SMA (K1000)

Please tell us how you’d like to see the Systems Management Appliance product improved!

How can we improve the SMA (K1000)?

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Import custom trusted root CA

    Being able to import your own trusted CA would be a nice feature going forward. This would allow decrypting all egress network traffic from K1000 to internet without issues.

    At the moment patch downloading fails due to SSL errors when you forward the traffic through SSL decryption proxy. Other issues also occur in the normal functionality.

    Without this feature it is not possible to decrypt the CDN traffic of KACE. When it comes to decrypting network packets, CDN traffic has the highest priority. This feature would also allow enterprises to fully deploy their Layer 7 inspection features and would that…

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  2. implement AWS compatibility

    We would like to implement the compatibility with AWS EC2

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  3. Add Dell Update support for Dell Embedded Box PC

    Please add dell update support for Dell Embedded PCs (5000 and 7000).

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  4. System level LDAP Authentication

    System level LDAP Authentication, and Roles.
    Allow the same mechanism used at the Org level for Authentication and Role assignment at the System level

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  5. Free SSL certificates from Let's Encrypt

    Add the ability to get a free SSL certificates from Let's Encrypt (www.letsencrypt.org) and have it auto-renew with their client.

    You are able to use their certificates without the client but they expire after 90 days making them hard to manage in the long term.

    48 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  6. Desktop alerts (colors, position, sectional areas)

    We are currently using other software to notify our users of issues going on (network down, websites down, security info, application issues, threat levels, etc.) We would like to be able to change the colors of the alerts window, change the size of the alert window, and be able to re-position the alert window. Also section off the who, what, where, when, contact info, etc in the alert window. If some of these capabilities could be added to the alert window that would help us with using KACE as a one stop shop for our admins and users.

    16 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  7. Add Application Whitelisting

    Add Application whitelisting, this is a type of endpoint protection where, by default, all applications are blacklisted and only known good applications are allowed.

    These Known-good applications are kept in a list, KACE seems to have a fairly extensive list of application and signatures which could possibly be leveraged for this purpose.

    Lumention offers this service as part of their suite of endpoint management which competes with KACE. I would like to see this added to KACE;

    58 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →

    This is under consideration but not planned for the next release, Please continue voting if you’d like to see this feature prioritized for a future release.

  8. Upgrade to Windows 10 via K1000

    What will be the plan for upgrading Windows 7 & 8 computers through K1000? We have Windows Update set to be handled via K1000, so users cannot use Windows Update, nor would we want to manually sign each computer up to have the option to upgrade to Windows 10 when it releases.

    An option to have the K1000 do this for us would be great and save people a lot of time.

    66 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  9. Granular access control in regards to which scripts can be run and how

    I would love to give my help desk direct access to our kbox in a limited fashion. I would need to limit the specific scripts that they can run, and possibly the number of machines they can run the script on at once.
    It would be absolutely horrible if someone were to reboot all 14,000+ agents we have at the same time.

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  2 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  10. Access Control List Needs Ability to Restrict Management Console Only

    The access control list allows you to restrict access to certain IPs for the entire KACE server. It would be helpful to be able to create separate restrictions for the user console and management console. For example, allow all IPs to connect to the user console, restrict certain IPs for the management console.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  11. Ability to change konfig & netdiag passwords

    Please allow the ability to change all default system passwords.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  12. SSL settings should allow requesting SAN certificates (Subject Alternative Names)

    In the CSR request process a feature should be added to allow SAN certificates. This would help clients access the K1000 with a variety of internal and external host names without certificate errors.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  13. secure ldap

    I would be good if the k1000 would not auto accept certificates for secure ldap from active directory - customer would like to get a way to create self sinned certificate forms for secure ldap , like the same thing you when you want to hook an ssl certificate to the k1000

    13 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  14. The K1000 about page is visible to the public!

    The about page located at http://<K1000_HOSTNAME>/common/about.php contains contains summary information of the system and should be locked down.

    8 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  15. The System Performance page (MUNIN) is visible to the public!

    The System Performance page or MUNIN must be secured and locked down to allow viewing only by system administrators. We cannot have this System Performance graph (https://<K1000_HOSTNAME>/munin/) visible to the public!

    8 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  16. Ability to change the webui port

    With agent communication going over 443 and the webui port being 443 as well the device cannot securely sit behind a radius firewall that requires dual factor authentication.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  17. Issue a command to a PC before rebooting after updates are applied by kace

    I would really appreciate if k1000 would allow me to run a script or a command before rebooting a PC after updates apply. It would be useful for disabling bitlocker or gracefully shut down a database or such

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  18. Limit access to report categories and asset types by role or user label

    I would like to limit access to report categories and asset types by role or user label. For example, we have a vehicle maintenance queue. We have vehicles as assets and we have reports for those vehicles. My vehicle maintenance guy doesn't need be able to see and modify the IT assets or reports, he just needs to see and modify his vehicle assets. Also, he doesn't need to be able to see the IT reports, just reports for his vehicles.

    31 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    planned  ·  2 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  19. Ability to add other encryption products to track status

    Ability to add Mcafee or other encryption products similar to the current bitlocker status.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  20. Define Access with Labels instead of Roles

    It would be nice to be able to define the security within the UI by label instead of by specific pre-determined roles. This would allow me to specify a "Service Desk Write" label which can then be associated with a group in my LDAP structure to which all members would get write access to the service desk, and I could have one for every tab called out in role creation. This would enable dynamic assignment of resources to users so that we are not required have to pre-determine every potential use case, define a role for that use case and…

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3
  • Don't see your idea?

Feedback and Knowledge Base