Hi ,
I want install daylight saving update for WIndows XP SP2/SP3 machine through LANdesk pacth manger .I tried to install the update KB979306 and KB2863058 but when I do repair it say non update avilable.Can you please suggest me which update I suppose to install for dayling saving and why its saying noupdate avilable though I can see the update update in patch manager.
Thanks..
Hello.
I'm trying to create a custom definition in LD 9.5 SP1 to detect if a certain registry key is set to a certain value.
Since the "Registry Settings" function is hardcoded to only support HKEY_LOCAL_MACHINE, I need to use a "Custom script" instead since the key I'm looking for is placed in HKEY_CLASSES_ROOT.
I'm using the built-in function "ReadRegValue" to get the value, but whenever I try to read a value below HKEY_CLASSES_ROOT\CLSID I get an empty result. I can read other keys in HKEY_CLASSES_ROOT without any issues.
Example:
For testing, I import the following keys on a test device:
Windows Registry Editor Version 5.00
[HKEY_CLASSES_ROOT\{dummy}]
"Test2"="val_test2"
@="dummyval2"
[HKEY_CLASSES_ROOT\{dummy}\shell]
[HKEY_CLASSES_ROOT\{dummy}\shell\open]
[HKEY_CLASSES_ROOT\{dummy}\shell\open\command]
@="c:\\dummy1.exe"
Windows Registry Editor Version 5.00
[HKEY_CLASSES_ROOT\CLSID\{dummy}]
"Test2"="val_test2"
@="dummyval2"
[HKEY_CLASSES_ROOT\CLSID\{dummy}\shell]
[HKEY_CLASSES_ROOT\CLSID\{dummy}\shell\open]
[HKEY_CLASSES_ROOT\CLSID\{dummy}\shell\open\command]
@="c:\\dummy1.exe"
I have a rule in my custom definition that is using the following script:
Log "CLSID testing"
stringRegVal = ReadRegValue("HKEY_CLASSES_ROOT\CLSID\{dummy}\")
Log stringRegVal
stringRegVal = ReadRegValue("HKEY_CLASSES_ROOT\CLSID\{dummy}\shell\open\command\")
Log stringRegVal
Log "Non CLSID testing"
stringRegVal = ReadRegValue("HKEY_CLASSES_ROOT\{dummy}\")
Log stringRegVal
stringRegVal = ReadRegValue("HKEY_CLASSES_ROOT\{dummy}\shell\open\command\")
Log stringRegVal
The result in my vulscan log file is the following:
Running detection script CLSID testing Non CLSID testing dummyval2 c:\dummy1.exe
The keys in CLSID are not read as they should.
Has anyone experienced this before and/or know how to solve it?
Thanks in advance.
Hello all,
I have been updating printer drivers on our print servers and I have been noticing lately that many of our end user clients are recieving reboot prompts as LANDesk sees the PendingFileRenameOperations registry entry. Appears that the new Lexmark C772 drivers are causing most of the events. When I reboot the entry is cleared but when I run a new vulscan the PendingFileRenameOperation entry appears and causes the reboot prompts. I do see some of the Xerox drivers causing the same issue as well. The registry entry is located here: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\PendingFileRenameOperations
Just curious if anyone has had a simlar experience.
Much appreciated,
Jason
We are looking at using LDMS 9.5 SP2 Patch Manager to patch our servers as well as our workstations.
However I can see no options within the agent or the scan and repair settings to enabel us to download updates and patches and then manually install them on the servers!
I am unsure if this is correct or not. I would imagine there must be the option somewhere as I can't believe people allow LANDesk to automatically patch servers without any control or idea as to which patch may have broken something.
Even using pilot groups we would still need to be able to control the patch process so that we could identify if a patch had casued an issue or not.
Is this option available or is it a completley automated process in LANDesk?
How do others patch servers with LANDesk?
Rob.
I have a custom vulnerability that executes a in-house packaged exe. The exe is supposed to pop up dialog boxes warning the user of the install with instructions to close open apps. When I run the exe as a distribution package the dialog boxes pop. When I use the exe in a vulnerability, the dialog boxes to not pop.
I'm running 9.0 sp4. Win7. I've checked all the options for /showui=true, show all feedback to user, etc. I've tried having the vulnerability run the exe from sdmcache and from the core. How can I force vulscan to display all the UI for the exe to the user?
I understand that MSU patches are as they were delivered originally by Microsoft and non MSU patches with the same numbers are Landesk's way of repackaging these packages so they would be platform specific.
I currently have all patch information go into unassigned.
IF I move both MSU and the NON MSU into scan, and then deploy the not MSU, I should see the need for the MSU to drop off accordingly as Machines get the Landesk version of these patches? But it would be good to scan for both just to be sure. Is this logic good?
When trying to download updates, I get errors like this one:
Attempting to download 1 patches
Failed to download file windows6.1-kb3079904-x64.msu
Connection to http://download.microsoft.com/download/1/5/7/15796587-cdc1-4586-97e9-299409682dc4/windows6.1-kb3079904-x64.msu failed. The request was aborted: The operation has timed out.
Proxy settings: Not using a proxy server.
Trying alternative source at patch.landesk.com
Failed to download file windows6.1-kb3079904-x64.msu
File https://patch.landesk.com/LDPM8/ldvul.php?KEYWORD=filename&FILENAME=patches/windows6.1-kb3079904-x64.msu does not exist
Has anyone figured out how to actually download the latest v.6 Java update? They only list the v.7 stuff now on their standard download page. I found a page where you can download old versions, but it only went up to the last v.6 version - Update 43. The LANDesk bulletin says: "login Oracle Technical Network to get these patches" but after mucking around on the Oracle site for 15 minutes, I can find no such logon.
Thanks!
Does LANDesk support windows defender definition deployment...The only thing I could find under patch manager were major updates
Alright, I've been beating my head against the wall on this one and about to drive myself bonkers. I know I'm missing something really stupid here, but I have machines that keep failing to download/install patches when running a security scan.
They act like they will begin downloading the patches, but then they error out with the following return code at the end of the vulscan.log:
Exiting with return code 0x8db301d4 (468).
According to this document, that means #define IDS_PATCH_CANNOT_LOGON_USER 468 but for the life of me that tells me nothing. What does that mean?
When I manually initiate the downloading of patch content everything works fine. When I schedule it as a task and run it, it fails. Thoughts? LANDesk 9.6 SP1. The owner of the task is the same as what I am logged in with (and able to run manually with). The vaminer.details.log file is a bit cryptic; it's acting like it can't verify the connection to the patch site (I am on the east coast, so my corporate firewall is open for https://patchec.landesk.com). We are not using a proxy server.
I can post the text of the log file (once from the successful download and also from the failed) if that would be helpful. I'm looking for any thoughts or advice at this point.
Thanks!
We are recently new to LANDesk 9.6.
I have two Windows Server 2012 servers that show they need patch 3008242_MSU. I have scheduled the patch on three occasions and it fails with Error code 412.
I remoted to each server and copied the patch from LANDesk to the servers and tried manually run it. I get "Windows Update Standalone Installer: The update is not applicable to your computer."
I remoted to each server and looked through all the installed updates for KB3008242. I thought if I found it I could uninstall it and try again. However, it is not listed on either machine.
What do you think I should do next?
I am trying to update windows patch released on 12/5/2015 but few of the KB's are not getting installed giving error like C:\Windows\System32\wusa.exe returned failure exit code (2147746132) / failed to launch C:\windows\system32\wusa.exe error code 0x80070013 and other same with different error code.
I tried manual installation of the same but no joy, even rebooting the machine didn't turned it successful. Below are the attached errors when installing and troubleshooting the patch manually.
Please help me on this as its the issue with many of my devices, but it same patch worked on few devices.
Thanks,
Praveen
My Scan and Repair for my Agent is set to run every 3 days.
A Maintenance Window is set for Thursday 10pm to 2am, and a normal Scan and Repair runs on Tuesday, and detects patches that are set to Autofix during that scan.
Does the client scheudle those fixes to happen at the next Maint Window, or do I need to manually kick off a Scan and Repair during the Thursday window?
Anyone else notice MS15-107 is missing from Patch and Compliance definitions?
It was in the list of new vulnerabilities released. No def, though.
New Vulnerabilities
Cumulative Security Update for Internet Explorer (3096441)
Cumulative Security Update for Microsoft Edge (3096448)
I have been asked how a definition works if simply a file name is put into the File Detection logic for a definition.
Where does vulscan look if no path is specified?
Some applications register themselves in the following registry key:
HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths
Vulscan checks this key first when scanning for files without a path.
In fact, vulscan itself is registered in this key. This is how you can type "vulscan" from the Run or Search line in Windows and it will find it, even though it is not listed in the environment variables. Other programs register themselves as well... look for yourself in that key.
If vulscan does not find it in the HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths key it will look in the current working directory for Vulscan.
If run as the SYSTEM account that working directory should be WINDOWS\SYSTEM32.
If run as the user it really could be anywhere.
Anyone else have this problem? Patch won't download because has doesnt match what is being downloaded from adobe.com
Downloading sw_lic_slim_installer.exe (3710 KB)...
Hash for patch sw_lic_slim_installer.exe does not match with host. Discarding.
How can we learn about patch manager training?
Hello.
Does anyone know if it's possible to increase the no. of vulscan log files that are stored on a device or is the limit of 11 hardcoded?
Thanks in advance.
I was wondering if Office 2103 patches also patch Office 365? Everything I find for patching Office 365 currently points to installing patches for Office 2013. Also, even if Office 2013 cannot be installed to patch Office 365 is there any plan for LANDesk to offer patches for Office 365?
In Office 365 you can select to view updates and it carries you to the page below. Then you can select to view the description of one of the update versions and the version changes show the patches for Office 2013.