Patch Download speed/time limiting
Morning, I've been trying to implement the patch management feature of Desktop Central. However, I've been running into a problem: we're on a very limited internet connection, and when it tries to download patches it entirely maxes out the connection and the other staff can't work. Is there any way to limit the download speed, set it to only download out of hours, or both? I haven't been able to find it. For now I'm turning the VM it is running on off each day, and turning it back on at the end of
End of Public Updates for Java SE 8 - Commercial Users upgrade your package
Oracle has announced changes to ongoing support for Java SE 8 (Standard Edition). This forum describes how Desktop Central will continue its support for Java SE 8 in January 2019 and beyond. More on this: Oracle recently announced changes to support for Public Updates for Java SE 8 In January 2019 Oracle will require those who wish to continue support for Java 8 SE to subscribe to the new Java SE Subscription offering to continue to receive Java SE 8 updates. This subscription covers all Java 8 SE
Can i please get an update on opened tickets #5313391 and #5311198
It's been a week and i've received no inital response from anyone.
Issue in booting up the machines after installing Windows updates.
Computers fail to boot after installing the following Windows updates: KB4493467, KB4493446, KB4493448, KB4493472, KB4493450, KB4493451 Note: This issue will occur for systems having Sophos Endpoint Security Installed. Reference: https://community.sophos.com/kb/en-us/133945 Desktop Central has marked these updates as 'Partially Superseded' and they won't be listed in the 'Missing Patches'. However, these updates can be viewed and uninstalled from the 'Installed Patches' view. Update 1: To make
Critical bug fixes in Google Chrome 74.0.3729.108
The Chrome team has rolled out the latest version Chrome 74.0.3729.108 with a huge list of bug fixes and improvements. This update comes with nearly 39 security fixes. Below is the list of CVE IDs that are rated 'Critical' CVE-2019-5805 CVE-2019-5806 CVE-2019-5807 CVE-2019-5808 CVE-2019-5809 CVE-2019-5810 CVE-2019-5811 CVE-2019-5812 CVE-2019-5813 CVE-2019-5814 CVE-2019-5815 CVE-2019-5816 CVE-2019-5817 CVE-2019-5818 CVE-2019-5819 CVE-2019-5820 CVE-2019-5821 CVE-2019-5822 CVE-2019-5823 To patch
Patch Management for Closed Network Not working in latest release 10.0.386
Hi, I think there is a bug in latest release 10.0.386 where Patch Management for Closed Network procedure is not working, I can update the database on internet but when transferring the updatedb folder to the closed network the update returns failed.
Group automated deployments
Currently, I am in the process of catching the machines up on updates. Since i've took over this position, it's been a very slow process. Due to a majority of our sites having very low bandwidth, we've opted to switch to manual pushes instead of automatic deployments. Mainly due to the fact that automated deployments grab all approved patches and push them all at once. What i want to do is create groups of deployments for patches, IE: Monthly security updates, Office updates, etc. Reasoning behind
Secure Gateway Download Requires a Version of Desktop Central Not available
Not sure if I'm missing something but we've had a problem with not being able to patch Roaming computers (over the internet) ever since we moved to the Forward Server, which I now believe is called Secure Gateway. After trying to spend some time troubleshooting the issue I decided to download the latest version of Security Gateway and reinstall it on the server dedicated to it in our DMZ. The latest version to download says it requires Desktop Central Version 10.0.391 and above (https://www.manageengine.com/products/desktop-central/forwarding-server-download.html)
Setting up Distribution Server supposed to bypass replication policy?
We've been having bandwidth issues with some offices. So it was decided that we were moving all of our replication policies to an overnight set of hours (midnight to 5am) and lowering the bandwidth. I had to set up another DS this afternoon, and i noticed it's been replicating since. This is out side of the replication policy by a lot. When setting up a new distributions server, is it supposed to override the replication policy? Or is there some sort of glitch here? I've also noticed throughout
Superseded patches still listed as missing after Desktop Central upgrade
We recently upgraded to version 10.0.347. Mainly due to a lot of bugs. However, we're still seeing updates that were superseded months ago listed in our missing patches list. Right now it's down to one last patch, 106372 MSWU-3134 2019-01 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows 10 Version 1809 for x64 (KB4481031) This was superseded in Feb by MS19-FEB8. Granted it's only missing on 1 machine, but since it's been superseded for so long, it still counts against
Approve Windows 7 April 2019 updates
Hi, We are not using Sophos products in our organization so we should not have an issue with booting. How do I go about manually deploying the critical Windows 7 updates which are marked as superseded? Thanks, Denis
sophos and patch 26487 MS19-APR6 2019-04 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB4493472)
I have discovered that patch 26487 MS19-APR6 2019-04 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB4493472) 26489 MS19-APR6 2019-04 Security Monthly Quality Rollup for Windows 7 for x86-based Systems (KB4493472) is causing an issue when sophos anti virus is installed https://community.sophos.com/kb/en-us/133945 when this patch is installed with sophos it will cause windows to hang for over an hour. is manageengine aware of this issue? for now i have declined this patch.
Adobe discontinues its support for Adobe Shockwave
Adobe has announced that Adobe Shockwave will not be supported anymore. Effecitve from April 9, 2019 Adobe Shockwave for Windows will no longer be available for download. But Adobe added that "Companies with existing Enterprise licenses for Adobe Shockwave continue to receive support until the end of their current contracts" Please note that Adobe has discontinued Adobe Shockwave for macOS on March 1, 2017. So, even if you have Adobe Shockwave installed in your environment, Desktop Central will
Desktop Central now supports Patch Tuesday April 2019 updates
Good day. A quick update on the April 2019 Patch Tuesday. New Security Bulletins : 2019-04 Security Update for Adobe Flash Player for Windows (KB4493478) 2019-04 Security Only Quality Update for Windows Server 2008 (KB4493458) 2019-04 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4493448) 2019-04 Security Only Quality Update for Windows Server 2012 for x64-based Systems (KB4493450) 2019-04 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4493467)
Replication Policy and Manual Push
I just have a question to clear up some confusion. If I have a replication policy to replicate from the Desktop Central server to the Distribution server set form 00:00 to 05:00, Monday through Friday, If I need to manually push an update to a handful of computers that are located at the site, will the manual deployment override the replication policy if a patch(es) are not on the distribution server yet? Or will the manual deployment status stay is Draft or In Progress mode, until the replication
Chrome releases a new stable version 73.0.3683.103
Google has just rolled out a new update for Chrome 73 that comes with some minor bug fixes and performance updates. With this latest update, Chrome will be inching closer to releasing the next big update — Chrome 74. Desktop Central now supports updating your endpoints to the latest version - Chrome 73.0.3683.103. If you're looking to update your Chrome, just look for Bulletin ID - TU-017 and Patch ID - 309433 (32-bit) and 309434 (64-bit)
Microsoft warns BSOD on devices after enabling EUDC
Microsoft has warned that if per font end-user-defined characters (EUDC) is enabled, the system will stop working and a blue screen will appear at startup. But it can be avoided if you don't install the following updates: KB4489894, KB4489890, KB4489888 and KB4489889. Desktop Central has suspended these updates and for users who already have these updates in your endpoints, kindly follow the steps given in the Microsoft's official KB article. https://support.microsoft.com/en-in/help/4496149
Skype automatic patch management
Hello, what is the best practice with Skype software update in patch management (Windows machines). Can we update Skype in automatic patch deployment time when user are logged in computers? Thanks!
Patch Management - Unknown Error. Code : 50007
Seeing the below error on our automatic patch deployment for the windows 1809 feature update Unknown Error. Code : 50007 Any ideas what this error means?
Critical updates released for Mozilla Thunderbird, iCloud, and iTunes
Apple and Mozilla have released critical updates in their products — iCloud (7.11.0.19), iTunes (12.9.4.102) and Thunderbird (60.6.1) respectively. Desktop Central now supports the patching of these updates. Below are the possible exploits for each application if they're left unpatched. Application: iCloud (7.11.0.19) Possible Exploit if left unpatched: Elevation of Privilege, Remote Code Execution Application: iTunes (12.9.4.102) Possible Exploit if left unpatched: Elevation of Privilege,
Critical security updates released for Firefox 66.0.1
Mozilla has released updates to address two critical vulnerabilities in Firefox 66.0.1 and Firefox 66.6.1 ESR (Extended Support Release). These vulnerabilities, that are addressed in CVE-2019-9810 and CVE-2019-9813, come as fixes for incorrect handling of files in IonMonkey (Mozilla's JIT compiler for SpiderMonkey). Desktop Central now supports these critical Mozilla updates. To patch your Mozilla Firefox with these latest critical updates, look for Patch IDs 309305,309306,309307 and 309309.
Patching to a Custom Dynamic Group
We name computers a special way. Anything that ends in "-TC" is a "Thin Client". These machines can be patched and rebooted nightly. So i created a dynamic group matching on "Computer Name" ends with "-TC". I have then two patch policies. One that's "Patch Nightly with Reboot Prompt" and the other "Patch Nightly Force Reboot". All computers are in the first patch policy with dynamic group "Thin Clients" filtered out. I now want to assign the "Thin Clients" group to the second patch policy but cant
Google Chrome releases stable version 73.0.3683.86
Google Chrome has updated the stable channel to 73.0.3683.86. This version comes with a bevy of features like the built-in dark mode, tab grouping, media key support etc. along with several bug fixes. Desktop Central now supports Google Chrome's latest version 73.0.3683.86 for Windows and Mac. If you're looking to update your Chrome to get your hands on the newest features, just look for Bulletin ID - TU-017 and Patch ID - 309264 (32-bit) and 309265 (64-bit) in Desktop Central.
Zero-day bug in Win32k component is being actively exploited
The zero-day vulnerability in Win32k component which was patched with this Month's Patch Tuesday is being actively exploited by attackers. This vulnerability was addressed by Microsoft in CVE-2019-0797 . The vulnerability: This is an Elevation of Privilege vulnerability found in the win32k that fails to handle objects in memory properly. If this zero-day vulnerability is exploited, the attacker could execute arbitrary codes in kernel mode. Solution: To stay secured from this exploit, Desktop
Microsoft Patch Tuesday updates for March 2019
Good day. Quick update on the March 2019 Patch Tuesday. New Security Bulletins : 2019-03 Security Update for Adobe Flash Player for Windows (KB4489907) 2019-03 Security Only Quality Update for Windows Server 2008 (KB4489876) 2019-03 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4489885) 2019-03 Security Only Quality Update for Windows Server 2012 (KB4489884) 2019-03 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4489883) 2019-03 Cumulative Update
Downloaded Patches Store
Hello, I'm looking for the "Downloaded Patches" metadata or file that tells desktop central what files are located inside "C:\ManageEngine\DesktopCentral_Server\webapps\DesktopCentral\store". I'm moving patch files in a one way transfer from a "online desktop central installation" to an "offline desktop central installation".
New UI for MEDC Patch Management in 10.0.321
Just a suggestion and wanting to know if anyone else feels the same way. I do not like the new layout and column list from the most recent update to 10.0.321 in Desktop Central's Patch Management screen. The lumping of all the missing patches together in one column is very inconvenient. And having the missing patches numbers in dark blue is not very smart with all the rest of the text being black. The red numbers used to allow you to easily see the systems that needed patches. Now combining
Undoing Changes
Hi expert out there, everytime i start automate patch deployment a few of my user will get this error " we couldnt complete the updates undoing changes dont't turn off your computer. The error is for window 10 only please help me.. error picture as attach.
Update your Google Chrome to 72.0.3626.121 ASAP!
The Chrome Security team has released a fix for a highly critical vulnerability in Google Chrome (72.0.3626.121) with CVE-2019-5786 that could allow a remote attacker to execute arbitrary code and take full control of the computers. Please note that this vulnerability is being actively exploited. The Chrome security team reported the issue as a use-after-free vulnerability found in the FileReader component of the Chrome browser. The security team hasn't revealed any technical details of the vulnerability
Managing Office 365 Patches
There is a GPO for Office 365 called "Office 365 Client Management". Does this need to be enabled for Desktop Central to manage the patching of Office 365 Applications? GPO Description... This policy setting enables programmatic control of Office 365 clients. If you enable this policy, System Center Configuration Manager or other application management solutions can manage the Office 365 client. After applying the policy, you will be required to restart the Office Click-to-run service. If you disable
Installing Patch Management Windows 10 Windows Update and the Windows Store
Team, I am having trouble finding the answer to a question. When using Desktop Central's Patch Management, Do you disable Windows Update Service? If Windows Update Service is disabled, How do you get the Windows Store to work?
Chrome Updates
Latest Chrome Updates in Desktop Central Indicates Reboot Not Required, but when update is installed Patch details indicate a Reboot Required. Anyone else have this issue? Sample dcpatchinstallaccesslog from 1 system
Getting confused and frustrated, very frustrated,
I am trying to manage the patches in our environment with Desktop Central. I thought after reading the documentation, I understood it, but apparently, i don't. Last month I created a test group in which to test patches on. The test and approve was created so after 5 days, the patches were automatically approved. I then created 3 groups for automated deployment. Production and 2 sub groups based on different time frames. Everything seemed to have gone well. We hit an 80% success rate in patching
Microsoft now prefers SHA-2 algorithm to patch Windows legacy OS versions
Microsoft has said in an official statement that it will be ruling out the support for SHA-1 algorithm and will migrate to SHA-2 hash algorithm for code-signing purpose. So, Customers running legacy OS versions (Windows 7 SP1, Windows Server 2008 R2 SP1 and Windows Server 2008 SP2) will be required to have SHA-2 code signing support installed on their devices by July 2019. Any devices without SHA-2 support will not be offered Windows updates after July 2019. Microsoft will be releasing updates that
Adobe releases an update to fix a bug in their Zero-day patch released a week ago
After the update that was targeted at fixing the zero-day vulnerability, failed to patch it, Adobe has released another patch to fix the critical information disclosure bug in Adobe Acrobat reader. This zero-day vulnerability which was tracked as CVE-2019-7089 was reported by a security researcher on Jan 26 which could lead to disclosure of sensitive information. On Feb 12, Adobe tried resolving this issue by releasing a fix for this zero-day bug. But the security reacher found a by-pass in the
Windows 7 Updates and SHA2 Support
MS will be delivering SHA2 code signing support for Win7 updates in March with SHA1 support removed by September https://support.microsoft.com/en-us/help/4472027/2019-sha-2-code-signing-support-requirement-for-windows-and-wsus Will this have any impact on DC delivering patches? Mark
Notify users which use outdated versions of software
Hallo, is there a way to automaticly notify users which use outdated versions i.e. of chrome because they never close chrome? This would be a huge help delpoying updates.
Limit Bandwidth for patch distribution
Hi all, We have about 1000 machines being managed by Desktop Central over multiple distributed offices. I am only running one Desktop Central server to push out all of these patches. When i do a mass update, our WAN links out of our main office is flooded with Desktop Central traffic. Without installing distribution servers, is there a way i can limit the bandwidth that desktop central uses to push out patches to each workstation? Cheers,
Windows 10 1809 update
Any ETA on when this update will show up in patch management?
More information: Error Message: Unknown error code 1030
Is there any more information on this error code? I have a handful of machines that aren't getting particular patches, that generate this error code. However, those particular patches are installing on other computers (same make/model/specs) as the ones that are failing. The machines that are taking said patches have the same internal configurations as those that are failing to install the patch. The provided *KB doesn't provide a lot of information to help resolve the issue.
Next Page