Microsoft Patch Tuesday updates for September 2018
Hello IT tech folks! New Security Bulletins : 2018-09 Security Update for Adobe Flash Player for Windows (KB4343902) 2018-09 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4457145) 2018-09 Security Only Quality Update for Windows Server 2008 (KB4457984) 2018-09 Security Only Quality Update for Windows Server 2012 (KB4457140) 2018-09 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4457143) 2018-09 Cumulative Update for Windows 10 Version 1607
Latest Adobe Acrobat Reader DC patches are installed but still shown as missing
Hi everyone I have deployed the latest Adobe patches (e.g. patch ID 308097). All patches are successfully installed and I manually started a patch scan on the PCs, however, the patch is still shown under "Missing Patches". In the remarks it says "The operation completed successfully". The patch is definitely installed and the patch scan is current, yet it appears under missing patches on every single PC in our environment. Is anyone else seeing this? Thank you. Regards Stefan
How to get iOS device from self-enrollment to DEP
Our Apple DEP certificate had expired and we had 56 Apple iPhones self-enroll in our MDM server before we realized it and now they are not Supervised. I have renewed the Apple DEP certificate and want to know the process to get those 56 iPhones enrolled through DEP so that they can be Supervised. I found the following statement in a troubleshooting section, "if the device has been enrolled in the MDM server using an enrollment method other than DEP, remove the device from management, reset the device
Printer Driver Issue Windows 7
Hello, I'm having a problem when trying to distribute IP Printers. Below is my configuration: Desktop Central Server running on Windows 2008 R2 Printers: HP LaserJet 4000 (with HP Universal Drivers) and Dell 1815dn MFP, shared through Windows Printing Service Clients: XP and Windows 7 (64 and 32bit) After I distributed the Printers through DesktopCentral it worked like a charm on all XP machines. Though on none of the Windows 7 PCs they got installed. I get the error: "Driver Installation Fails:
Security Update : Logging key entries while in a remote session
Hello Everyone, Here is a security update for Desktop Central customers. What was the Problem? Logging Key entries while in a remote session Whenever a computer is remotely controlled, all the key entries of the remote user was printed in logs. Latest Fix Released Date : 14-Sep-2018 Reference : https://www.manageengine.com/products/desktop-central/logging-key-entries-vulnerability.html Regards, ----- R Romanus Prabhu Head - Technical Support Endpoint management solutions Direct Support : +1 408
Service stacking update KB4456655 for 1803 not listed in ME
KB4456655 is a Service stacking update for 1803 and must be applied before the LCU KB4457128. I hope Manage Engine picks up on this and includes this in their database update tonight. Thank you! See https://support.microsoft.com/en-us/help/4457128
Unable to upgrade from Desktop Central V 10.0.233
I have been trying to update to the latest build. Every time I try I am unable to restart DC. The tray shows HTTP Port: 0 and HTTPS Port: 0 Service status is starting. I am unable to roll back using Update manager and end up replacing folder with copy of working version. I tried the windows update and that did not seem to resolve the issue. Using Windows 7 Professional Service Pack 1 Any advice would be appreciated thanks
Mac Sierra OS recent patches causes the machine to restart without prompting the end user.
Below updates causes the Mac OS machines running on Sierra to rebooted with out user notification. This issue even by passes the do not reboot option set in Desktop Central/Patch Manager Plus deployment policies. 601384 - MacOS High Sierra 10.13.2 Supplemental - Spectre 601395 - MacOS High Sierra 10.13.3 601396 - MacOS High Sierra 10.13.3 Combo Update As of now there no way to suppress the reboot required for installing those updates. This is due to actual update gets installed during the System
Up to Date Admin Guide PDF for Desktop Central
Hi, Is there anywhere I can find an up to date PDF for the admin guide for DesktopCentral? The only information I can find via Google is a PDF from 2010 and the other documentation is in knowledge base format. I need it to be something I can reference (and include in a submission) for a compliance report. Regards, Josh
Adobe Flash Player
I am having issue downloading the patches for adobe Flash Player for IE (30.0.0.154) - APSB18-25 patch id 307927 and 307925 Adobe Flash Player NPAPI (30.0.0.154) - APSB18-25 when I try to go to the location of the patch http://fpdownload.macromedia.com/pub/flashplayer/pdc/30.0.0.154/install_flash_player_ax.exe the page is displaying a 404 error The requested URL /pub/flashplayer/pdc/30.0.0.154/install_flash_player_ax.exe was not found on this server. This is the same for both patches. Is there
Not getting manage engine desktop central Your ticket has been created
I have had to submit a few tickets recently and have not gotten the automated email Your ticket has been created with the ticket number. I only get Your file has been uploaded successfully to our server and also an email has been sent to. Is there any issue with this ticketing system?
Desktop Central Build 10.0.276
Hi All, Anyone on build 10.0.276? I know it fixes the issue where MDM does not synchronize correctly with AD, but I wanted to make sure no one was having major issues with it. Thanks!
Critical Privilege Escalation Flaw: The Windows Task Scheduler Zero Day Vulnerability
About the vulnerability: A security researcher with his twitter handle named SandboxEscaper on August 27 released the source code for exploiting a security bug in the Advanced Local Procedure Call (ALPC) interface used by Windows Task Scheduler. The issue exists in the SchRpcSetSecurity API function, which fails to properly check user's permissions, allowing WRITE privileges on files in C:\Windows\Task. The vulnerability affects Windows versions 7 through 10 and can be used by an attacker to escalate
Desktop Central service wont start
Hi I have just installed Desktop central 10 on windows 10 and everything was working fine after install. After restarting the computer, I received a reminder that the service was stopped. Not sure why this, I would be grateful if someone could lend me a hand.
Desktop Central fails to scan Ubuntu 18:04.1 LTS
Hello, we have a bunch of Linux workstations that we recently reinstalled replacing Linux Mint with Ubuntu Bionic Beaver. Their Desktop Central Agent was also reinstalled but with the exception of one machine, I am now unable to obtain system scans. I can scan the Window clients, and if I check the logs on the Ubuntu machines it looks like the scans are actually being performed, but for some reason do not get posted to the server. Also, the system scan page does not give a clear indication of the
DesktopCentral Uninstallation
I'm not able to uninstall the previous version (9.X) of ManageEngine Desktop Central agent manually from 2 local computes in the network. The current version is 10.0.237. The screenshot is as attached.
Scan popup notification
Does the agent log when the Desktop Central agent prompts that it is scanning for patches. I'm only asking as a customer is stating that it's prompting 50 times a day and I would like to disprove this statement?
File manager sort by modified time
I just noticed that if I use the file manager to see a computers files that if I want to sort by modified time it does not sort by year but by month. .Is this how it should work? If so could it be changed to date modfied so that it sorts correctly by date and time? Attached is a screenshot of how it is sorted by modified time.
Major Vulnerability in Ghostscript, an Interpreter for PDF page descriptions
Synopsis: Ghostscript is an interpreter for Adobe Post Script and PDF page descriptions, its found to be a widely used application in all PDF editing and viewing softwares. Vulnerability: It consists of a -dSAFER sanbox bye pass vulnerability, which would allow access to unauthenticated attackers to execute remote coding and arbitrary commands.This vulnerability can also be exploited in applications that leverage Ghostscript, such as ImageMagick, GraphicsMagick, evince, Okular, Nautilus, and all
Desktop Central Remote Control Features
Can you connect/disconnect client PC from VPN while remotely connected? Furthermore, can you access remote PC while on outside network?
KB2538243
Why when I manually check for Windows updates my server reports KB2538243 is missing, however desktop central says it isn't? https://www.manageengine.com/products/desktop-central/patch-management/Microsoft-Visual-C++---2008-Redistributable-(x86)/vcredist_KB2538243_x86.html#
schedule service restart
How do I schedule a service restart configuration? I'm migrating an unhealthy server, and need this service to restart periodically. I figured there was an easy config I could push but can't find a way to do it. Sorry if this is obvious, but I'm baffled why I can't find a way to use DC to do this.
update drivers with manufacturer's tools
Hello, it could be great if desktop central can manage the tool of manufacturers lenovo (ThinkVantage System Update) asus (asus manager update), dell (dell system detect) which can update drivers of desktop's Regards Cyril COHU
How to disable Windows Update completely for use with Desktop Central
All, I am in the process of migrating away from WSUS and over to using Desktop Central to manage all the patches in my (very) small network. WSUS has been so-so - it worked - but required too much overhead than I have time for. Desktop Central on the other hand - requires very little setup and almost zero maintenance time. This past weekend - I stood up a new Windows 2016 server which is running great along with Desktop Central While I am very familiar with the usual WU GPO settings to get Windows
More than desktop management... (printers, assets...)
Hello, desktop central is focus to manage only desktop. Do you think to add others asset management (printers through snmp) and other devices/assets to follow them in same console (i see asset explorer exists) but it"s in other/external software. main console to manage all (with options) would be better thansks
Office 2016 deployment tool
Trying to download MS18-O365. it appears to download successfully but it says failure. the error message is "Unable to Execute Command" under remarks. and the size is 0kb
8hr Postpone Reboot
We are currently testing DC as replacement to our current patching nightmare and one of the common questions people ask me if they can postpone restarts in 8hour intervals. They know there is option for 15min/1hr/4hr but I guess they want 8hours as well.. would it be possible to request a future to have 8hours in that list as well? -Thank You
August 2018 Patch Tuesday Updates from ManageEngine
Hello peeps, Good day. Quick update on the August 2018 Patch Tuesday. New Security Bulletins : 2018-08 Security Update for Adobe Flash Player for Windows (KB4343902) 2018-08 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4343899) 2018-08 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4343888) 2018-08 Security Only Quality Update for Windows Server 2012 for x64-based Systems (KB4343896) 2018-08 Delta Update for Windows 10 Version 1607 and Windows
Software Removal
I was tasked with removing Larson VizEx Reader from 41 machines. I did some research and found the uninstall string which I used to remove the software with Desktop Central. So far I have only had a couple of failures which were related to the OS being 32 bit. The problem is the configs are successful but when I run my custom report it still shows all 41 machines listed as having the software installed. I have tried changing some of the criteria on the report. Rebooting the server just in case the
How to get emails sent using FQDN instead of hostname?
In the generated emails, the links back to the server are listed as https://hostname:8383 but we'd prefer them to be https://hostname.domain.tld:8383 Where can we change this? The cert in use needs the FQDN to be valid.
Software Deployment fails - Could not copy the installables to the client computer : The system cannot find the path specified.
I'm trying to deploy packages to clients, however this always fails with the error: Could not copy the installables to the client computer : The system cannot find the path specified. Installing the very same packages through the self-service portal works though. I have checked the deployment log and something interesting shows up - as you can see ManageEngine joins the local ProgramFiles path together with the UNC path of the network share of the repository. This, of course, does not exist. > C:\Program
When do the patch Tuesday patches get synced to the ME database?
We're pretty new to ME DC. How quickly do the patch Tuesday patches get synced to the patch database? I've updated a couple of times today but have yet to see them come through. Thanks!
Microsoft Patch Tuesday July 2018
Hello peeps, Good day. Quick update on the July 2018 Patch Tuesday. New Security Bulletins : 2018-07 Security Update for Adobe Flash Player for Windows (KB4338832) 2018-07 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4338823) 2018-07 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4338824) 2018-07 Security Only Quality Update for Windows Server 2012 for x64-based Systems (KB4338820) 2018-07 Cumulative Update for Windows 10 Version 1607 and Windows
Outlook 2016 keep crashing after geeing security patch update on Aug-16-2018
Outlook 2016 keep crashing after geeing security patch update on Aug-16-2018. Application: Outlook 2016 OS: Windows 10 Issue: Outlook keep crashing after user try open email attachment Security patches: MSWU-2957 Update for Microsoft Outlook 2016 (KB4022230) 64-Bit Edition Unrated Approved Non Security Update Resolution: After installing this security path from windows 10; outlook 2016 is not crashing any
AWS AMI
We are trying to put our entire Desktop Central Infrastructure in AWS (currently on prem). I have manually built the DC server and a remote office in a different availability zone. I am having an issue with roaming systems connecting back to the console (our goal). Here is a quick overview of what I have setup. Win2016 server with DC installed (manually) in Ireland Availability Zone on a private subnet Win2016 server setup as remote office in North Virginia AZ on a private subet Elastic Load Balancer
Enhancements in Automated Patch Deployment
To keep up with the cyber industry's security demands and requests from a few customers, ManageEngine's Patch Management module has undergone a few enhancements in the 'Automated Patch Deployment'(APD) functionality. We will shed light on what's new with the latest APD feature. What's new? The newly upgraded APD calls for an automated scan(instead of manually scheduled scan) as soon as the server synchronizes with the Patch Database. The missing patches are detected on each of the machines in accordance
Enrollment via URL doesn't work
Hi Team I trying to enroll an iPad with the enrollment URL, like I usually do. After the Profile setup the webpage show me an error that the Enrollment can't be completed. And If I watch on the MDM I see this error "APNs not reachable from iOS device due to 5223 Port Block" I checked my firewall and the port 5223 is not blocked. Any suggestions? I'm on the build 10.0.189 thank you Stefano
Patching behavior of newly added Windows machines?
We're deep in our trial of Desktop Central. I'm seeing what I consider odd behavior on newly added windows machines. I add the DC client to a machine, and the first thing that happens is that for any applicable APD task, the machine goes into the "patching complete" state in APD no matter how many patches it has lined up. It then stays in that state until at least the next vulnerability DB update, and sometime after that runs patches. This can take up to almost a day unless I force the patches. Is
Warning: Don't deploy Win10 Creators/Feature Update as a "patch" (as suggested by ME)
After giving the world enough time to iron-out any bugs that might've existed with updating corporate workstations to 2017 Fall Creators Update v1709, we decided to go ahead and roll it out, following this guidance: https://www.manageengine.com/products/desktop-central/windows10-feature-packs.html I created a policy that allowed users to delay ("skip") the Update for a max of 2 days, with the maximum of 10 retries. Five days later, our user-base is raw from the pop-ups that just won't stop, even
Office 2016 Deployment
I am having trouble deploying Office 2016 and Office 2013 using Desktop Central. I can deploy them fine manually so i know the configuration file is correct but Desktop central does not deploy. The package shows executed and the logs look ok but nothing happens. I can deploy other things like acrobat and Visio 2016 so I know the network permissions are correct.
Next Page