Zoom issued fix for an UNC vulnerability that compromises Windows credentials
Zoom patched a fatal flaw in the Zoom Windows client that allows attackers to use its chat feature to share malicious links that once clicked will leak the Windows network credentials of the victim. Such attacks are possible because Zoom for Windows not only converts normal URLs into a clickable link but also Windows networking Universal Naming Convention (UNC) paths. UNC is used to locate a network resource, such as a file hosted on an attacker-controlled SMB (Server Message Block) server. When
The Survey function does not work.
The link is not formed. http://servername/$SurveyLink The link does not convert, the user receives a link in the form "http://servername/$SurveyLink".
[SDF-22226] How to add requester additional field in e-mail notification
Hello. When i create incident additional field i have column name with variable like $UDF_CHAR. I can put it into every notification and recieve information from my custom field. System also have requester additonal field, but there isn't column name with variables. I need to put some additional information about requester into e-mail notification. How i can do this? Thank you.
SDP - External login from WAN on MS-SQL DB
Hello Guys, I just recently migrate from Postgres to MSSQL (all was working great in Postgres), but after migration I can only login from my LAN. WAN access shows the login page but when any user tries to Login a "Username or Password is incorrect" error message appears. I already config all the FW port permissions (Telnet to port 1433 is responding on Public IP) but the issue persists. I appreciate your help. Regards, Andres.
Sync faild - after updating to new the new version 10.0.475
Hi , I just updated our desktop server from 10.0.474 to 10.0.475 and our Conditional Exchange Access(CEA) did not works probably. any one has the same issue ? Best regards
Integration of two portals.
There is a need to organize the interaction of the two portals. Upon receipt of an application with a specific feature in system No. 1, an application must be created in the portal No. 2. When changing the status of the application on the portal No. 2, the status on the portal No. 1 also changes. What are the options? Thank you.
Make Due Date on all requests a mandatory field
How can I make the Due Date field on all request templates a mandatory field ?
O365 Manager Plus - 4329 released!
Hello Everybody! We are glad to announce the release of the latest build of O365 Manager Plus – 4329. This build comes with the following features. Highlight: Unlimited access to all management and reporting features on any number of shared mailboxes, public folders, and other non-user resources for free, without additional license consumption. Enhancement: The Don't send empty reports option has been added in scheduled reports to avoid sending blank reports. Issues fixed: The issue of configuring
Mozilla fixes 2 wildly exploited zero-day vulnerabilities in Firefox
Mozilla has released fixes for 2 zero-day vulnerabilities in Firefox. The fixes are available in the newly released version of the browser, Firefox 74.0.1.The updated version fixes the vulnerabilities CVE-2020-6819 and CVE-2020-6820 Vulnerability and impact Both CVE-2020-6819 and CVE-2020-6820 are use-after-free vulnerabilities and occur due to improper memory space management by Firefox. These bugs when exploited allow the hacker to write codes into Firefox's memory and have it executed in the
Mozilla fixes 2 wildly exploited zero-day vulnerabilities in Firefox
Mozilla has released fixes for 2 zero-day vulnerabilities in Firefox. The fixes are available in the newly released version of the browser, Firefox 74.0.1.The updated version fixes the vulnerabilities CVE-2020-6819 and CVE-2020-6820 Vulnerability and impact Both CVE-2020-6819 and CVE-2020-6820 are use-after-free vulnerabilities and occur due to improper memory space management by Firefox. These bugs when exploited allow the hacker to write codes into Firefox's memory and have it executed in the
Mozilla fixes 2 wildly exploited zero-day vulnerabilities in Firefox
Mozilla has released fixes for 2 zero-day vulnerabilities in Firefox. The fixes are available in the newly released version of the browser, Firefox 74.0.1.The updated version fixes the vulnerabilities CVE-2020-6819 and CVE-2020-6820 Vulnerability and impact Both CVE-2020-6819 and CVE-2020-6820 are use-after-free vulnerabilities and occur due to improper memory space management by Firefox. These bugs when exploited allow the hacker to write codes into Firefox's memory and have it executed in the
Chat bots
Hello! Is anyone out there using chat bots in conjunction with ServiceDesk Plus? If you are, I'd be keen to hear what you're using. It's a direction we would like to go but I'm not really sure where to start! ManageEngine - are there any plans to include this sort of thing in the roadmap?
Launching Intune Application Management in Patch Connect Plus
Hello folks, We are happy to announce that Patch Connect Plus now features Intune Application Management. You can seamlessly create and deploy third party applications in Microsoft Intune, in a hassle-free manner. With Intune Application Management, you can Create third party applications in Mocrosoft Intune. Leverage the cloud platform to deploy third party applications. Use pre-defined application templates to ease the process of creating applications. Customize deployment using pre/post deployment
Zoom issued fix for an UNC vulnerability that compromises Windows credentials
Zoom patched a fatal flaw in the Zoom Windows client that allows attackers to use its chat feature to share malicious links that once clicked will leak the Windows network credentials of the victim. Such attacks are possible because Zoom for Windows not only converts normal URLs into a clickable link but also Windows networking Universal Naming Convention (UNC) paths. UNC is used to locate a network resource, such as a file hosted on an attacker-controlled SMB (Server Message Block) server. When
Zoom issued fix for an UNC vulnerability that compromises Windows credentials
Zoom patched a fatal flaw in the Zoom Windows client that allows attackers to use its chat feature to share malicious links that once clicked will leak the Windows network credentials of the victim. Such attacks are possible because Zoom for Windows not only converts normal URLs into a clickable link but also Windows networking Universal Naming Convention (UNC) paths. UNC is used to locate a network resource, such as a file hosted on an attacker-controlled SMB (Server Message Block) server. When
Question about SAML
Hi, We're interested in using SAML for our logins, since it would increase security for our solution as logins would be protected by Azure AD Conditional Access. My question is what would happen if we loose internet access because of an incident? Would we be unable to login to SDP?
PAM360 new build 4101
Hi, PAM360 4101 has been released and is now available for download. This build comes with an enhancement to the already existing password access control workflow. It is now possible for administrators to provide Just in Time (JIT) privilege elevation to user accounts in local groups of Windows resources. Please see our Release Notes to learn in detail about the same. How to Upgrade to Build 4101? If you are an existing customer of PAM360, download the upgrade pack from the following page: https://www.manageengine.com/privileged-access-management/upgradepack.html
[Community Digest] ServiceDesk Plus - March 2020
Every month is an opportunity to learn or discover something new with this quote, let's see the top activities that happened in are ServiceDesk Plus community for the month of March. Version and Build releases: We had 4 builds released, 11106, 11107, 11108 and 11109 Release Note on "11107" build - https://pitstop.manageengine.com/portal/community/topic/servicedesk-plus-11107-released Reason for revoke of "11108" build - https://pitstop.manageengine.com/portal/community/topic/important-notice-for-users-migrating-to-11108
[SOLVED] [ SD-84585] SDP 11.0 build 11010 Can no longer search Work Log
After upgrading to SDP 11.0 build 11010, when trying to search against work log, the check box that shows what you are searching against, resets back to Requests => Default search In doing this, I get no matches against past tickets that I know include key words that I am searching against. So, I upgraded today to 11.1 build 11100 but this does the same thing. Are they any others experiencing the same thing? SDP is running on CentOs 7, Thanks! Doug Lytle
Auto-Assign Case to Technician when they are first responder
Hello, We're starting to get measured on our SLA's and there's a large number of times where we just immediately reply to ticket with initial troubleshooting, only to forget to assign the ticket to ourselves. This results in a first response violation for us. So, does anyone know of a way to Assign technicians a case when they are the first to reply? Take Care, Bill Meaney
High CPU & memory usage of Desktop Central agent
Hi, I just updated to build 10.0.475 from 10.0.450 last week, and some of the DC agent installed servers and PC facing high CPU and memory usage. I just checked that there is a 10.0.476 update today and also updated. The issue still exists. Seems that the DCFAUser.exe has some issue and make lots of "handles" to CPU. Best regards, Starry Ho
IT analytics in 90 seconds: Leverage monthly recurring revenue to enhance your MSP's business model
Enhance your business model by monitoring your organization's recurring revenue using reports in Analytics Plus. If you're not already using Analytics Plus, download your free, 30-day trial today:
IT analytics in 90 seconds: Leverage monthly recurring revenue to enhance your MSP's business model
Enhance your business model by monitoring your organization's recurring revenue using reports in Analytics Plus. If you're not already using Analytics Plus, download your free, 30-day trial today:
Can I run a report showing the last login time of my technicians?
I want to run a report to see which technicians are using the system, is it possible to get a report of each users last logged in time?
Hardware Reporting on Network Cards
Hi, due to the COVID-19 outbreak we are trying to run a report with the following fields. Computer Name Network Cards/type Last logged on User We are sending users home with desktops and many of our desktops have a Wifi NIC installed. We are trying to identify which machines do not have Wifi cards installed. If I go into an inventory report on a single machine I can see the Wifi cards which are installed so I assume there must be a report on this. Also I opened a ticket for this # 1146947
[Blog] Responsibilities of Change Advisory Board (CAB) and Change Manager
Everyone knows change is never easy, but often quite necessary. The statement is never truer than in IT. Solid change management capability will help you boost your ITSM maturity, break out of the "firefighting mode," align IT activity with business objectives, and transform IT from a service provider to a business innovator. However, these benefits don't come easily. Change management is one of the most difficult ITIL processes to get right.
VIPs
HI, Is anyone able to help me to extract a list of requestors who are listed as VIPs The fields needed are Name Email Job Title Department ManagerName We're on v9.4 PGSQL
Sound chat alert in SDP?
All, Is there a way to get a sound alert when new chats are received (or responses to existing chats are received) in SDP? Thanks! Mark Housler
SecureDCProcess.exe
Hi, What is this process for? And, ho do prevent it from using high memory on a server - uses up to 2GB thanks, Siven
Report for Requester list
Hi, Is there is a way to create a report for the Requester list with no department name or site, as we need to count it and correct it, thanks.
Adding a printer if the samsung tablet is corporate controlled
Hi, Has anyone added a printer to a device controlled by kiosk? If so, what app did you install? Thanks
Reset default database password - service desk plus
How to change password for default postgresql database account (sdpadmin) in service desk plus ? Please guide.
[SD-84377] Calculated Field - Showing Zero In Reports
Hello, I have a series of fields that calculate the number of days between two dates. The calculations work fine .. when there are two dates, it calculates the number of days... when there aren't two dates, it leaves the field blank. But when I create a report, the blank fields are reflected as ZERO, which is throwing off aggregates. I would like to reflect blank or NULL when there is no value calculated. Thank you in advance. First picture is of the form and the blank calculated fields. Second
Patch database proxy server settings
I am not able to change the Proxy settings for the Patch database. It is set to "No Connection to the Internet" and when I change it to "Direct Connection to the internet" The SAVE button does nothing. Any help with this would be appreciated.
Google Chrome releases Stable Channel Update
Hello guys, Google Chrome has updated its stable channel to 80.0.3987.162 for Windows, Mac, and Linux systems. This update also includes 8 security fixes. Below are the fixes that require immediate attention CVE ID Severity Vulnerability CVE-2020-6450 High Use after free in WebAudio CVE-2020-6451 High Use after free in WebAudio CVE-2020-6452 High Heap buffer overflow in media Initiate a sync between the Vulnerability Manager Plus server and the Central Vulnerability database
NetFlow stopped suddently
I am using NetFlow to collect data, but now the flow is stopped suddenly. From the dashboard, I can not see any flow traffic. Any ideas to solve it? Thank you
Google Chrome releases Stable Channel Update
Hello guys, Google Chrome has updated its stable channel to 80.0.3987.162 for Windows, Mac, and Linux systems. This update also includes 8 security fixes. Below are the fixes that require immediate attention CVE ID Severity Vulnerability CVE-2020-6450 High Use after free in WebAudio CVE-2020-6451 High Use after free in WebAudio CVE-2020-6452 High Heap buffer overflow in media Initiate a sync between the Desktop Central server and the Central Vulnerability database and search
Google Chrome releases Stable Channel Update
Hello guys, Google Chrome has updated its stable channel to 80.0.3987.162 for Windows, Mac, and Linux systems. This update also includes 8 security fixes. Below are the fixes that require immediate attention CVE ID Severity Vulnerability CVE-2020-6450 High Use after free in WebAudio CVE-2020-6451 High Use after free in WebAudio CVE-2020-6452 High Heap buffer overflow in media Initiate a sync between the Patch Manager Plus server and the Central Vulnerability database and search
[Blog] Transforming User Experience
Visuals give us a better understanding of not just the content, but what is behind the content — easier, faster, and clearer than just a cluster of written words. Why User experience matters for an Enterprise Software? The success of any application depends on how usable is the product to the user and how easy it is for your user to interact with. Let us take a look on how ServiceDesk plus interface provides an updated look and usability improvements. Themes for Requester Self-Service Portal:
change technician back to requester
Hi there: SDP Version : 8.2.0 Build 8217 If I change a requester into a technician, it will be removed from the requester list (and added to technician list). What to do if I want it to be changed back into requester? When I do a test (delete the new technician), it was deleted from the technician list but it doesn't re-appear under requester list, so: requester [John] added changed [John] into a technician [John] gone from requester list, new technician [John] added delete [John] from technician
Next Page