Microsoft releases out-of-band security update to fix IE zero-day & Defender bug
1. IE zero day The IE zero day is a very critical vulnerability which can be exploited via Remote Code Execution (RCE). Remote code execution is an attack that can be performed by executing malicious codes from remote location. The IE zero day is tracked with CVE-2019-1367identifier. 2. Microsoft Defender DoS bug Microsoft also released security patches to fix a DoS bug associated with Microsoft Defender. The good news is, to exploit the bug, the attacker first needs to gain access to the victim's
[ForYourInformation -12] Merging duplicated requesters accounts
Hello folks, With build 9412, a built-in functionality to merge duplicated requesters accounts was introduced. It helps you detect duplicated requester accounts (with the same login name or email address) in different domains and merge them into single accounts. It also helps you avoid confusion in identifying the correct users. Following are the probable causes of requesters accounts duplication: The same user is fetched from more than one domain during user import Servers are moved from Windows
Microsoft releases out-of-band security update to fix IE zero-day & Defender bug
1. IE zero day The IE zero day is a very critical vulnerability which can be exploited via Remote Code Execution (RCE). Remote code execution is an attack that can be performed by executing malicious codes from remote location. The IE zero day is tracked with CVE-2019-1367identifier. 2. Microsoft Defender DoS bug Microsoft also released security patches to fix a DoS bug associated with Microsoft Defender. The good news is, to exploit the bug, the attacker first needs to gain access to the victim's
User/technician API v3 changes over the 11000 (ESM) release
Dear Customers, Requester/technician related APIs(v1/v2) wont be supported anymore after the ESM (11000) release. You may need to update your existing requester/technician related API's with this latest v3 version. The ESM version has some changes towards the user/technician APIs. We use a common term under the ESM Directory as ' Users ' instead of ' Requesters ' and ' Technicians ' separately. Once the user is moved to the respective instance, ' Users ' will be termed as ' Technicians
ServiceDesk Plus 10500 Released
Dear Users, SDP 10500 has been released and can be downloaded from the URL below, https://www.manageengine.com/products/service-desk/service-packs.html Behavior Changes Microsoft SQL 2005 will be not be supported anymore. To migrate to the latest MSSQL, click here. Backslashes (\) in any additional field names will not be supported anymore. Any backslashes mentioned in additional fields earlier will be changed to forward slashes after this upgrade. Going forward, if there is any data inconsistency
[DidYouKnow - 9] Task automation with "Task Dependency" feature
Using "Task Dependency" mapping you can sequence the tasks to be performed within a request. Dependency mapping restricts users from closing tasks until the dependent tasks are closed. Task dependencies are important because sometimes the result of one
[Password Manager Pro Masterclass] Enabling password management best practices in a multi-vendor network environment.
Hi there, Our next topic for the Password Manager Pro Masterclass series is "Enabling password management best practices in a multi-vendor network environment," scheduled for September 12th. Click here to register for the session. This session will focus on managing the passwords of network devices out-of-the-box without having to worry about complex remote commands via SSH. In this Masterclass session, you'll learn how to: 1. Directly reset the passwords of any SSH-based network device without
[ForYourInformation -10] Auto-delete users that no longer exist in the active directory
Hello folks, With ServiceDesk Plus, you can now sync the deleted requesters/technicians from the Active Directory. Syncing of deleted users happens after a user import. Once the sync is done, it shows you the list of deleted users from AD. You can delete the requesters and technicians from the list. For requesters, auto-deletion can be enabled so that when a requester is deleted from the active directory, the user will be removed from the application as well. However, technicians have to be deleted
[ForYourInformation -9]: On behalf of field in request form can be managed by FAFR
User On-Behalf-Of: This feature in Service Desk is to support the creation of a new request by a user On-Behalf-Of another user. A Scenario to understand this feature: Tom finds a login issue with his Laptop, he needs to log an incident ticket regarding this case, however, he is already locked out of his Laptop, Andrew his colleague helps him to log the ticket in Service Desk using On-Behalf-Of feature. Notifications like request creation/resolved/closed/survey will be sent to both requester and
Patch Tuesday September 2019 updates from ManageEngine
Good day. Quick update on the September 2019 Patch Tuesday. New Security Bulletins : 2019-09 Security Update for Adobe Flash Player for Windows (KB4516115) 2019-09 Security Only Quality Update for Windows Server 2008 (KB4516051) 2019-09 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4516033) 2019-09 Security Only Quality Update for Windows Server 2012 (KB4516062) 2019-09 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4516064) 2019-09 Cumulative
Mobile Device Manager Plus enhances its app management capabilities
With Windows multi-app Kiosk and test and deploy support for enterprise apps, Mobile Device Manager Plus further simplifies app management in organizations. Test and deploy enterprise apps Organizations that develop apps in-house need to test out every app update before upgrading the app in the production environment to ensure the app update is compatible with all the devices and new OS versions. Testing apps is also required to ensure that the new app version doesn't affect user productivity after
[DidYouKnow -7] Best ways to track first response on requests
Learn different ways to track the first response made by a technician and stay efficient. Let's imagine a user is unable to perform an online transaction using his login credentials. He creates a help desk ticket without a mention of the actual error message. On noticing the ticket, the IT technician calls the user to gather more information on the issue. After he gathers the required information, he starts working on the resolution of the issue and forgets to update the first response in the application.
Upgrade your Desktop Central server for continued management of Apple devices!
With just a few days to go for Apple's release of their latest iOS 13 (releasing on September 19th) and macOS 10.15 Catalina operating systems, there's plenty of productivity as well as security driven features to explore. However, it is required to upgrade your Desktop Central server preceding the public release to ensure you can continue managing your Apple devices without any hassles. If your build number is below 10.0.413, click here. If your build number is between 10.0.421 and 10.0.432, click
[DidYouKnow - 8] About Organization Roles in ServiceDesk Plus
Organizational roles help you configure different roles specific to various levels of the organization like CEO, CFO, COO, etc. Roles can be configured concerning a particular Region, a Site, or a Department. Configuring the Organization's roles helps
[Tips & Tricks] Spam Filter
Managing tickets and classifying them to an appropriate queue will be the basic task of any help-desk coordinator, along with this he needs to watch out the high priority cases and tickets from VIP users. The ticket allocating task gets challenging and frustrated when ticket count gets spike up in a short time, this leads to the chance of unnecessary ticket violation. The root cause for spike up will be due to tickets getting in a loop or advertisement mail's or irrelevant emails or undelivered
Patch Tuesday September 2019 updates from ManageEngine
Good day. Quick update on the September 2019 Patch Tuesday. New Security Bulletins : 2019-09 Security Update for Adobe Flash Player for Windows (KB4516115) 2019-09 Security Only Quality Update for Windows Server 2008 (KB4516051) 2019-09 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4516033) 2019-09 Security Only Quality Update for Windows Server 2012 (KB4516062) 2019-09 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4516064) 2019-09 Cumulative
Patch Tuesday September 2019 updates from ManageEngine
Good day. Quick update on the September 2019 Patch Tuesday. New Security Bulletins : 2019-09 Security Update for Adobe Flash Player for Windows (KB4516115) 2019-09 Security Only Quality Update for Windows Server 2008 (KB4516051) 2019-09 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4516033) 2019-09 Security Only Quality Update for Windows Server 2012 (KB4516062) 2019-09 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4516064) 2019-09 Cumulative
[ForYourInformation -8]:New enhancement in ticket attachment feature
The limitation with ticket attachment in old versions Previewing and printing attached files in a ticket was impossible. Attachment drag & drop feature was unavailable. You cannot directly attach files in ticket description, you can attach files only by [Actions -> Add Attachments] In the newer build 10000, we have taken the above listed limitations in ServiceDesk as features. The key feature will be previewing attachments, it is a great way to save yourself time and effort. The nice thing about
Upgrade your MDMP On-Premises server for continued management of Apple devices!
With just a few days to go for Apple's release of their latest iOS 13 and macOS 10.15 Catalina operating systems, there's plenty of productivity as well as security driven features to explore. However, it is required to upgrade Mobile Device Manager Plus server preceding the public release to ensure you can continue managing your Apple devices without any hassles. Click here to upgrade to Mobile Device Manager Plus' latest build before September 19 to continue managing iOS devices.
ServiceDesk Plus 10511 Released
Dear Users, SDP 10511 has been released and can be downloaded from the URL below, https://www.manageengine.com/products/service-desk/service-packs.html Enhancements SDF-65927 : ServiceDesk Plus now supports SAML 2.0, which is an easier alternative to conventional sign-in methods already available for online services. Users will no longer have to provide passwords specific to each service they access. Configure SAML single sign-on from Admin >> Users >> SAML Single Sign-On. To learn more, click here.
[Password Manager Pro Masterclass] Implementing Windows service account security best practices.
Hi there, In the first Masterclass session, we covered a detailed overview of password management for small business teams. Here's a video recording of the session. The next session will focus on implementing security best practices for Windows service accounts. Password Manager Pro Masterclass Implementing Windows service account security best practices. Thursday, September 12 10am - 11am GMT 11am - 12pm EDT Register now. In this Masterclass session, you'll learn how to: 1. Locate
Password Manager Pro new build 10300
Hi, Password Manager Pro 10300 has been released and is now available for download. In this build, we have introduced new plugins for Chef and Puppet CI/CD platform, in addition to Jenkins and Ansible. Additionally, a few enhancements are done to Password Manager Pro that includes the following: 1. Bulk Resource/Account/Resource Group Sharing Apart from single sharing, users with proper permission can now share resources, accounts and resource groups, in bulk, with user(s) or user group(s).
[DidYouKnow -5] Deleted requests can be restored
Hello folks, I'm back with a tip that would be a salvage to the users who are not aware of request trash feature. Imagine you had deleted a request but later realized that you needed to work on it. Do not worry, requests are not deleted irreversibly. They get to trash first and you can delete requests completely or recover them there. How does it work: From request list view, click on the custom views drop down to find the trash where all the deleted requests can be found. Deleted requests can simply
User management - Requests deleted by technicians
This report is to get the list of deleted requests in the application. This data can be retrieved from the system log viewer and request trash. System Log Viewer: SELECT err.message "System log message", err.errormodule "Module", err.suberrormodule "Sub Module", err.action "Action", err.type "Type", au.first_name "Performed by", longtodate(err.occurredtime) "Time of occurrence" FROM errorlog err LEFT JOIN aaauser au ON err.ownerid=au.user_id WHERE err.action
[Announcement] Free, one-day OpUtils training on September 18th, 2019!
Hi friends, Are you tied to your network? Always checking its status and unsure if or when it'll create a huge mess? If so, then ManageEngine OpUtils may be just what you need. OpUtils training was a huge success last year, so we're continuing training into 2019. This in-depth and intensive training will help you tackle various challenges with your IPs and switch ports. Trust me, you don't want to miss it. Click here to register now! Here's a quick look at the topics we'll discuss: Introduction
Newsletter de Agosto!
¡Newsletter de Agosto! Actualízate sobre todas las novedades que tenemos este mes y recuerda inscribirte aquí para recibirlos mensualmente en tu buzón de correo
[ManageEngine] Your free PST migration tool is here!
Introducing PST Migration Tool! This free tool allows you to export your Exchange and Office 365 mailbox contents to PST files, and import PST files in bulk to Office 365 mailboxes. Learn more. Download Free Tool Suite 5.5.2 By downloading the free tool suite 5.5.2, you get access to the PST Migration Tool along with 19 other free tools that help in efficient Active Directory administration. If you are using the free tool suite version 5.5.1 or earlier, please download the latest version (5.5.2) to
[ForYourInformation -5]:New enhancement in Project module
Often Project management involves planning and organization of a company's resources to move a specific task or event towards completion. In most scenario's it has a defined beginning and end in time. Any organization will follow best practices, long discussions, automation, to ensure seamless workflow. Though situations end up with some human errors. We all loved to have the function to correct particular errors with minimum/no impact. In older builds of Service Desk Plus, we followed a controlled
Security Advisory | ManageEngine OpManager
Dear Customer, Greetings from ManageEngine OpManager. This is a security advisory mail for Applications Manager Plugin (APM Plugin) users. It came to our notice that previously, a user was able to bypass the username-password requirement and execute arbitrary commands on the server in the APM plugin. This issue has been fixed in the latest version of OpManager. To know more about the vulnerability, click here. Recommendation: We highly recommend that you upgrade to the latest version of OpManager
[DidYouKnow -4] Self-service portal and knowledgebase
Hello folks, This time I'm here with yet another tip that will enable you to utilize ServiceDesk Plus optimally. The same incidents\questions, reappearing time and time again. Sound familiar? Responding to the same question over and over again is a huge waste of time and resource. How do you overcome this redundancy and free up your users to spend more time on higher-value tasks? One of the easiest ways is to choose a system that empowers your users. Ask yourself, does the system have: -- A self-service
Register for Enterprise Service Management (ESM) beta version
Dear Customers, Much awaited ESM (beta) build is almost ready for the customers. If you would like to get the beta service pack(ppm), please subscribe the below link. Once the service pack is ready for the testing, we will be able to share you the beta ppm file in batches through email. Since its a beta service pack(ppm), you can use your existing test setups to migrate your data. If not, create a test bed and upgrade your installation to the latest ESM version. Note: We recommend you to apply
Reinforce data protection with our all new Data leakage prevention solution: "Device Control Plus".
We are absolutely glad to inform you that we have introduced a brand-new Data leakage prevention solution for removable devices - Device Control Plus Reinforce data protection with our all new Data leakage prevention solution: Device Control Plus. Control, block and monitor all USB and peripheral devices effortlessly. Eliminate data loss due to unauthorized data transfers. Implement file access control to prevent unprivileged access. Get your work done quickly by granting temporary access to
Reinforce data protection with our all new Data leakage prevention solution: "Device Control Plus".
We are absolutely glad to inform you that we have introduced a brand-new Data leakage prevention solution for removable devices - Device Control Plus Reinforce data protection with our all new Data leakage prevention solution: Device Control Plus. Control, block and monitor all USB and peripheral devices effortlessly. Eliminate data loss due to unauthorized data transfers. Implement file access control to prevent unprivileged access. Get your work done quickly by granting temporary access to
Reinforce data protection with our all new Data leakage prevention solution: "Device Control Plus".
We are absolutely glad to inform you that we have introduced a brand-new Data leakage prevention solution for removable devices - Device Control Plus Reinforce data protection with our all new Data leakage prevention solution: Device Control Plus. Control, block and monitor all USB and peripheral devices effortlessly. Eliminate data loss due to unauthorized data transfers. Implement file access control to prevent unprivileged access. Get your work done quickly by granting temporary access to third-party
[ForYourInformation -4]:New enhancement in Link Request feature
Linking Requests is a feature that primarily provides an option to relate requests to one another and set some references between them. Secondly, certain common operations such as adding notes, creating resolutions and adding work logs can also be linked between them. When two or more requests are linked, one of the requests becomes the "Reference request" and the other requests are the "Linked requests". In older builds of Service Desk Plus, on viewing the linked request from parent request will
[ForYourInformation -3]:New enhancement in User Survey
Surveys are one of the absolute best methods to get input from your potential clients/users about the services you offer. For more than decades, these surveys have given a much more clear picture of clients/users' level of expectation, needs, etc.. which had helped the organization to set their objectives and goals. We often expected the survey tool to be easily customizable and up to the current trend. Now we have a new Survey enhancement available in 10511 builds of Service Desk Plus. SDF-72081: In
Patch Tuesday August 2019 updates from ManageEngine
Good day. Quick update on the August 2019 Patch Tuesday. New Security Bulletins : 2019-08 Security Only Quality Update for Windows Server 2008 (KB4512491) 2019-08 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4512486) 2019-08 Security Only Quality Update for Windows Server 2012 (KB4512482) 2019-08 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4512489) 2019-08 Cumulative Update for Windows 10 Version 1809 and Windows Server 2019 (KB4511553) 2019-08
[DidYouKnow -2] Dynamic user addition
Scenario: One of our customers had come up with a question that new users are added to their active directory quite often and yet to be imported into ServiceDesk Plus. As you maybe aware that maximum frequency allowed is once a day for users auto-sync from AD can be scheduled once a day. Hence, he had to import the users manually multiple times a day to let the new users to login to the application that consumed lot of his time. He wanted to check with us if there is a better way to handle this.
[DidYouKnow -1] Build an efficient request approval process
The creation of an approval process is vital to the functioning and efficiency of an organization. To create this process, you must take a close look at your current approval workflow and record all the steps that an approval must pass through. With ServiceDesk Plus, we can now restrict whether approval can be sent to anyone or only system users or service request approvers can approve a request, allowing users to approve their own requests and so on. In most scenarios, when a request is submitted
Security advisory for Applications Manager & Applications Manager Plugin users below version 14.3
This is a security advisory for all ManageEngine Applications Manager and ManageEngine Applications Manager Plugin users below version 14.3. We recommend you to upgrade to the latest version of Applications Manager to avoid the security vulnerability described below. Severity: High Vulnerabilities: For Applications Manager users: Vulnerability type : SQL Injection/Remote Code Execution Vulnerability description: Due to an SQL Injection vulnerability in NewThresholdConfiguration.jsp, a low-authority
Next Page