Feature Pack Deployment Failing
I followed the instructions for Feature Pack Deployment and the deployment is failing with "Unable to download dependency patch (104980) from the server." The ISO's are named as listed in the instructions and are in the correct folder on the server. We are currently on build 149 Thanks
Windows 10 1903 Update
1903 is out and is showing as a patch in Desktop Central. Is it the same procedure as 1809? Upload ISO with specific filename and use configuration to push it out? I was never able to get it to work as a regular patch.
MS14-021 - Internet Explorer Security Update
Now that Microsoft has released a patch for the Internet Explorer vulnerability in Security Bulletin MS14-021, when can we expect to see it as part of our vulnerability database within Desktop Central's Patch Management?
Desktop Central Patch Deployment issue
Partch ID 500100, 30716 Are falsely being seen as a missed patch to machines that don't have sql 2014 of any variety installed , anyone else seeing this? This is even after running another DB update this morning. Running Build 10.1.2137.15
Speed Up Patching
HI There, We currently use Desktop Manager to patch both user workstations and our servers. For workstations we have an automatic patch configuration, but for servers we do it manually as we have a very specific window to complete the patching. I've noticed that the jobs take a very long time to complete and frequently servers are in the yet to apply status when there is really no need for this. What I'd like is for all of the servers I select for a configuration to start applying patches at the
Java patch download failure "The request is forbidden.Http Status Code :: 403"
Hi, I am having a Java patch download failure, with the above error being logged in the "Action Log Viewer". There is a linked KB article that takes you here: https://www.manageengine.com.au/products/desktop-central/patch-download-failure-error-403.html?dci&did=45-1224-2018-01-22-12-50-41-8833 This article is about how you should have access to a list of common patch download sites set as accessible in whatever proxy you are using. However, when I go to the DC patch link: javascript:dcOpenWindow('patchinfopatchdetails.do?actionToCall=patchDetailsDO&patchDetails=true&PATCHID=307814'
Desktop Central seems to frequently miss various Windows OS patches and updates
I've been using Desktop Central for about two years now. When I came onto my job, we were using a mix of WSUS and Desktop Central. I have since scrapped WSUS and stuck with Desktop Central for both 3rd party software installment as well as regular monthly Windows updates. Everything seemed to be going well as Desktop Central reported that all of our systems were up to date after I would run updates month by month. Then we had an environment scan with Nessus Vulnerability Scanner by a 3rd party security
Automaticly decline MS preview updates
Hello, is there a way to automaticly decline MS preview updates? Background is that I want to deploy optional updates as well but I don't want to deploy updates labled as "preview" to production machines.
What does desktop central trigger off to generate the "reboot Required" flag?
We had some technical issues recently and we have a large number of machines reporting reboot required but its not the flag that prompts users. We are trying to determine what resets this flag so we can better understand the issue. Boxes showing this were patched and rebooted after the patch.
Automated patching question
Our current MSP has an option for patching where if an endpoint missed it's last patch window because it was offline, it would install patches the next time the device came online. Is there such an option in Endpoint Central?
How to auto-decline Preview and ESU updates only
The subject line says it all. What is the best way to auto-decline all Microsoft Preview and ESU updates exclusively? I have seen suggestions such as excluding optional updates, but this would seem to include updates other than Previews and ESUs. If
computer status says restart required but no patches were recently installed
I just updated to 10.0.132 and now a lot of my computers have a status of needing reboot. Some of these are servers which were never patched and rebooted recently yet there is an alert saying that "Reboot Required Critical patches have been deployed to this computer that requires system to be rebooted. Reboot the computer for the patches to take effect.". Now some of the servers that had that message I rebooted and it went away but there are some I have to schedule time to restart. Why does it give
Metldown/Spectre patch not showing for half our machines.
I have a ticket open with Desktop Central on this but haven't gotten very far with them. Out of our 470 Desktops/Laptop, only about 250 of our Desktops/Laptops are showing that they are "missing" the Meltdown/Spectre Patch. All of our Laptops and Desktops are exactly the same hardware with the same AV versions. I checked to make sure the Patch was not installed on any machines which it isn't and we have Windows Patching disabled on all computers. I checked to see if the reg key below was on any of
Automatic Decline ESU Updates
Hi everyone, I don't have an ESU license. Is there a way to automatically decline updates released for this type of licensing? We are currently doing this manually, but this has to be done monthly. Thanks!
Two Critical patches from 2012 suddenly required
Following overnight Vulnerability DB sync, two 'Critical' patches from 2012 have been flagged as being required; 11538 and 12648. Genuine or a false report?
Patch management for a closed network not working
Hi, I have Desktop Central 10 installed in a closed network with no access to the Internet and have followed the steps here: https://www.manageengine.com/products/desktop-central/help/configuring_desktop_central/patch_management_for_closed_network.html. When I try to update the Patch Database in Desktop Central using the "Update Now" button, it warns me that I need a connection to the Internet. I click Continue as I've set the proxy settings to "No Internet Connection" already, but there's an error
Lenovo BIOS update
Hi! As I'm aware of Endpoint Central doesn't natively support Lenovo BIOS updates, so how do you guys handle it? Looking forward to hear your thoughts on this one.
Powershell Rest API Interegation
Hi, Has anyone tried to invoke rest methods via powershell to pull data from Desktop Central? I am currently having issues sending the initial POST to get an authentication Key back as I have done with other REST API's. I mainly seem to be getting the below even with known correct credentials :- error_description : Username and password did not match message_type : authentication error_code : 10001 message_version : 1.0 status : error I can invoke a request to a URL that
Patch approval by group
Is there a way to approve patches on a per group basis similar to WSUS? I want to just approve patches to a test group of PC\Servers and not blanket approve patches to all PC's / Servers.
Will DesktopCentral support Vpro?
DesktopCentral supporting vPro would allow for PC's to be off and still be able to be patched. No longer requiring users to leave their PC's on and saving on energy costs among other things. One of vPro's marquee features is the ability to access a computer
Patch Management - How can I exclude "Not Approved" from the list of Highly Vulnerabe Computers?
?
How to integrated Desktop Central into Cisco ISE?
Hello, We're deploying Cisco ISE, which is expected to check posture of end devices. One of the key components of the posture inspection is to check whether the end points have been fully patched. However, as far as I am concerned, Cisco ISE does not
Last Boot Time and Patch time
Is it possible to add the Last Boot Time and Last Patch time as columns under Patch Management > Deployment > Automatic Patch Management > System Details of a configured automatic patch management configuration?
How to disable HTTP?
We have HTTPS enabled on Desktop Central console but are still able to connect to the web ui through HTTP over port 8022 (working via TCP 80). How do we disable this? We would like it so that it is ONLY accessible over HTTPS. Thanks.
Two Year old patch suddenly appearing
Microsoft ASP.NET MVC Security Update MS14-059 (KB2993939) Suddenly appearing for 2/3rds of our computers, Windows update does not seem to think this is a required patch. Please look into this.
Unknown Error. Code : -2145124329 installing patches.
We have reported this issue to support, but wondering if anyone else has seen the problem where an "Unknown Error. Code : -2145124329 installing patches.". It is happening on a number of machines for several patches including :- 2018-11 Update for Windows Server 2016 for x64-based Systems (KB4465659) 2018-11 Cumulative Update for Windows Server 2016 for x64-based Systems (KB4467684) 2018-11 Cumulative Update for Windows Server 2016 for x64-based Systems (KB4467691) Update for Windows 8.1 for x64-based
VM Snapshots Before Updating?
Hi all, does anyone know if it's possible to automate a VM snapshot before installing patch updates? We're utilizing the automated patch deployment tasks, but I don't see any options to run pre-deployment activities with updates. I'm assuming that this can be done with scheduled tasks, but our update approval schedules can be irregular and we don't have a lot of space for snapshots. Any other suggestions are welcome.
Order of patch deployment
In what order are patches applied during the patch deployment process of APD jobs? I understand that check in and download and actual deployment start times are random and based on when a box checks in. But once a box has checked in, downloaded the binaries and then reaches its designated deployment window in which order are patches actually deployed. Here is an example list of patches missing on a client. I assume it will install oldest to newest but that is an assumption and would prefer to not
all patches with http://software-download.microsoft.com/pr/Win10_1709_XXXX.ISO are failing
All patches that have "http://software-download.microsoft.com/pr/Win10_1709_xxxx.iso" location inside PMPatchLocation SQL table are failing with download.. looks like microsoft blocked direct downloads.. please fix it.. Also why is DC re downloading already present patches in repository? Also why patch for CHINESE Simplified 1079 Win10 is downloading english ISO?
Moving from WSUS to Desktop Central Windows Patch Management
Hello Everybody, I am looking for a guide on how to move from WSUS to Desktop Central patch management. And since we were setting up a GPO to connect clients to WSUS, should i modify the GPO or get use from it to move from WSUS to DC? Also, i received some windows update errors inside different servers (2008 R2, 2012, 2012 R2) because our WSUS server having a problem while we are pushing the updates through DC, so what solved the problem is removing " HKLM\Software\Policies\Microsoft\ Windows\WindowsUpdate"
Wannacrypt ransomware
Hello guyz, How do I verify Windows 7 x64 & x32 computers are covered from the Wannacrypt ransomware? Regards,
When deploying Microsoft .NET Framework 4.5.2 to several machines get Failed installation with Remarks of "Asia"
Hi When deploying Microsoft .NET Framework 4.5.2 to several machines get Failed installation with Remarks of "Asia". Has any one else seen this?
best practices for Patching Windows Servers on a schedule using the new APD features
So i am trying to figure out what changes have been made to APD since .192 and how that effects my managed devices. My struggle here is we do not patch in mass. Instead we have a specific schedule for each device which has been arranged and agreed upon by Operations and the applicaiton owner. Schedule looks like this. Custom group A patches from midnight to 6 Am on Patch Tue +7 Days. Custom Group B patches at Midnight to 6AM on Patch Tue +12 Days typicly what i have done is on the monday before
Unknown Error. Code : -2145124329
Hi! A lot of PC's (with SO Windows 7) are with the error in the patch bellow: Bulletin ID: MSWU-2472 (Update for Windows 7 for x64-based Systems (KB4023136) ) Could help me, please? Regards, Talita
Patch 22492 Keeps wanting to install
This patch, 22492 (2017-05 Security Monthly Quality Rollup Update includes WannaCrypt Fix(MS17-010) and May Month Quality Rollup for Windows 7 for x64-based Systems (KB4019264)), keeps trying to install on a large number of my Windos 7 systems. The issue is, that I have already installed updates that should supersede this on those computers. On these systems, I have installed the June update numbered 22579, which is the 2017-06 Security Monthly Quality Rollup for Windows 7 for x64-based Systems
Stop patching being deployed to computer that don't ESU license
Is there a way to stop patches being deployed to Windows 10 computers that don't have ESU licenses? From memory there was a patch for Windows 7 and 2012 R2 or something we deployed that stopped these computers receiving these updates that they can't
Windows 10 Build Update Deployment Failure
Followed instructions to add ISO to patch database. It shows patch available, but 1 of 2 dependency patches fails to download. See attached pictures. I need to know what to do in order to correct this so I can deploy build updates
problem with deploying Adobe Flash player
good morning everyone, when i am trying to deploy this patch: Update for Adobe Flash Player for IE (28.0.0.137) - APSB18-01 there is a problem, which is: The indicated destination element already contains media. but when i scan the device, desktop central says this is missing patch !!
Java Update 151
Hi guys, Update for Java (Update 151, Version 8) is out already since 2 days. No patches within DC. Any news on that? Thanks, Juerggen
Meltdown Patch
It doesn't look like MS has released the Meltdown patch yet. I'm wondering once its released how quickly ManageEngine will turn it around and if they'll send out a special notification that the patch is available?
Next Page