AD360 build 4228 released with some enhancements and an important vulnerability fix
Hello Everyone, We have released a new build of AD360—4228. This release features enhancements and a fix to a security vulnerability. Enhancement: Some built-in third-party applications used by AD360 have been updated: jQuery has been updated to v3.4.1 from v1.8.1. Jespa jar has been updated to 1.2.2 from 1.1.19. Issues fixed: Fixed a vulnerability which allowed a user to enable integration with other supported ManageEngine products bypassing authentication [CVE-2020-24786]. Some minor issues have
How to identify and mitigate the unauthenticated product integration vulnerability?
Some versions of RecoveryManager Plus have the unauthenticated change to integration system vulnerability (CVE-2020-24786) as reported by Florian Hauser. This article explains how you can identify if your RecoveryManager Plus installation is affected, and fix it. What is the issue? RecoveryManager Plus had a vulnerable endpoint which allowed a user to integrate RecoveryManager Plus with any other supported ManageEngine product, bypassing authentication. This could lead to data leak. Which version
Is it possible to set who can edit scripts in the Script Repository?
Hello, I am wondering is it possible to set up permissions where a user could access the script repository and execute scripts but cannot edit the scripts in the repository. Right now we have it set up where our technicians can execute them and edit the scripts, we would only like them to be able to execute them. We have tried changing some roles/editing some roles so that Configurations is in Read Only but this removes access to the repository. Any help would be much appreciated with this Thank
ELA - No data available
Hello, I have some widgets that produce data but there are others that do not, such as Traffic Trend, Alerts Count overview, top websites Accessed. Can someone help me understand why these widgets don't produce results, but others do?
How to identify and mitigate the unauthenticated product integration vulnerability?
Some versions of O365 Manager Plus have the unauthenticated change to integration system vulnerability. This article explains how you can identify if your O365 Manager Plus installation is affected, and fix it. It also offers the mitigation steps to protect your installation in case it is not affected. What is the issue? O365 Manager Plus had a vulnerable endpoint which allowed a user to integrate O365 Manager Plus with any other supported ManageEngine product, bypassing authentication. This could
O365 Manager Plus build 4334 released with some important bug fixes
Hello Everyone, We have released a new build of O365 Manager Plus, 4334, which fixes a security vulnerability and other issues. Issues fixed: Fixed a vulnerability which allowed a user to enable integration with other supported ManageEngine products bypassing authentication. Issue in updating passwords for the tenants configured with app password. Issue in generating Mailbox Usage, OneDrive for Business Usage, Group Usage, and some other reports have been fixed. Date mismatch issue between certain
Find computer that user has logged on to
Hi, I occasionally have a requirement to where I need to find the computers that an AD user has logged in to. This is because often a user will say "I need help with my computer" but will not include the name of the computer in their request. Is there a way I can provide the username and have AD give me a report of the computers that username has been found on? Many thanks!
[Term of the Day]: Continual Service Improvement
Term of the Day “Continual Sevice Improvement” Definition — What is CSI and it's objective? Continual Service Improvement (CSI) is a metrics-driven approach that ensures continual adjustments and improvements of the IT services taking into account the changing business requirements. Administering a CSI practice entails management commitment and participation to move from a reactive to a proactive approach. The fundamental task for CSI is to identify which
SSL Certificate and incomplete chain Support Center plus
Hello, we configured Support Center plus to use a globalsign wildcard certificate. (pfx-file in config, server.xml modified) The site works fine with SSL, certificate states no errors. But when we check our URL with SSL Labs we only get a B rating because the certificate chain is incomplete. Caused by a missing intermediate cerificate. How can we fix this ? If I check the certificate, certification path is see the root, intermediate and domain certificates without any problem. Kind regards, Infohos
Asset scan FAIL - cannot identify model of this device
Hi ALL! I have new Cisco C9200L-48P-4G Switch I tried scan it via SNMPv3 and i have error - cannot identify model of this device - how i can fix it ??
Python script does not work.
I use your script to send an auto reply when new requests arrive. It turns out an error by System Script Action : Executed from business rule id 601. Result : Execution failed Comments : Traceback (most recent call last): File "send_mail.py", line 6, in <module> from functions import send_mail,read_file File "C:\ManageEngine\ServiceDesk\integration\custom_scripts\functions.py" files changed only those that are recommended in the article. what could be the problem. SDP version 10510.
Change user status from resigned to active
How do I change a user status from resigned to active? The status is showing as resigned but I want to make the user active so the user can login to Service Desk. Thanks in advance for any assistance. Dan
How to define new categories or sub-categories in Change Management section of servicedesk plus?
Under ServiceDesk --> Changes --> Category How can i define new categories or sub categories? e.g. Under category pull down menu, you get "Telephones" or "General", how can you add sub categories under each one of them. Also, how can you add a new item to category list itself?
SDP - User Access report
We expanded our SDP ESM on-site to additional Departments. We would like to be able to track user engagement by reporting on user logins to the site. Is it possible to build a report tracking user logins?
IP Address Change Report
I would like to schedule a report which will run once a week to show me the names of any assets which have changed their IP address, showing name of asset new IP address and date/time of change of address. I am not sure how to do this, can somebody help me please?
Asset Management via SDPODAPI
I've been fighting with the API documentation found here: https://api-sdpondemand.wiki.zoho.com/ And finally was able to submit requests via the API, but the documentation completely omits how to add/edit/remove assets (servers, workstations, etc.) via the API, and that is a crucial task that's been assigned for me to figure out. Is it even possible to add/edit/remove assets with the Service Desk Plus On Demand APIs? If not, the customer we're implementing this for, who specifically wanted this product
Prevent automatic backups during update
How to prevent automatic backups during update servicdesk via UpdMgr.bat / UpdateManager.bat?
IT analytics in 90 seconds: Monitor hardware utilization to boost your application's performance
Monitor your memory, CPU, and disk utilization to improve the overall performance of your application using Analytics Plus reports. If you're not already using Analytics Plus, download your free, 30-day trial today.
IT analytics in 90 seconds: Monitor hardware utilization to boost your application's performance
Monitor your memory, CPU, and disk utilization to improve the overall performance of your application using Analytics Plus reports. If you're not already using Analytics Plus, download your free, 30-day trial today.
Software installed but Patch not applicable?
Hello, short Question, according Desktop Central, the Software is installed in a minor Version, but the Patch is not applicable? 1. Installed Software at Example Desktops: 2. Patch for Deployment: 3. Not Applicable Message I configured the Task as "Patch Installation"....could it be, that DC think, Version 15.5.xx is not applicable because the installed Version is 15.1.xx? But if i choose "Software Deployment", did DC install the new Version 15.5.xx additionally or did DC upgrade the existing Version
Unlocking accounts using PMP
Hi I am looking at an option for our test manager to manage all the test users we have and provide access to her testing team to obtain the passwords for the test users when required which i am happy can all be done in PMP. The problem area is when the account has been locked out, Is there a way that we can also give the ability to unlock accounts in PMP so that it can all be done in one place, otherwise they have to put a service desk request in to unlock the account or provide them access to another
Cyberoam UTM performance monitor
Hello everyone, I have been working with Cyberoam UTMs in many projects, and a group of the SOCs where using OpManager to monitor their devices. Unfortunately, the device template provided by ManageEngine for these devices is totally corrupt. All information were shown in a wrong format and the output data was not reliable. There wasn't also any Input and Output performance monitor for these devices . The only OID is .1.3.6.1.4.1.21067.2 with following errors: 1. wrong CPU & Memory & Disk utilization
Not all attachments showing on right after requests merged
If I have two requests, both with an attachment, and I merge them, should both attachments appear in the right hand panel? I'm only seeing the attachment of the parent request. The attachment of the merged request is only shown in the description of the merged request that now shows as a message in the parent request. Is this normal? I think it could be a bit confusing if there are notes referring to the attachments, as anyone reading them might only look in the right hand panel for them.
notification on password use / retrieval
Hi, We have a pool of resources and share them to different users bij way of resource groups. So a resource can be used bij different users, one groep is de administrators with modify rights an other group is the application admins. They have read rights and the last group only has the right to use (rdp) the account. For the last group I configured email notification on the a resource group, it works but if someone else from a different resource group uses the account the mail is sent to. That was
Searching Solutions does not work
Current version is: 11.1 Build 11110 This problem has persisted long before the current version however, I am not sure now if it ever worked. I have tags and topics set up. Entire Content is selected under the search bar. One of my keywords for example is Mitel, I have tried Mitel, mitel, MITEL in case there was a capitalization component and no records are returned. I have tried topic names, content in the subject and description, and I have tried selecting individual items under the search bar.
Help with Update 10514 to 11000
Hi, i was trying to upgrade my servicedesk from 10514 to 11000, but in the process i got this error: Can you help me please with instructions or a manual step by step to do the upgrade please? Thanks.
[Term of the Day]: HelpDesk Dashboard
Term of the Day “HelpDesk Dashboard” Definition — What is Helpdesk Dashboard? The dashboard displays important activities of your helpdesk tool in a single pane, through graphical illustrations in the form of multiple widgets. The dashboard is one of the most essential tool for a Helpdesk administrator, it helps him visualize the Key Performance Indicators and other strategic data for the organization at a glance. Helpdesk dashboard is customizable, they allow the end-user to have a unified view
[DidYouKnow -15] Possibilities on taking various actions upon SLA violations
Hello folks, The process of creating a level of service can come from many starting points, but the industry standard is, that you already have a number in mind that you want to achieve, and have some Key Performance Indicators (KPIs) that will allow you to measure if your helpdesk is doing a good job. In ServiceDesk Plus, we can have Service Level Agreements (SLAs) defined for the intra-organization service provided by the IT help desk team. These SLAs help to evaluate the efficiency, effectiveness,
Creating Priority-wise Resolution Time report.
Hi, I’m trying to create Priority-wise Resolution Time Report as below: However, I’ve encountered problem to create the report. It seems that my data for Resolution Time prevents me from creating this report since its data type is String. Therefore, it can’t calculate the Average Resolution Time of the tickets. So, I tried to change the data type of Resolution Time to number/date but it was unsuccessful because of my Resolution Time written format in ‘n days n hours n minutes’ which is as below:
[SDF-31039] Clean up search filter
Hi, Is it possible to clean up the Clean up search filter (see Screenshot attatched file) Thanks in advance, Yorick
Notifying new requester
Hello, I have Googled a bit but couldn't find what I'm looking for. We have e-mails that comes from no-replay adress ( order system) and we have to manually change the requester. We can manually send a e-mail but to prevent human error I like to automatically notify the new requester. Is there a way to do that ? Your Version : 10.5 Build 10500 Database : postgres
How to enlarge ADSelfService Plus font size
Hi, How to enlarge ADSelfService Plus font size? The default font size is very small. Version: 5.8.16
Domain Trust Relationship
Like many companies, we have moved our workforce to a remote model. The computers were all created in Active Directory and had been joined to the domain prior to moving remote. We are managing these devices using Desktop Central from a server in the DMZ. To make the transition a smooth one when our offices are open and the devices can be put back on the network, can anyone confirm if the computer accounts will remain active or will they lose the trust relationship with the domain since they are
Incoming mail fetching is not working
Since Friday we have a problem with incoming email fetching in ServiceDesk Plus. I have tried restarting the ServiceDesk Plus server and services and also regenerating the certificate using gencert but get the attached error message. I can ping and telnet the mail server and port.
How Do I Remove A Probe From OpManager
I decommissioned one of my probes. However from the central management server I am unable to remove the probe (the probe is showing offline).
Zoom Update 4.6.20033.0407 not working
Hi, Today a patch for Zoom was available. None of our clients show this patch as needed (installed version 4.6.19253). Patch version is Zoom (4.6.20033.0407). If apply this patch log shows: Patch detected as Not applicable since its components are available in the system through other patches deployed in the same configuration or due to some other reason. Any advice appreciated. Thanks, Juergen
Migration V 9.0 Construir 9014 to V 11.1 Construir 11114
We are currently counting on version 9.0 and we want to migrate to Version 11.1. Currently we have the free version and we want to know about the migration process (how to do it, what precautions to take in the update to be able to put together a detail of the risks, preventions and requirements to be able to migrate everything. Thank you
Adobe releases patches for vulnerabilities in Reader and Acrobat
Hello everyone, In this month's security release, Adobe has fixed security vulnerabilities in Reader and Acrobat for Windows and macOS. If these vulnerabilities are exploited, they could cause remote code execution attacks and information leaks. The details of the vulnerabilities are as follows: CVE-ID Severity Impact CVE-2020-9610 Important Application denial-of-service CVE-2020-9612 Critical Arbitrary Code Execution CVE-2020-9615 Critical Security feature bypass CVE-2020-9597 CVE-2020-9594
Adobe releases patches for vulnerabilities in Reader and Acrobat
Hello everyone, In this month's security release, Adobe has fixed security vulnerabilities in Reader and Acrobat for Windows and macOS. If these vulnerabilities are exploited, they could cause remote code execution attacks and information leaks. The details of the vulnerabilities are as follows: CVE-ID Severity Impact CVE-2020-9610 Important Application denial-of-service CVE-2020-9612 Critical Arbitrary Code Execution CVE-2020-9615 Critical Security feature bypass CVE-2020-9597 CVE-2020-9594
Adobe releases patches for vulnerabilities in Reader and Acrobat
Hello everyone, In this month's security release, Adobe has fixed security vulnerabilities in Reader and Acrobat for Windows and macOS. If these vulnerabilities are exploited, they could cause remote code execution attacks and information leaks. The details of the vulnerabilities are as follows: CVE-ID Severity Impact CVE-2020-9610 Important Application denial-of-service CVE-2020-9612 Critical Arbitrary Code Execution CVE-2020-9615 Critical Security feature bypass CVE-2020-9597 CVE-2020-9594
Next Page