SupportCenter Plus version 8.1 - Build - 8115 released
Dear User(s) We released SupportCenter Plus version 8.1 - Build - 8115. Please refer the Migration path table available here and upgrade to our latest build 8115. Issues Fixed list is available here Note : As a best Practice, please do the upgrade only in your Test environment and based on the status, do the upgrade in the Production. Steps to do the Upgrade is available here You can contact our support at support@supportcenterplus.com for any assistance. Following is the support policy of SupportCenter
Free webinar: Leveraging user behavior analytics and machine learning algorithms in your PAM strategy
Hi all, Title: Leveraging user behavior analytics and machine learning algorithms in your PAM strategy Date: Thursday, September 3 Time: 10am GMT | 11am EDT | 2pm AEST Duration: 40 minutes Reserve your spot The growing number of security breaches and insider attacks involving privilege misuse calls for a more dynamic approach to how privileged access is managed and monitored in an enterprise. An effective privileged access management (PAM) program should deliver strict governance of administrative
Free webinar: Leveraging user behavior analytics and machine learning algorithms in your PAM strategy
Hi all, Title: Leveraging user behavior analytics and machine learning algorithms in your PAM strategy Date: Thursday, September 3 Time: 10am GMT | 11am EDT | 2pm AEST Duration: 40 minutes Reserve your spot The growing number of security breaches and insider attacks involving privilege misuse calls for a more dynamic approach to how privileged access is managed and monitored in an enterprise. An effective privileged access management (PAM) program should deliver strict governance of administrative
Chrome stable channel update fixes 20 security vulnerabilities
Hello everyone, Chrome 85 has been promoted to the stable channel 85.0.4183.83 for Windows, macOS, and Linux. This update comes with fixes for 20 security vulnerabilities, the details of which are given below: CVE ID Vulnerability details Severity CVE-2020-6558 Insufficient policy enforcement in iOS High CVE-2020-6559 Use after free in presentation API High CVE-2020-6560 Insufficient policy enforcement in autofill Medium CVE-2020-6561 Inappropriate implementation in Content
Chrome stable channel update fixes 20 security vulnerabilities
Hello everyone, Chrome 85 has been promoted to the stable channel 85.0.4183.83 for Windows, macOS, and Linux. This update comes with fixes for 20 security vulnerabilities, the details of which are given below: CVE ID Vulnerability details Severity CVE-2020-6558 Insufficient policy enforcement in iOS High CVE-2020-6559 Use after free in presentation API High CVE-2020-6560 Insufficient policy enforcement in autofill Medium CVE-2020-6561 Inappropriate implementation in Content
Chrome stable channel update fixes 20 security vulnerabilities
Hello everyone, Chrome 85 has been promoted to the stable channel 85.0.4183.83 for Windows, macOS, and Linux. This update comes with fixes for 20 security vulnerabilities, the details of which are given below: CVE ID Vulnerability details Severity CVE-2020-6558 Insufficient policy enforcement in iOS High CVE-2020-6559 Use after free in presentation API High CVE-2020-6560 Insufficient policy enforcement in autofill Medium CVE-2020-6561 Inappropriate implementation in
Security updates released for Firefox 80, ESR 68.12, and ESR 78.2
Hello everyone, Mozilla has released security updates for Firefox 80, Firefox ESR 68.12, and Firefox ESR 78.2. Most of the vulnerabilities fixed are of high severity. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability details Severity CVE-2020-15663 Downgrade attack on the Mozilla Maintenance Service could have resulted in escalation of privilege High CVE-2020-15664 Attacker-induced prompt for extension installation High CVE-2020-12401 Timing-attack
Security updates released for Firefox 80, ESR 68.12, and ESR 78.2
Hello everyone, Mozilla has released security updates for Firefox 80, Firefox ESR 68.12, and Firefox ESR 78.2. Most of the vulnerabilities fixed are of high severity. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability details Severity CVE-2020-15663 Downgrade attack on the Mozilla Maintenance Service could have resulted in escalation of privilege High CVE-2020-15664 Attacker-induced prompt for extension installation High CVE-2020-12401 Timing-attack
Security updates released for Firefox 80, ESR 68.12, and ESR 78.2
Hello everyone, Mozilla has released security updates for Firefox 80, Firefox ESR 68.12, and Firefox ESR 78.2. Most of the vulnerabilities fixed are of high severity. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability details Severity CVE-2020-15663 Downgrade attack on the Mozilla Maintenance Service could have resulted in escalation of privilege High CVE-2020-15664 Attacker-induced prompt for extension installation High CVE-2020-12401 Timing-attack
[Tips & Tricks] Configuring SAML with Azure AD
This guide will help us configure SAML for those who want to use Azure AD as their IdP and also give you insights on a few issues that you might run into while configuring SAML in an Azure Environment. In an ideal environment, we will have an On Premises AD which will Sync users to their O365 Portal or Azure Portal. The sync is carried out with the help of a tool called Azure AD Connect, and the admins can download this tool either from the Azure Portal (https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/AzureADConnect)
[ForYourInformation -47] Password Policy Enhancement
You may all know about the Password Policy feature which was introduced with 11100 builds of ServiceDesk Plus. Now we have an additional function "Change Password Redirection" in the password policy feature which is available from the 11123 builds of ServiceDesk Plus. This function allows ServiceDesk Plus admins to enable a forced password reset policy, which redirects users, who log in for the first time, to the change password page. Admin Tab >> General Settings >> Security Settings >> Password
Announcing EOL for Flash player based Business views
Dear OpManager Users, Hope you are all aware of Adobe's EOL announcement for its flash player in 2017. Here is the official announcement from Adobe. https://www.adobe.com/in/products/flashplayer/end-of-life.html We were already aware of this and made sure new business views are created using HTML5 after 12.2 release. We also gave an option to our users to migrate the old business views created in Flash player to HTML5. But still some users are using the business views created in Flash player.
[Webinar] How you can deliver better business outcomes using Applications Manager - Analytics Plus integration!
For businesses to grow, just gathering performance data isn't enough. Leveraging predictive insights and operational intelligence will help optimize application performance and drive real improvements. Join us for a free webinar where we discuss how the powerful combination of an application monitoring tool (Applications Manager) and an advanced analytics solution (Analytics Plus) can help you proactively gauge
[ForYourInformation -46] Ticket raised by My Asset Widget can be configured with a particular template
Introduction: Users can raise an incident ticket for their assets through [Home page >> My Assets]. The user needs to click on the "Report an issue" button to raise a ticket for the particular asset, on clicking the button user will be taken to incidents list pages. Users can select the appropriate template to submit the ticket. Scenario: One of our customer requirements was to show a particular incident template (which has the pre-filled fields ) instead of listing all templates while clicking
Out-of-band updates released for Windows 8.1 and Windows Server 2012 R2
Hello everyone, Microsoft on August 19, released an emergency out-of-band update for two privilege escalation vulnerabilities disclosed in Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2 systems. The vulnerabilities are tracked as CVE-2020-1530 and CVE-2020-1537. Both of these vulnerabilities exist in Windows Remote Access Service (RAS) and when exploited, grant elevated privileges to remote attackers. A patch for both vulnerabilities for Windows 10, Windows 7, and Windows Server 2008,
Out-of-band updates released for Windows 8.1 and Windows Server 2012 R2
Hello everyone, Microsoft on August 19, released an emergency out-of-band update for two privilege escalation vulnerabilities disclosed in Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2 systems. The vulnerabilities are tracked as CVE-2020-1530 and CVE-2020-1537. Both of these vulnerabilities exist in Windows Remote Access Service (RAS) and when exploited, grant elevated privileges to remote attackers. A patch for both vulnerabilities for Windows 10, Windows 7, and Windows Server 2008,
Out-of-band updates released for Windows 8.1 and Windows Server 2012 R2
Hello everyone, Microsoft on August 19, released an emergency out-of-band update for two privilege escalation vulnerabilities disclosed in Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2 systems. The vulnerabilities are tracked as CVE-2020-1530 and CVE-2020-1537. Both of these vulnerabilities exist in Windows Remote Access Service (RAS) and when exploited, grant elevated privileges to remote attackers. A patch for both vulnerabilities for Windows 10, Windows 7, and Windows Server 2008,
Free webinar: Credential management best practices for business process automations
Hi All, Business efficiency is an endless pursuit for enterprises. Today, IT departments in many organizations rely heavily on automation to utilize available resources optimally, cut operational costs, and enhance overall productivity. As automation tools and platforms such as application programming interfaces (APIs), Internet of Things (IoT), and robotic process automation (RPA) bots continue to gain popularity among industries, the most prominent risk factor associated with automation is credential
[ForYourInformation - 44] SAML In ServiceDesk Plus
Security Assertion Markup Language (SAML) is a means to exchange authorization and authentication information between services. SAML is a solution where the user logs into a service that acts as the single source of identity which then grants access to a subset of other internal services. This post will be focused on providing an overview of SAML working from ServiceDesk Plus initiated login. Few key terminologies : An Identity Provider, frequently abbreviated as IdP, is the service that serves as
Security Warning: Default Credentials Not Reset
Dear users, If you happen to find this banner with the warning message "Security Warning: Default Credentials Not Reset" in the web client, it is to indicate the Admin that the Backup password in the application has not been reset and is still using the same default password. As you know, the application backup file can be encrypted and the password for the same can be set from Admin > General Settings > Backup Schedule. With the build 11122, we released a security enhancement to force the administrator
[ForYourInformation - 43] Rich Text Area Support For Task And Worklog Description
One of the most awaited feature was Rich Text mode in Tasks, Worklog, and Task templates. This feature is currently available in 11123 builds of ServiceDesk Plus. Reference ids: SDF-37155, SDF-43511, SDF-50557, SDF-62229, SDF-66199, SDF-70514, SDF-88567 Rich Text Area Support For Task And Worklog Description Task and Worklog Description before 11123 builds: The description can only be in plain text, in the task, task templates, and work logs. It has no formatting, only line breaks and spacing.
August Patch Tuesday - Non-security and Third party updates
Hello everyone, Below is the list of the supported Non-security and Third party updates from August Patch Tuesday NON-SECURITY UPDATES : Update for Microsoft Office 2016 (KB4484418) Update for Microsoft Project 2016 (KB4484477) Update for Skype for Business 2016 (KB4484464) Update for Microsoft Office 2010 (KB4484454) Update for Microsoft PowerPoint 2010 (KB4092435) NON-SECURITY SQL SERVER UPDATES : Cumulative Update Package 6 for SQL Server 2019 - KB4563110 Cumulative Update Package 14 for SQL
August Patch Tuesday - Non-security and Third party updates
Hello everyone, Below is the list of the supported Non-security and Third party updates from August Patch Tuesday NON-SECURITY UPDATES : Update for Microsoft Office 2016 (KB4484418) Update for Microsoft Project 2016 (KB4484477) Update for Skype for Business 2016 (KB4484464) Update for Microsoft Office 2010 (KB4484454) Update for Microsoft PowerPoint 2010 (KB4092435) NON-SECURITY SQL SERVER UPDATES : Cumulative Update Package 6 for SQL Server 2019 - KB4563110 Cumulative Update Package 14 for SQL
August Patch Tuesday - Non-security and Third party updates
Hello everyone, Below is the list of the supported Non-security and Third party updates from August Patch Tuesday NON-SECURITY UPDATES : Update for Microsoft Office 2016 (KB4484418) Update for Microsoft Project 2016 (KB4484477) Update for Skype for Business 2016 (KB4484464) Update for Microsoft Office 2010 (KB4484454) Update for Microsoft PowerPoint 2010 (KB4092435) NON-SECURITY SQL SERVER UPDATES : Cumulative Update Package 6 for SQL Server 2019 - KB4563110 Cumulative Update Package 14 for SQL
August Patch Tuesday security updates
Hello everyone, Below is the list of the security updates supported from August Patch Tuesday New Windows Security Updates : 2020-08 Security Only Quality Update for Windows 8.1 (KB4571723) (CVE-2020-1464) 2020-08 Security Only Quality Update for Windows Server 2012 R2 (KB4571723) (CVE-2020-1464) 2020-08 Security Only Quality Update for Windows Server 2012 (KB4571702) (CVE-2020-1464) 2020-08 Security Monthly Quality Rollup for Windows 8.1 (KB4571703) (CVE-2020-1464) (CVE-2020-1380) 2020-08 Security
August Patch Tuesday security updates
Hello everyone, Below is the list of the security updates supported from August Patch Tuesday New Windows Security Updates : 2020-08 Security Only Quality Update for Windows 8.1 (KB4571723) (CVE-2020-1464) 2020-08 Security Only Quality Update for Windows Server 2012 R2 (KB4571723) (CVE-2020-1464) 2020-08 Security Only Quality Update for Windows Server 2012 (KB4571702) (CVE-2020-1464) 2020-08 Security Monthly Quality Rollup for Windows 8.1 (KB4571703) (CVE-2020-1464) (CVE-2020-1380) 2020-08 Security
August Patch Tuesday security updates
Hello everyone, Below is the list of the security updates supported from August Patch Tuesday New Windows Security Updates : 2020-08 Security Only Quality Update for Windows 8.1 (KB4571723) (CVE-2020-1464) 2020-08 Security Only Quality Update for Windows Server 2012 R2 (KB4571723) (CVE-2020-1464) 2020-08 Security Only Quality Update for Windows Server 2012 (KB4571702) (CVE-2020-1464) 2020-08 Security Monthly Quality Rollup for Windows 8.1 (KB4571703) (CVE-2020-1464) (CVE-2020-1380) 2020-08 Security
Security fixes released for Adobe Acrobat and Reader
Hello everyone, Adobe has released security updates for Acrobat and Reader for Windows and macOS. Most of the updates are rated 'critical' and 'important'. Successful exploitation of these vulnerabilities could lead to arbitrary code execution in the context of the current user. The affected versions are as follows: Acrobat DC Continuous - 2020.009.20074 and earlier versions Acrobat Reader DC Continuous - 2020.009.20074 and earlier versions Acrobat 2017 Classic 2017 - 2017.011.30171 and earlier versions
Security fixes released for Adobe Acrobat and Reader
Hello everyone, Adobe has released security updates for Acrobat and Reader for Windows and macOS. Most of the updates are rated 'critical' and 'important'. Successful exploitation of these vulnerabilities could lead to arbitrary code execution in the context of the current user. The affected versions are as follows: Acrobat DC Continuous - 2020.009.20074 and earlier versions Acrobat Reader DC Continuous - 2020.009.20074 and earlier versions Acrobat 2017 Classic 2017 - 2017.011.30171 and earlier versions
Security fixes released for Adobe Acrobat and Reader
Hello everyone, Adobe has released security updates for Acrobat and Reader for Windows and macOS. Most of the updates are rated 'critical' and 'important'. Successful exploitation of these vulnerabilities could lead to arbitrary code execution in the context of the current user. The affected versions are as follows: Acrobat DC Continuous - 2020.009.20074 and earlier versions Acrobat Reader DC Continuous - 2020.009.20074 and earlier versions Acrobat 2017 Classic 2017 - 2017.011.30171 and earlier versions
Firewall Analyzer login failure issue for few customers.
Hello All, Greetings from the ManageEngine Firewall Analyzer Manager team! Few customers around the globe reported that they are not able to access Firewall Analyzer UI with error Invalid Credentials. While checking the issue in remote sessions, we found the table which has the user details of account got empty. Few other table entries related to user mappings were also missing. Though the application is running, users were not able to login to application. This all happened due to a minor glitch
Network Configuration Manager login failure issue for few customers.
Hello All, Greetings from the ManageEngine Network Configuration Manager team! Few customers around the globe reported that they are not able to access Network Configuration Manager UI with error Invalid Credentials. While checking the issue in remote sessions, we found the table which has the user details of account got empty. Few other table entries related to user mappings were also missing. Though the application is running, users were not able to login to application. This all happened due
Netflow Analyzer login failure issue for few customers.
Hello All, Greetings from the ManageEngine Netflow Analyzer team! Few customers around the globe reported that they are not able to access Netflow Analyzer UI with error Invalid Credentials. While checking the issue in remote sessions, we found the table which has the user details of account got empty. Few other table entries related to user mappings were also missing. Though the application is running, users were not able to login to application. This all happened due to a minor glitch in our background
OpManager login failure issue for few customers.
Hello All, Greetings from the ManageEngine OpManager team! Few customers around the globe reported that they are not able to access OpManager UI with error Invalid Credentials. While checking the issue in remote sessions, we found the table which has the user details of account got empty. Few other table entries related to user mappings to business views, tab customization were also missing. Though the application is running and alerts are generated, users were not able to login to application.
Chrome stable channel update 84.0.4147.125 fixes several security vulnerabilities
Hello everyone, Google has updated its stable channel for Chrome to 84.0.4147.125 for Windows, macOS, and Linux. This update comes with 15 security fixes. The vulnerabilities addressed are as follows: CVE ID Vulnerability Severity CVE-2020-6542 Use after free in ANGLE High CVE-2020-6543 Use after free in task scheduling High CVE-2020-6544 Use after free in media High CVE-2020-6545 Use after free in audio High CVE-2020-6546 Inappropriate implementation in installer
Chrome stable channel update 84.0.4147.125 fixes several security vulnerabilities
Hello everyone, Google has updated its stable channel for Chrome to 84.0.4147.125 for Windows, macOS, and Linux. This update comes with 15 security fixes. The vulnerabilities addressed are as follows: CVE ID Vulnerability Severity CVE-2020-6542 Use after free in ANGLE High CVE-2020-6543 Use after free in task scheduling High CVE-2020-6544 Use after free in media High CVE-2020-6545 Use after free in audio High CVE-2020-6546 Inappropriate implementation in installer
Chrome stable channel update 84.0.4147.125 fixes several security vulnerabilities
Hello everyone, Google has updated its stable channel for Chrome to 84.0.4147.125 for Windows, macOS, and Linux. This update comes with 15 security fixes. The vulnerabilities addressed are as follows: CVE ID Vulnerability Severity CVE-2020-6542 Use after free in ANGLE High CVE-2020-6543 Use after free in task scheduling High CVE-2020-6544 Use after free in media High CVE-2020-6545 Use after free in audio High CVE-2020-6546 Inappropriate implementation in installer
[ForYourInformation - 42] Task Template Enhancements
You may all know about the task templates behavior changes on the build 11107. Now we have a few enhancements released with 11115 builds of ServiceDesk Plus. Existing Behaviour : In the Request Template workflow tab, we can associate Task Templates to the request template. There is also an option to create a new Task Template and associate it. However, an associated task template cannot be edited inside the request template. Enhancement : Now the edit option is available from 11115 builds. You can edit
ManageEngine named a 2020 Gartner Peer Insights Customers’ Choice for Security Information and Event Management!
ManageEngine has been recognized as a Customers’ Choice in Gartner Peer Insights Voice of the Customer for Security Information and Event Management (SIEM) for the second time. This distinction is based on 155 reviews submitted by IT security professionals who have worked hands-on with Log360. As of May 31st, 2020, Log360 secured an average overall rating of 4.5 out of 5. We take pride in building a SIEM solution that is not only easy to deploy, but also offers valuable features such as the auto-discovery
ServiceDesk Plus 11123 Released
Dear Users, SDP 11123 has been released and can be downloaded from the URL below, https://www.manageengine.com/products/service-desk/service-packs.html Enhancements Cancel Request Option to move unnecessary requests to Cancelled status. SDAdmins can grant request cancel permission to users. Theme Enhancements Using theme settings you can customize the application's default color and font. You can apply the theme settings for all users or allow each user to select their own color and font. Allowing
Next Page