone else encountered this? Here's the registry entry I'm trying to push. Windows Configuration > Registry (Computer) Action: Write Value Header Key: HKLM Sub-Key:
Creating custom Dynamic group with a pipe | in the software name generates a error
This is a bug report. Server version tested with is 10.0.529 Steps to recreate: 1. Go to the Create New group screen and Dynamic for the group type 2. Select the following, Columns - Software Name, Criteria - Equal, Value - Dell Command | Update 3. Click Create group - A error comes up saying something went wrong If the Pipe is removed from the name, I can create the group, but it no longer works with equals, need to change the condition to contains.
repairing agents with msiexec.exe [/f{p|o|e|d|c|a|u|m|s|v}] <product_code>
Looking for help creating/modifying a script to update/repair agents that can be deployed via group policy Ideally looking for something to launch at startup/shutdown to update/repair agents that can't be reached via console. Agents that have failed to upgrade automatically would benefit from being repaired/upgraded via script deployed via group policy, currently an official script released for installing agents, but would be ideal if it would include repair options if needed. https://www.manageengine.com/products/desktop-central/psinstallagent.txt
MDM - Oppo, Model CPH1851
We are trying to enrol a Oppo, Model CPH1851 into the MDM. While the device enrols, we are unable to get emails to show up on the device, e.g. when we enrol a Samsung device, it automatically uses the GMail app to connect the user to the corporate emails. Has anyone else found any issues getting Oppo devices into MDM and if so, what is the workaround?
Mozilla releases security fixes for Firefox 77
Hello everyone, Mozilla has released security fixes for vulnerabilities in Firefox 77. The details of the vulnerabilities fixed are as follows CVE ID Vulnerability Severity CVE-2020-12399 Timing attack on DSA signatures in NSS library High CVE-2020-12405 Use-after-free in SharedWorkerService High CVE-2020-12406 JavaScript type confusion with NativeTypes High CVE-2020-12407 WebRender leaking GPU memory when using border-image CSS directive Moderate CVE-2020-12408 URL spoofing when using IP
Rollout of Windows 10 2004 Feature updates
Hello All, A Quick heads-up, Microsoft has released its Windows 10 2004 feature updates for users. Below you can find a few highlights of this feature update. Fast identity authentication through Windows Hello is now supported across all major browsers. Windows Defender system guard enables a higher level of firmware protection. Setup Diag is automatically installed. Improvements in Windows Powershell cmdlets. Go ahead and read this document to know what the pre-requisites are and how
Critical issue while deploying Cisco Webex patch
Hello everyone, The Cisco Webex patch with Patch ID 313977 was released on Apr-28-2020 at 04:40 pm GMT. Regrettably, on installing this patch in certain machines, few of our customers got in touch with us stating a few issues. Following this, the patch was removed from the Desktop Central repository on the morning of Apr-29-2020, for further analysis of the situation. Issue when deploying Cisco Webex patch: Customers who have synced the database and deployed the Cisco Webex patch in the following
Stopping a custom script from running
Hello, We have a need in our org to disable workstations and we do this by running a script to shut down a workstation using 'shutdown /s /f'. In Desktop Central, we set this to run at every startup. The issue were finding with this method is that we can't stop the script from running on the target workstation even after removing it from the configuration. Would we have to manually remove the script from the target machine to stop the script from running? If so, is there a directory that the script
Desktop Central patch management cloud install for Remote Workers
Hi, since Covid-19 about 95% of our staff is now working from home. We have to be able to approve patches for our systems. All of our systems connect through a vpn however we do not want the patches to push to system through vpn because it causes bandwidth issues. We have heard there is an option to have employees working from home to receive the patches directly from the cloud and not from the DC server repository. Essentially they would receive the patch approval through vpn but the actual patches
Configuration/Software Baseline for Client Computers
Hi, I am trying to automate deployment of a Root Certificate to client machines(not servers) for a certain domain, so when a computer is added to a "OU" or a "Dynamic Group" the Root Certificate is deployed automatically. I have created a Computer Collection deployment and selected the Domain and added a Dynamic Group to the "Filter Computers based on" but the deployment gets executed and never installs the Root Certificate to new computers added to the Dynamic Group. I followed this Guide: https://www.manageengine.com/products/desktop-central/security-policies-baselining-how-to.html
Patchscan timeout
Hello, i have a problem with desktop central. first the setup: i installed windows central 10 on a windows server 2019 essentials with installed domain controller in a virtual machine for evaluation purposes. Agent installed fine on the machine. But when i start the patchscan i always get a timeout. Checked the article for that but no success. Any help is appreciated. thanks and best regards
For Desktop Central Input Form
Hi All I have requirement to create a form which can be popped up from Desktop central to update data to custom Fields in Desktop Central. How can this be done. Is there a form input supported in DC ?
Inventory - how to track periperal devices ?
Hello everyone! We use the Desktop Central Professional edition. We utilize it to keep track of our inventory. I noticed that peripheral devices disappear eventually when unplugged (e.g. a user has two monitors and disconnects one). Is there an option to choose which peripheral devices will stay listed indefinitely? The reason I ask: If I issue a computer with two monitors to a user, I want to be able to keep track of the computer and both monitors. Even if the user unplugs the second monitor
Desktop Central Database Schema
Hi, Can anybody help me in getting the schema, table/View relationship of Desktop Central Database? Thank You Regards Rakesh Mohapatra
Chrome 83.0.4103.61 fixes 38 security flaws
Hello everyone, The latest stable version of the web browser ' Google Chrome ', version 83.0.4103.61, aka Chrome 83, is released for Windows, Mac and Linux. This update contains 38 security fixes and packs a number of new features including enhanced privacy controls, new settings for managing cookie files, a new Safety Check option, support for tab groups, new graphics for web form elements, a new API for detecting barcodes, and a new anti-XSS security feature. Here's a quick glance at the list
How do you properly pass script arguments?
It's unclear to me how to type arguments so they pass to the script properly. Let's take the DeleteUnusedLocalProfiles.ps1 script you provide in the Script Repository Templates. It says Script Arguments: "<No. of days not used>" When I type the number of days, do I type 30 or "30" or "<30>" ? Thanks.
Is it possible to set who can edit scripts in the Script Repository?
Hello, I am wondering is it possible to set up permissions where a user could access the script repository and execute scripts but cannot edit the scripts in the repository. Right now we have it set up where our technicians can execute them and edit the scripts, we would only like them to be able to execute them. We have tried changing some roles/editing some roles so that Configurations is in Read Only but this removes access to the repository. Any help would be much appreciated with this Thank
Find computer that user has logged on to
Hi, I occasionally have a requirement to where I need to find the computers that an AD user has logged in to. This is because often a user will say "I need help with my computer" but will not include the name of the computer in their request. Is there a way I can provide the username and have AD give me a report of the computers that username has been found on? Many thanks!
Software installed but Patch not applicable?
Hello, short Question, according Desktop Central, the Software is installed in a minor Version, but the Patch is not applicable? 1. Installed Software at Example Desktops: 2. Patch for Deployment: 3. Not Applicable Message I configured the Task as "Patch Installation"....could it be, that DC think, Version 15.5.xx is not applicable because the installed Version is 15.1.xx? But if i choose "Software Deployment", did DC install the new Version 15.5.xx additionally or did DC upgrade the existing Version
Domain Trust Relationship
Like many companies, we have moved our workforce to a remote model. The computers were all created in Active Directory and had been joined to the domain prior to moving remote. We are managing these devices using Desktop Central from a server in the DMZ. To make the transition a smooth one when our offices are open and the devices can be put back on the network, can anyone confirm if the computer accounts will remain active or will they lose the trust relationship with the domain since they are
Zoom Update 4.6.20033.0407 not working
Hi, Today a patch for Zoom was available. None of our clients show this patch as needed (installed version 4.6.19253). Patch version is Zoom (4.6.20033.0407). If apply this patch log shows: Patch detected as Not applicable since its components are available in the system through other patches deployed in the same configuration or due to some other reason. Any advice appreciated. Thanks, Juergen
Adobe releases patches for vulnerabilities in Reader and Acrobat
Hello everyone, In this month's security release, Adobe has fixed security vulnerabilities in Reader and Acrobat for Windows and macOS. If these vulnerabilities are exploited, they could cause remote code execution attacks and information leaks. The details of the vulnerabilities are as follows: CVE-ID Severity Impact CVE-2020-9610 Important Application denial-of-service CVE-2020-9612 Critical Arbitrary Code Execution CVE-2020-9615 Critical Security feature bypass CVE-2020-9597 CVE-2020-9594
The result of scanning apps on Microsoft Store failed
Hello, I conducted software scan on endpoints. The result for Desktop Apps was correct, while that for Microsoft Store was not. It seemed that the wrong result showed the outdated one: For example, I did uninstall "Candy Crush..." on my computer (Apps and Features), but the scan result on Desktop Central still showed this app. Confirm that the scan was successful. I'm having some doubt about firewall new rules, which block "Google", but not so certain about that.
Language of desktop central agent; all patch notices are english only ?
Hi, i am evaluating desktop central in germany with german-speaking end users. Some users unfortunately doesn't understand the english language, so this is a problem when the desktop central agent confronts them with english-only warnings or message boxes. - They don't know what the desktop agent "talks about". So i wonder if it is possible to get the end user messages e.g. the "desktop central patch update notification" with the "skip" and "start now" button completely translated to german ? Is
May 2020 Patch Tuesday updates
Hello Everyone, Below is breakdown of all the updates released this Patch Tuesday. New Security Bulletins : 2020-05 Security Only Quality Update for Windows Server 2008 (KB4556854) (ESU) 2020-05 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4556843) (ESU) 2020-05 Security Only Quality Update for Windows Server 2012 (KB4556852) 2020-05 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4556853) 2020-05 Security Monthly Quality Rollup for Windows Server
mapping network drives
Hi all Does anyone have any best practices they are willing to share for managing mapped drives solely from Desktop Central? I'm thinking about things like: - we organize our users by OU's based on their location in AD. Can I map drives based on OU? If so, is Desktop Central able to pickup and add/removes/changes to the OU? -Is this the best way to manage mapped drives from Desktop Central? Can I do something with Groups in Active Directory? Anyway, thanks in advance for any tips you are willing
Please fix APFS disk usage
All our macOS assets are showing disk usage incorrectly due to how APFS is reporting disk usage. Can you fix this please? Actual capacity is 251GB (formatted) Actual capacity is 251GB (formatted)
Desktop Centra UEM Edition - Secure Gateway Server
Hi All, I'm looking to implement the Secure Gateway Server for Desktop Central. Could someone tell me if this is included in the UEM edition of the product? Or is an additional licence required that I have to purchase? Regards
Self Service Portal
How is the Softwares published through SSP distributed? When a user installs a software published on SSP, does the installation start from Desktop Central Server or the Distributions Server where the user computer falls in? I tried to find the application published in SSP on the Distribution Server folder, but didn't find it, so the query.
Software inventory metrics inconsistent
I'm running into a problem that is making license management difficult. The software details pages list one number of installations for managed installations, but a completely different number of actual installations. I've attached three examples below. The first is Snagit 13.0.1.6326, which reports 4 total installations, but only lists one computer. The second is Backup and Sync from Google 3.49.9760.2421, which reports 1 installation, but lists no computers. The third is a software group I created
Need additional field in "Inventory" --> "Software", "Managed Installations" column to display system names, not just count of systems where software is installed
Requesting that the "Managed Installations" field display not just the count of systems where a particular software application is installed but the actual hostname of the system on which that particular software application is installed.
Next Page