.MSI command line arguments being misinterpreted

May 22, 2015, 9:14 am

≫ Next: "copy and execute" a file from LDDiscover

≪ Previous: 9.6 SP2 - LDSS in Alt-Tab Menu

Here's my .MSI command line. It's a Webex installer, in case your wondering.

/i /quiet /norestart SITEURL="https://intercall.webex.com" OI=1 OFFICE=1

The installer runs, however the SITEURL is incorrect after installation. It's entered as "https:/ntercall.webex.com". Missing the /i

There must be some code that is pulling out the /i because it would be duplicate for a .MSI command line option. I understand this, but how can I go about solving this particular problem? Would single quotes be necessary somewhere? I'm just not sure and don't want to spend hours blindly testing what works or not.

↧

"copy and execute" a file from LDDiscover

May 26, 2015, 2:59 am

≫ Next: VMWare ESXi Update causing BSOD stating cismbios.sys error

≪ Previous: .MSI command line arguments being misinterpreted

Does anyone has sample script to "copy and execute" a file by using LDDiscover?

I'm gonna use this for unmanaged devices.

Thank you

↧

VMWare ESXi Update causing BSOD stating cismbios.sys error

May 15, 2015, 5:31 am

≫ Next: Determining unused agent settings

≪ Previous: "copy and execute" a file from LDDiscover

We patched one of our ESXi hosts (5.1) yesterday to release 2583090 and now our Windows 7 VMs with LANDesk (9.6 SP1) on them are rebooting on a loop with the error message below. The host we patched only contains Windows 7 VMs for testing so we are not sure if this affects any Server OS as well. Before we update other hosts with Servers we wanted to be sure. I found this post concerning the same issue at vSphere 5.1 patch - may cause LANDesk cismbios.sys to blue screen which is dated March 20, 2015. His suggestion was to modify the registry key HKLM\SYSTEM\CurrentControlSet\services\CISMBIOS to a value of 4. This did work when we applied the change (via Safe mode) on one of the VMs however I don't want to have to push this out to every VM. The post indicates that LANDesk is aware of the issue and is working on a fix. Has anyone else run into this issue and has a patch for it been released yet? I tried searching the LANDesk support site but could not find any mention of this specific issue.

↧

Determining unused agent settings

May 26, 2015, 5:08 pm

≫ Next: Any way to hide Fuse in LANDesk Group

≪ Previous: VMWare ESXi Update causing BSOD stating cismbios.sys error

We fairly recently updated from LDMS 9.5 to 9.6 In this change, the agent settings were split out (distribution and patch, reboot, inventory settings etc.) Under the old paradigm, we had a bunch of settings that we can address using fewer settings in the new method. Is there a way to run a report, or look at relationships somewhere and see unused agent settings? We would like to remove some of the old unused ones that clutter things, but we want to make sure that they are no longer used before removing if possible. How can I do this?

↧

Any way to hide Fuse in LANDesk Group

May 27, 2015, 8:11 am

≫ Next: LANDesk 9.6 ResolveUserGroups.exe application fails.

≪ Previous: Determining unused agent settings

We deployed 9.6 sp1 about a month ago. So far, we have had few calls regarding FUSE - we are choosing to use the Portal Manager. Does anyone know of a way to hide the FUSE icon or keep it from appearing in the LANDesk group?

↧

LANDesk 9.6 ResolveUserGroups.exe application fails.

May 27, 2015, 7:43 pm

≫ Next: LANDesk Patching failed with error “Attempt to logon as Specified User failed”.

≪ Previous: Any way to hide Fuse in LANDesk Group

ResolveUserGroups.exe is generating an application fault in the event viewer every time it runs which is every 20mins. If I run it manually from the command line, ResolveUserGroups.exe /FORCE or /VERBOSE, it resolves the groups and no error is generated. LANDesk 9.6

Any ideas?

↧

LANDesk Patching failed with error “Attempt to logon as Specified User failed”.

May 27, 2015, 11:26 pm

≫ Next: Beast Vulnerability CVE-2011-3389 9.6 SP1

≪ Previous: LANDesk 9.6 ResolveUserGroups.exe application fails.

Please suggest what can be the reason for few devices we are getting failed while patching with error "Attempt to logon as Specified user failed"

Find attached vulscan log file too.

Regards,

Sujith

↧

Beast Vulnerability CVE-2011-3389 9.6 SP1

May 28, 2015, 8:21 am

≫ Next: Lab exercise documentation from Interchange 2015?

≪ Previous: LANDesk Patching failed with error “Attempt to logon as Specified User failed”.

Hello All,

We experiencing the Beast vulnerability on our LANDESK 9.6 SP1 core server. ( call @ support )

The server is 2012R2 the CSA is upgraded to higest lvl.

Only TLS 1.0 / 1.2 are on rest is disabled via de registry keys. Can't turn TLS 1.0 off as we don't have connection to the console anymore.

Anybody already found how to solve this vulnerability ?

↧

Lab exercise documentation from Interchange 2015?

May 28, 2015, 3:43 pm

≫ Next: Agent getting continually prompted for reboot 9.6 SP1

≪ Previous: Beast Vulnerability CVE-2011-3389 9.6 SP1

A couple of the instructors for the labs I attended mentioned the documents and perhaps some slides would be made available in the community. Is this out there yet?

↧

Agent getting continually prompted for reboot 9.6 SP1

May 28, 2015, 12:12 pm

≫ Next: Core activated but no license

≪ Previous: Lab exercise documentation from Interchange 2015?

I have a computer in our QA testing group that has been getting prompted regularly for a reboot. No patches are assigned to it and there have been no Windows updates applied to it since over a week ago. This person has rebooted his machine in response to the prompt several times, but it still pops back up.

Looking in the Security and Patch information tool for this machine, the last vulnerability it fixed was an Adobe Reader patch applied 6 days ago.

In the Vulscan log, it refers to a taskid that I cannot find that is prompting a reboot:

Thu, 28 May 2015 14:27:31 Updating task 559: 'C:\Program Files (x86)\LANDesk\LDClient\vulscan.exe' '/rebootWithUI /offline'

I also cannot find any log files relating to task 559 on the client. In the Diagnostics and Logs tool, there is no 559 Task ID listed.

I have run UninstallWinClient.exe on this machine and reinstalled it, but the mysterious reboot prompt returned.

I've attached the vulscan and reboot logs from the client. Any idea what may be going on here?

Thanks.

↧

Core activated but no license

May 29, 2015, 3:29 am

≫ Next: PolicySync.exe fails through CSA

≪ Previous: Agent getting continually prompted for reboot 9.6 SP1

I have received new licenses. I have two core servers, each in its own domain. I have enough licenses for both of the core servers. I can activate both core servers, but only one acccepts the license. What is going wrong here?

↧

PolicySync.exe fails through CSA

May 15, 2015, 9:37 am

≫ Next: Workstation and Domain Computers on the Same Server? Good, Bad, Otherwise?

≪ Previous: Core activated but no license

Windows Agents on the internet (9.6 SP1) cannot sync policies through CSA. Patch, Inventory and Remote Control DO work through the CSA, and if I do a Portal sync BEFORE putting the computer in the Internet, I CAN download and install the listed packages through the CSA. It is just policy sync that is failing, all else works great.

The Portal Manager quickly throws "Failed to load packages" when clicking the refresh/sync button. The same computer syncs just fine when connected to the corporate network.

PolicySync.log:

Fri, 15 May 2015 09:32:03 GetLdapInfo: ldapwhoami.exe failed - err=1355 << NET HELPMSG 1355 returns "The specified domain controller either does not exist or could not be contacted"

Fri, 15 May 2015 09:32:03 GetLdapInfo: use cached logon info

Fri, 15 May 2015 09:32:03 GetLdapInfo: not a valid ldapinfo, return E_FAIL

PolicySync.exe.log:

05/15/2015 09:32:03 INFO 4188:1

RollingLog : Run PolicySync.exe

05/15/2015 09:32:03 INFO 4188:4	RollingLog : LoadLocalPolicyInfo: load local machine
05/15/2015 09:32:03 INFO 4188:4	RollingLog : LoadLocalPolicyInfo: load user
05/15/2015 09:32:03 INFO 4188:3	RollingLog : Request: failed get target info.
05/15/2015 09:32:03 INFO 4188:1	RollingLog : PolicySync: failed request
05/15/2015 09:32:03 INFO 4188:1	RollingLog : Exit PolicySync.exe with code -3

Of course this machine cannot talk to a domain controller when it is off the corporate network, so why is the whole Sync failing just because of an expected condition?

Also, when I manually run ldapwhoami.exe from a command prompt, it does return data but also a 1355 exit code. Shouldn't PolicySync be treating 1355 as a SUCCESS instead of FAIL when not connected to corporate network?

↧

Workstation and Domain Computers on the Same Server? Good, Bad, Otherwise?

May 15, 2015, 11:58 am

≫ Next: no trending for vulnerability

≪ Previous: PolicySync.exe fails through CSA

I have been asked to join a couple hundred Windows 7 and 8 computers to our LANDESK (9.5 SP2) core server that are not in our domain. Can anyone provide me with documentation on joining computers in a Workgroup to an LDMS core that by default has been servicing domain joined computers explicitly?

↧

no trending for vulnerability

June 1, 2015, 7:06 am

≫ Next: Bad usernane access request to Active Directory

≪ Previous: Workstation and Domain Computers on the Same Server? Good, Bad, Otherwise?

we are trying to measure the number of servers that are patched at the moment for a particular vulnerability but for some reason there is no trending data for the particular vulnerability and the status doesn't match the history. I have attached a few screenshots for reference.

Anyone have any ideas?

↧

Bad usernane access request to Active Directory

May 18, 2015, 1:36 am

≫ Next: Forced Reboots (9.6sp1)

≪ Previous: no trending for vulnerability

After upgrade to LDMS 9.6 SP1 on the AD of a customer appears a logon request from user LANDesk_CommandsWS.

It does not exists on their AD. What is this request and how can we block it?

This is the error found on the monitoring tool:

X509N:<S>C=NA,S=5914,L=L DMS Core Server,O=Unspecified,OU=LANDES K2012,CN=LANDesk_CommandsWS

On the core are present the files LANDesk_CommandsWS.crt .key .p12, are they involved in the behaviour?

Thank you

↧

Forced Reboots (9.6sp1)

June 1, 2015, 12:33 pm

≫ Next: Landesk - I am contemplating purchase, looking for insight

≪ Previous: Bad usernane access request to Active Directory

In the past week, we have had several users who are being prompted by a reboot pop up. What is different this time is that there are no options to defer the reboot. Nor can the user minimize or close the pop up. The only option is to reboot; which is not good if they have active documents or work on their desktop.

Where are these forced reboots coming from? We are seeing them in the Clean Repair history, but no association to a patch or repair.

I would like to find a way to eliminate any potential for a forced reboot. Very ugly process.

Thanks

↧

Landesk - I am contemplating purchase, looking for insight

June 1, 2015, 1:01 pm

≫ Next: Not a product question but if you manage the Landesk system(s) for your company....

≪ Previous: Forced Reboots (9.6sp1)

Obviously every service offering out there has up's and down's. I wanted to ask the community what things do you dislike / like about the Landesk solution and whether you would recommend it. I would appreciate insight from people whether you are a newly on-boarded partner or have been using them for years. Our budget is pretty tight so I want to make sure my first purchasing decision is strong as this will be my first change in the department I will be making since taking over the reigns.

↧

Not a product question but if you manage the Landesk system(s) for your company....

May 7, 2015, 11:31 am

≫ Next: show recent patch install name in reboot notification? 9.6 sp1

≪ Previous: Landesk - I am contemplating purchase, looking for insight

I am curious to know what your current job title is and if you would be willing to share your job description. In taking on more responsibility with the Landesk platform I am just curious as to how this position should be classified. Thanks in advance!

↧

show recent patch install name in reboot notification? 9.6 sp1

March 20, 2015, 11:01 am

≫ Next: Mac Provisioning

≪ Previous: Not a product question but if you manage the Landesk system(s) for your company....

wondering if there is a way to identify in the reboot notification message the patch name(s) that was installed which triggered the need for a reboot?

this is for regular patch updates - not a specific SW distribution task.

Our agent is set to scan a specific custom group for any patch updates & uses the same reboot message no matter what patch has been installed. Is there some variable or placeholder I can add to the prompt text to list the recently installed patches?

Thanks!

↧

Mac Provisioning

June 4, 2015, 3:23 pm

≫ Next: Blue arrow showing up on Security and Patch Info screen.

≪ Previous: show recent patch install name in reboot notification? 9.6 sp1

I am just getting Mac Provisioning setup right now. I have 9.6 sp2 I built the nbi off of a fresh 10.10.3 machine (the same machine that I'm now trying to provision). I used the default Mac Deploy template with the smb path to my image. Now whenever I use the template (either scheduled or picked out of the list) the machine reboots into the NBI and it fails on Creating Partition. Has anyone else run into that? I'm wondering if it is from building my netboot set on 10.10.3 does 10.9 work better maybe? Are the provisioning logs stored anywhere for Mac? Thanks guys!

↧

Latest Images