Bug - 2 Hr Delay with Scheduled Patch WOL
We have version 92119 The scheduled time in patch policies and deployment policies is irrelevant for shutdown machines, there is no point to it. Devices get woken up 2 hours after the specified time. There is no point to this and it makes trying to work out actual WOL times a nightmare. M.E have said that it's always been like this. What is the point? Is this a bug or a known 'design feature'? Note: Software configurations using deployment policies to wake up PC's work at the stated time. We have
Pre-Boot option in Deployment policies
Hi all, I'm wondering if someone can help me out here. Is it possible to program a deployment policy that will perform a system reboot BEFORE the patch\software installation? Glenn Cousins, IT Manager Helix Electric
Patch Deployment Scheduling
I am working on creating groups for automatic deployment of patching. My goal is to have everything go to the test group for approval / disapproval. A week later have a larger group pick up the approved patches. Finally, the rest of the computers picking up approved patches a week after that. my question is, If I set the group to "scan, download, and deploy missing patches." on a specific date, and they happen to be turned off that day. Will they pickup the "scan, download, and deploy" the next
Desktop Central errors when running patching configurations
When running some patch configurations I have a few systems that fail to take some .net patches and result in the following error - "A Patching error A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider" The systems throwing these errors are windows 2008+ servers. I'm certain this isn't a DC issue but do you have any ideas on how they may be resolved?
Missing patches from Desktop Central
A colleague has somehow disabled Java updates from being displayed but I can't for the life of me figure out how enable them so I can approve or decline them again. Stephen Fowles 3rd Line Support Technician North West Ambulance Service - NHS Trust
What is supported in November 2016 - Patch Tuesday? status update
Hi Folks, Greetings from Technical Support Team. Since many customers are getting confused with this month's 'Roll-up' patches and the release process (November 2016). Here is what the team has done for a better understanding. A security-only quality update Bulletin ID Released Updates (KB) MS16-130 * 3197867,3197873 MS16-131 3197867,3197873 MS16-132 3197867,3197873,3197876 MS16-134 3197867,3197873,3197876 MS16-135 3197867,3197873,3197876 MS16-137 3197867,3197873,3197876 MS16-139 3197867 MS16-142
Unknown Error. Code : -2145124329
We a running Build No:92093 and we are often getting a error when trying to install patches of Unknown Error. Code : -2145124329 Rebooting doesn't fix it. Syncing the Vulnerability DB hasn't helped it. What's the next step?
Patch Management not working 100%
Hello I discovered during a maintenance window that updates are not included in ServiceDesk Plus - MSP. Can somebody tell me if I have the wrong settings?? Patch management i ServiceDesk report 3 missing patches, not 32... I hope my settings are wrong...
OfficeUpdateError: Patch already installed
Hello, I have some systems complaining about "OfficeUpdateError: Patch already installed", if it is already installed, why it shows deployment failed? Can it just ignore it? Thanks, Zahid
Succeeded Patches are still showing as missing patches
Hi Team, I have created task to install patches. For this configuration status is showing as Succeeded but still those patches are showing under missing patches.
Revert Patches with a Policy?
Hello. Say a vendor publishes a patch that breaks a user's machine. Is it possible to revert this patch through the Patch Mgmt or Configurations systems? Thanks.
How to disable HTTP?
We have HTTPS enabled on Desktop Central console but are still able to connect to the web ui through HTTP over port 8022 (working via TCP 80). How do we disable this? We would like it so that it is ONLY accessible over HTTPS. Thanks.
Windows 10 Anniversary Build 1607 False Positive Finding
I've been working on pushing out the Windows 10 1607 build to some of our PCs. Because Microsoft has been having issues with 1607 and the cumulative updates, they've had to create multiple variations of those cumulative updates each month. In September and October I've noticed on our PCs with 1607 that I receive false positives after the newer CU is applied. Example: KB111111 is released and applied to a PC. Desktop Central scans the PC and all is well. KB111112 is released to fix an issue with KB111111
Remote Office in DMZ
Some background, we have many autonomous business units with no connection back to us besides VPN. We want to supply patch management capabilities through ManageEngine. Is it possible to drop a remote office in the DMZ have the BU in that remote office and open ports back to the main console so they can manage their own remote office? Has anyone done a setup like this? Alternatively has anyone moved to the MSP model and can provide information on how it differs from Enterprise? Thanks.
Patch dependency
Hello, I was patching a pc when I got a message in DC saying that patch id 21330 was not applicable. The reason was "dependency patch is not applicable for this target". I checked in the log and found that patch id 21330 is dependent on patch 103214 which doesn't even show up as missing anywhere. I manually installed the patch on the system and got no errors. Did a patch scan after that and the 21330 patch is installed on the system. Is there an issue with that patch's dependency info ? Why did I
When do 3rd party updates become available
How often/When do the third party updates usually get added to the database in Desktop Central? Is there a set schedule? I have forced a vulnerability database update, but I do not yet see the new Adobe Flash Player update 23.0.0.205. Thank you, Michelle
need to update patches for manage engine desktop server
Hi All, we need to update patches for manage engine desktop server. am new to manage engine desktop.. could you anyone tel me???
Missing patch 21645
There was a patch with the ID 21645 (October 2016 Monthly Rollup, KB3185330), which I was applying to my Windows 7 PCs. Now it is not showing up to be installed on any of them. It's not even showing up at all when I look in the list of patches. What gives? I would like to deploy this to my PCs. Does this have something to do with the changes you made in the new version of Desktop Central? I am on build 92051 at the moment. I am not trying to deploy these updates automatically mind you, I am
Bug: WoL via Deployment Policy
I have v92119. I simply cannot get any Deployment policy to wake up any devices. However, a scheduled WoL task under Tools does work. I have 90+ PC's and out of hours patch scheduled do not work. To get around this, I have to use a scheduled WoL task beforehand. As an example, a patch schedule with a deploymemt policy to wake up 90 PC's at 02:00 will not wake them up. However, a scheduled WoL task at 02:30 will wake them up. This is not a scalable solution because you cannot assign a scheduled WoL
Having MAJOR Issues With Patch Updates After Applying Latest Hotfix
Hello, Earlier this week I applied the latest hotfix for Desktop Central. I've noticed since doing so, the patch updates I have pushed out are not getting applied, even after multiple attempts. The KB article Configuration-application issues after Desktop Central hotfix suggests to right click on the application installed in the client, and select Apply Configurations. So far I have done this step on 5-6 clients and the patches still are not being applied. I should say when I click on All Systems>Highly
Deployment Failed report in DC
Is there a way to do an query to list the Computer Name, Remote office and each instance of Deployment failed that is unresolved in DC for each PC that has the Deployment Failed result? We have 215 out of 1580 PCs that are reporting Deployment failed. Of these, 165 have checked in during Sept and Oct 2016. Some of these represent PCs that need attention, others are network interruptions or minor software updates that do not require immediate attention. I have not found a way to export the details
WIndows Update Status
I am already able to generate Windows Updates reports. So that's a good start. What I'd like to be able to do is report Windows Update Status for each computer. Is that possible? That is, I care less about that updates happened / occurred. What I care about is the *state* of the computer: Up-to-date, updates failed, updates available. All of the computers are Windows 10 Pro
Patch Management - VLC Media Player download issues
I'm having issues downloading VLC Media player. It gives me a "Premature EOF encountered" error every time I try and download it.
Patch Inventory since 92099
Hi I found inventory trouble since 92099 installed Like No reporting to "Patch Management" after patch applied. For example: 304124 - Update for Mozilla Firefox (49.0.1) - Missing systems = 381 I can see most of machines already applied (The operation completed successfully.) If I drop down to missing systems It's not required If I go to specific machine. Second day - results not changed. When this results must be updated? Dmitry
OfficeUpdateError: Invalid baseline.
Can someone tell me what this error message means? office version Microsoft Office Professional Plus 2010 MS15-022 Security Update for Microsoft Office 2010 (KB2956076) 64-Bit Edition Microsoft Security Update Important Approved OfficeUpdateError: Invalid baseline. Read KB Sep 28, 2016 04:07 AM 17203 MS15-022 Security Update for Microsoft PowerPoint 2010 (KB2920812) 64-Bit Edition Microsoft Security Update Important Approved OfficeUpdateError: Invalid baseline. Read KB Sep 28, 2016 04:07 AM 19250
MSU Deployment
So I did the usual patch Tuesday (Aug 9) get them out there and came across something yesterday (Sep 8th) KB3177725 is not perfect, it breaks multi document printing (released Aug 9th) KB3187022 fixes the usual MS screw ups (released Aug 23rd) Oh lucky me, the fix is an MSU not an MSI, so now I have to go around and manually patch 60+ workstations Can we not have a tutorial on how we can deploy MSU's through the DC / Software Deployment ??? Jim..
Desktop Central Microsoft Updates
Has anyone seen any inconsistency with Desktop Central Patch scans for Microsoft Updates. My Vulnerability scanner indicates patches needed, Microsoft Security Baseline Analyzer indicates patches needed, checking for Windows Updates from Microsoft indicates patches needed, but yet Desktop Central Indicates Patches not needed. Junior
Patch ID 103227 Fails Checksum After Download. No problem with any other patches...
Patch ID 103227 Fails Checksum After Download. I am not using a proxy. I can download this patch directly from the Microsoft link on the machine that ManageEngine is installed on. Not sure how to proceed. Any help or direction would be greatly appreciated. Will
Deploy windows update fail
I create onw poliy and try to deploy windows update to 1 pc. but fail with below log. can you advise? [ 2016-09-12 16:32:33:831 ] [ 1376 ] [INFO] AgentSendRequest : The url to get / send in UTF8 format is given by /statusUpdate?computerName=PIMHKGVoiceVM&domainName=LOCALPRUDENCE&customerId=1&actionToCall=3&actions=13 [ 2016-09-12 16:32:33:831 ] [ 1376 ] [ERROR] ChangeUtf8ToWideStr: utf8 is empty! [ 2016-09-12 16:32:33:831 ] [ 1376 ] [INFO] InternetSendRequestEx : DesktopCentral Server & Port ->
Modify Scheduled Patch Deployment Notifications
We have numerous scheduled patch deployment jobs that are executed nightly with notifications generated for each task. The tasks are configured to address specific groups of machines. We would like to be able to modify the subject line of the notification email that's generated when the task completes so our technicians have an idea of which group of servers the notification addresses. Is the possible or planned? Thanks
ManageEngine Desktop Central : Jul 2016 - Patch Tuesday update
Dear Team, Greetings from Desktop Central. Here is a quick update on the July 2016 Patch Tuesday. New Security Bulletins : Security Update for Secure Boot (3177404) - Supported Security Update for Adobe Flash Player (3174060) - Supported Security Update for Windows Kernel (3171910) - Supported Security Update for .NET Framework (3170048) - Supported Security Update for Windows Kernel-Mode Drivers (3171481) - Supported Security Update for Windows Secure Kernel Mode (3170050) - Supported Security
Security Update for .NET Framework not showed
We 'have 6 MS windows 2012 servers with any version of .net framework. Till last July we found any security update for any .net version listed into missing patches. Now even if Microsoft released new security update (MS16-091) on all server not .net fix is listed, while MS MBSA and Windows Update show it as required. I tried to force DB refresh, inventory and scan all systems but nothing changed. Do any one have same issue ?
Patch Deployment of All Highly Vulnerable Systems?
It use to be if you created a patch deployment of systems that didn't have identical patch needs you would receive a warning message stating you are about to push patches to a system that may not need it. Such as mixing 32 bit systems with 64 bit systems. I notice ManageEngine no longer gives this warning message does this mean it's been fixed so all highly vulnerable systems can be deployed at once?
Is it possible to allow users to have some control of patch/software deployment downloading?
We have multiple users who are requesting for a level of control for when they download patches/software. There are two main factors for this request: 1. Extremely low bandwidth situations - where people are using dial up, etc, the patch/software download saturates the connection 2. Metered data transfer - where we have to pay per MB of data used (in an airplane, for example) 3. Scheduled connections - some of our connections cost more to use during the day. Is there some way to
After migrating to MS SQL
Hi, I've recently migrated the patch management database to our MS SQL server. I see that postgresql is still running in the task manager and ME is the only software that uses it on our server. Is it possible to deactivate it completely and remove the according data from the server safely?
Exchange Anti-Spam Updates / Windows Defender updates
I never see these become available for approval or deployment. Does ManageEngine not support the Exchange Anti-Spam Updates or Defender updates? We do run a very nice behavioral based AV but like to run Defender as a backup. As far as the Anti-Spam updates, I don't see how that is not happening. We also run an anti-spam firewall between our Exchange and the WAN boarder but it doesn't always catch everything and it's nice to have those Anti-Spam Updates. Thanks,
Desktop Central MSP API?
I'm wondering if there is an API that would be accessible through PowerShell to be able to run custom reports? I need to pull a Missing Patch report for multiple clients a week before their scheduled patch deployment, and using Powershell would make this very easy for me instead of having to filter out everything manually (very tedious). Any help would be greatly appreciated!
Remote Server download all languages patches
Hi there I can see that all our Remote DC servers downloading all language patches even not needed for current region For example London DC has only English language machines but I can see packages for Russian, Chinese, Romanian In case of Windows 10 patches too big, it's extremely loading WAN. It has to be redesigned to optimize Remote DC sync... Dmitry
Java 32 bit and 64 bit versions are not being patched automatically
hi guys i have a dilema where i have machines with both versions of Java. 64bit is showing up as needing a patch and gets patched however 32bit is not showing as needing a patch even tho there is a new version available just as the 64bit version. I am told that Desktop Central if it sees both versions it can only patch the 64bit version. Has any of you seen this, any reason why it cannot patch both? Obviously we can do a manual deployment but it would be easier if it was to see the required patch
ManageEngine Desktop Central : Aug 2016 - Patch Tuesday update
Dear Team, Good day. Quick update on the August 2016 Patch Tuesday. New Security Bulletins : Cumulative Security Update for Internet Explorer (3177356) - Supported Cumulative Security Update for Microsoft Edge (3177358) - Supported Security Update for Microsoft Graphics Component (3177393) - Supported Security Update for Windows Kernel-Mode Drivers (3178466) - Supported Security Update for Microsoft Office (3177451) - Supported Security Update for Secure Boot (3179577) - Supported Security Update
Next Page