Upgrade to Windows 10 1909 including language packs
Hi Everyone, I'm new to Desktop Central and have only been using it for he last 3 months. I still haven't fully integrated into our estate yet. However, one of the main things I need to do is to upgrade our Windows 10 machines. I've created a configuration that uses patch ID "107610" to upgrade Windows 10 to version 1909 and that works fine. However, I've noticed that this removes the UK English language pack and sets the language back to US English. Is there a way to include the UK Lang pack with
Actively Exploited Zero-Day Vulnerability in Mozilla Firefox
A Remote Code Execution vulnerability CVE-2019-17026 in Mozilla Firefox and Firefox ESR is being actively exploited in the wild. This vulnerability was categorized as a type confusion, which is potentially a critical error that could impact data processing. A remote attacker can create a specially crafted webpage, trick the victim into visiting it, trigger a type confusion error and execute arbitrary code on the target system. Mozilla's security advisory reads, “Incorrect alias information
Patching Openshift 3.11 node
Hello everyone, We have been using for Desktop central to manage our Linux patching strategy. Recently we have added an openshift cluster (13 nodes) in our environment, but in order to deploy the patches, it's required to run a shell command to prune the node before the patching and another one after to reschedule the node. https://docs.openshift.com/container-platform/3.11/upgrading/os_upgrades.html is there a way to instruct Desktop Central to run a shell command (before and after) deploying the
HP BIOS Updates
It would be good if HP BIOS updates could be pushed out, similar to how the DELL solution that is already implemented
System driver updates
I'm sure this isn't an easy task however I was curious if there were any plans to perhaps include driver updates into Desktop Central? I am also curious if current DC admins push driver updates and mind sharing their experience.
Dell BIOS update
Hi, The patch notes say "You can now patch your BIOS for DELL devices with Patch Management. (Build 10.0.422)" -- I'm very interested in trying out this functionality, but I can't find anything relating to it in patch management. Are there some additional steps required to activate it? Thanks!
WAN Facing DC servers
Hi all, We're doing a POC with DC to potentially replace Ivanti EPM and a requirement moving forward to have off-site machines patched as soon as they come online since some users have infrequently used machines kept at home just for when they travel or have an office closure. Can DC be architected in this way? I would want it to be able to dynamically switch between being an off-site device and an internal device as they employee travels.
Separate Patches For Servers
Hi, I'm beginning to set up patch management for our endpoints with Desktop Central. However, I'm a little hesitant in regards to servers. Is there a way to separate what patches are approved for certain servers vs. others? I have to schedule updates at different times for some servers in production and they can't be updated at the same time as others. I'm wondering if there's a way to create different groups with different approved patches and installation times? Thank you.
Patch Tuesday - December 2019 updates
Hey guys, Here is a quick run-down on all the updates released this Patch Tuesday New Security Bulletins : 2019-12 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB4530719) 2019-12 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4530692) 2019-12 Security Only Quality Update for Windows Server 2012 (KB4530698) 2019-12 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4530730) 2019-12 Cumulative Update for Windows 10 and
Patch Management Tab issue
Whenever I browse to the Missing Patches, Installed Patches or any of the Patch lists I get the following screen and no results: (it just acts like it is trying to display but nothing)
Patch Tuesday December 2019 - Forecast
Hey guys, The last Patch Tuesday of this year is almost here, let's take a quick look at what to expect in December 2019 - Patch Tuesday We can expect the usual monthly rollups and security - only patches from Microsoft. This will ideally include patches for the various operating systems, along with updates for Office, SharePoint server, Internet explorer and .NET There are possibilities for updates from Apple as well in the form of updates for MacOS, iTunes and iCloud for Windows. Google has also
Unknown Error. Code : -2145116147
Hello all, I send the security updates for the computers but I’m getting the following error: Unknown Error. Code : -2145116147 This has happened to me several times so I need help because the computers are not pactching Thank you for your support
Desktop Central 10.0.469
Hi I have problem with DC. I just install new server for test (trial mode for 30 days) and I have problem with upload files to patch repo. my steps Going to Patch mgmt and Download Failed (Patches)(5) I can see list of patches i failed status. Press upload and download file from link at the bottom after download, press Click here to browse the file upload and navigate to download folder. mark file and press ok then upload. And nothin happend. Stil I cen still I can see uploading % and nothing happen.
Rollout of Windows 10 1909 Feature updates - The Vanadium!
Hello All, A Quick heads-up, Microsoft has released its Windows 10 1909 feature updates for users. Below you can find few highlights of this feature update. Most of the new features are focused on increasing general performance and efficient battery usage. An improved security when using Internet Explorer and Microsoft Edge. Voice-activated digital assistants can be accessed by users from Windows 10 lock screen. Go ahead, and update this feature pack by applying the below Patch IDs in Patch
Suggestion: option for "apply configuration" alongside "install patch"
At the moment, if I look at the 'missing patches' view for a particular patch (e.g. Google Chrome) I can see a list of hosts that still require this patch. I can select hosts with a checkbox and then press the 'install patch' button at the top if I want an immediate deployment. For me, many of the patches are showing with a status of "Patch update is delayed since application in use" -- this is expected as we do not force daily reboots of our computers. What I would find *incredibly* useful is if
Windows 10 1909 update methods?
I've read that for systems running Win 10 1903, the 1909 update will be a smaller service pack deployment that should install much faster and less obtrusively than the full OS reinstall of previous feature updates. Will Desktop Central support this update method, and if so, when?
Patch Tuesday November 2019 updates
Hi there, This Patch Tuesday brings the following fixes and updates New Security Bulletins : 2019-11 Security Monthly Quality Rollup for Windows Server 2008 (KB4525234) 2019-11 Security Monthly Quality Rollup for Windows 7 and Windows Server 2008 R2 (KB4525235) 2019-11 Security Monthly Quality Rollup for Windows Server 2012 (KB4525246) 2019-11 Security Monthly Quality Rollup for Windows 8.1 and Windows Server 2012 R2 (KB4525243) 2019-11 Cumulative Security Update for Internet Explorer 9 for Windows
Free support for Windows 7 Extended Security Updates (ESU)
Hello everyone, Microsoft has announced the end of life for Windows 7 and Windows Server 2008/2008 R2. This means that you will no longer get bug fixes, security updates, or new functionalities for this version of the OS. We would suggest you to migrate to the latest version of Windows 10 as soon as possible to avoid potential cyber attacks. Incase you are unable to migrate on time or reluctant to upgrade, you can purchase and avail the Extended Security Updates (ESUs) that Microsoft offers for
New Error messages, no documentation.
I've come across a few new error messages I have yet to see before and i'm not finding anything in the documentation or Google searches. Before being asked to upload logs, can someone explain what they mean so I may see if it's something on this end that can be fixed by myself. Error: An attempt was made to create more links on a file than the file system supports. Error: Transaction support within the specified resource manager is not started or was shut down due to an error. Each of these errors
Patch now! 2 new use-after-free zero day vulnerabilities in Chrome.
Google Chrome decided to spook its users this Halloween by issuing an update that fixes 2 new use-after-free vulnerabilities "CVE-2019-13720" and "CVE-2019-13721", of which CVE-2019-13720 is already exploited in the wild. Use-after-free flaw, which in the least could result in a crash or could be leveraged by an attacker to run arbitrary codes or even enable remote code execution. CVE-2019-13720 - affects the Chrome's audio component. CVE-2019-13721- affects the PDFium library. Google also announced,
Custom report with Remarks
I've been through all the options I could find to create a report that contains remarks from a specific screen, however, I am unable to locate such. Is it possible to get a report based of certain criteria? If you go to Patch Mgmt > Dashboard > Deployments Failed Click on a computer that is missing patches or click the number of patches a particular computer is missing. On this screen there is a column for remarks. It's these remarks that are defining why a system is missing said patches. Where
Modifying autopatch deployment problem
Hi, I have version 10.0.436 when modifying auto patch deployment configuration and click save at the end it returns error:"Sorry something has gone wrong, unable to reach page". Could you check whats the problem?
Bios Update Database
I'm curious as to how often the BIOS versions are updated in the patch management database? I was testing this with a Dell Optiplex 7060 in our environment and according to DC, it was up to date with BIOS version 1.3.4 (released 4/4/19), however Dell's support site shows a newer version available for the 7060; version 1.4.2 released 7/5/19. This just makes me concerned as to how up to date the DC database really is...
Why the big difference in time stamps
I've finally gotten around to digging into some reports. I am seeing major discrepancies in time stamps. A computer can be listed as Last Checked in in June of this year yet will state the Agent Upgraded yesterday. What are the differences between Last Contact, Last Boot and Agent Upgraded? One would think that if the agent was upgraded, it had to have some sort of contact with the server to realize it needed to e upgraded, thus the other time stamps would update and reflect. Examples: Computer
"Aw, Snap!" messages in the latest Chrome M78 update
Hello All! The latest Google Chrome M78 update faces a high number of "Aw, Snap!" crashes. This is found to be a result of incompatible older versions of Symantec Endpoint Protection running on the computers on your network. Resolution: Update your Symantec Endpoint Protection to version 14.2 or above. Disable the RendererCodeIntegrityEnabled policy. Listed below are few other applications that might be causing the crash, contact the application vendor for a fix. 1. PC Matic 2. Print Audit 3. Palo
Redeployment of missed patches
Good Day, I'm trying to figure out what happens if/when a patch is missed during Automated Deployment. Say Patch 3 requires that Patch 1 is installed first but patch 1 requires a reboot. So patch 1 is installed, the computer reboots, will patch 3 then get installed and if need be reboot the computer again? After the reboot when the agent contacts the server again, does it scan itself for missing patches and subsequently install any patches that were missed immediately? Or does the Scan only happen
Microsoft 2019-10 Patch Deployment Problem
Hello to Everyone, I have a problem. When I try to send a patch, I get these two errors as you can see in the appendix. Unknown error code: 50 Unknown error code: 50021 Here, the issue of Symantec installed on the client needs to be updated. I've updated it on all clients. I still have a problem. Patches I'd like to send: 2019-10 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB4519976) 2019-10 Security Only Quality Update for Windows 7 for x64-based Systems (KB4520003) Thank
Patching LibreOffice results in removing the old version but NOT installing the new one, "not applicable" - but it is?
One of my users today complained about the disappearance of LibreOffice Calc. I had launched a series of updates on her machine that included getting LibreOffice to 6.2.8 Several operations followed including the removal of the existing version I have checked the configuration outcome and it did not apply 6.2.8 as "not applicable". Except it is applicable, as I manually installed it later. The user had several applications open, and the installation complained about needing to close Adobe Creative
PatchManagement
Hi, my problem is, that the PatchManagement report me, that it could not download Opera and i will activate my firefall or set a rule on the Virusscanner. The Firewall is deactivated in the domain network and a rule for the ESET NOD Virusscanner is set on all servers. When anybody have a resolution...;-)...please....upload from my desktop: It cames the same message...
A major security flaw in Linux Sudo has been discovered!
A potentially catastrophic vulnerability in sudo has recently been found that affects all Linux endpoints. This vulnerability (CVE-2019-14287), when exploited, enables users with hostile intentions to surpass security restrictions and run commands as the root user. Sudo is a core command in Linux that enables users to execute commands as other users including those that have elevated privileges such as another superuser or root user. Desktop Central now supports detecting and fixing the vulnerability.
Adobe releases out-of-band security updates in its products
Adobe is considered one of the widely used third-party applications in the market with over 15 million active subscriptions. As announced earlier, Adobe has released out-of-band security updates today to patch a total of 82 security vulnerabilities across products listed below. Adobe Acrobat and Reader Adobe Experience Manager Adobe Experience Manager Forms Adobe Download Manager Of these 82 vulnerabilities, 45 are rated critical and if exploited, attackers can execute arbitrary code in the context
Windows 10 upgrade to 1903 failed, Windows cannot verify the digital signature...
Hello, I am trying add and upgrade Win 1903, but it always failes with the error below. Error: "Remarks from the CreateProcess is Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source." I have tryed re-downloading the Windows 10 iso from diffrent sources but get the same result. Updating PC that has "Windows 10 Professional Edition
Last Boot Time and Patch time
Is it possible to add the Last Boot Time and Last Patch time as columns under Patch Management > Deployment > Automatic Patch Management > System Details of a configured automatic patch management configuration?
Zero-day vulnerability in Apple iTunes and iCloud for Windows patched
Hi guys, A zero-day vulnerability in iTunes and iCloud for Windows, which has been exploited in Ransomware attacks has been patched in Patch Tuesday October 2019 updates. The vulnerability exists in the Bonjour installer that gets installed in Windows machines along with the iTunes and iCloud for Windows app. This vulnerability in Bonjour installer is an 'unquoted service path' vulnerability, and can be exploited by planting a malicious executable file to the parent path. Further this exploit's
Add the ability to make changes to Test Groups instead of having to delete and remake the group
As the title says, I'd like the ability to make changes to a test group for patches instead of remaking the group whenever we need to add/remove a PC.
Microsoft Patch Tuesday updates - October 2019
Howdy folks A quick run-down on the patch tuesday updates for October 2019 New Security Bulletins : 2019-10 Security Only Quality Update for Windows Server 2008 (KB4520009) 2019-10 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4520003) 2019-10 Security Only Quality Update for Windows Server 2012 (KB4519985) 2019-10 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4519990) 2019-10 Cumulative Update for Windows 10 Version 1903 and Windows Server
Microsoft releases out-of-band security update to fix IE zero-day & Defender bug
1. IE zero day The IE zero day is a very critical vulnerability which can be exploited via Remote Code Execution (RCE). Remote code execution is an attack that can be performed by executing malicious codes from remote location. The IE zero day is tracked with CVE-2019-1367identifier. 2. Microsoft Defender DoS bug Microsoft also released security patches to fix a DoS bug associated with Microsoft Defender. The good news is, to exploit the bug, the attacker first needs to gain access to the victim's
Patch Sync Failed
My patch database failed to sync this morning (Saturday). Anyone else getting these messages? The link in the messages is "dead". I am on 10.0.433. Problem Synchronizing Patch Database Details of the latest patches could not be updated due to version incompatibility. Upgrade to the latest hotfix to get this fixed. Patch Sync Failed! Your Patch Database is not up-to date. To synchronize your Patch Database, contact support with server logs
C&C security threat found on Trend DDI from Desktop Central
Hello, I have a question for the community regarding Desktop Central and Trend Micro's DDI box. Since the 5/9/19 we keep seeing C&C activity on our Trends DDI box linking back to Desktop Central running the C&C activity, its not occurring on all computers in the environment and is only happening 2-6 times a day on different devices every time. We were effected by the high CPU usage issues in the last patch but have installed the hotfix and soon to install the latest patch, would any of this cause
Is there a way to manually remove superseded patches from showing in Desktop Central
I've been told that the computers for these patches that have been superseded need to be removed from desktop central. That cannot be the case. Some of the machines are remote users who don't always connect to the companies VPN, thus they aren't reporting all the time. I did however check my missing patches. I have 26 that are marked as superseded. Patch ID Bulletin ID Patch Description 27233 MS19-AUG6 2019-08 Security Monthly Quality Rollup for Windows 7 for x86-based Systems (KB4512506) 27234
Next Page