SMA (K1000)

Please tell us how you’d like to see the Systems Management Appliance product improved!

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Enhenced Proxy settings should be support client side ssl import and settings. Websense wants to client ssl for internet access.

    It should be enhenced Proxy settings. Some customers use client side ssl request for internet access. For example Websense, Aventail SSL wants to client ssl for internet access after that give internet acces. Dell Kace products don't have Proxy settings for Proxy certificates.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  2. Endpoint Local Admin Password Management

    During a Security Audit, it was determined that having the same local administrator password the same on all endpoints is a security risk. Re-setting and storing individual endpoint's local admin password in the K1000. I believe this would be a stellar security feature, allowing K1000 helpdesk to view local admin password for each endpoint.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  3. Define Access with Labels instead of Roles

    It would be nice to be able to define the security within the UI by label instead of by specific pre-determined roles. This would allow me to specify a "Service Desk Write" label which can then be associated with a group in my LDAP structure to which all members would get write access to the service desk, and I could have one for every tab called out in role creation. This would enable dynamic assignment of resources to users so that we are not required have to pre-determine every potential use case, define a role for that use case and…

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  4. Service Desk - Security for Choose Action Options

    Allow the ability through roles to lock down the Choose Action options for users. This will keep users from making mass changes to tickets (priority, status, etc.) which can have adverse effects on other users, report statistics, etc.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  5. Patching alert improvements

    Past experience shows that whenever a set of patches is applied, even if “No Reboot” is chosen that a large percentage of the time the workstation is booted anyway. We don’t use this option anymore. We have one schedule set to detect … and another schedule set to deploy. The deploy job has an alert and is set to force a reboot. This allows our users have a chance to consent to a reboot during the day (laptops).

    I just spoke with a support person and they confirmed that a deploy job has a max timeout of 1 hour, no…

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  6. Allow staged device Patch Schedule

    I would like the possibility to create a patching schedule which stages the installation of the patches for the associated devices. For example, a patch schedule with 3 devices, where the first device is installed with all the patches. Once completed (succesfully) the second associated device then begins, and so on. The idea behind this is for only 1 "server" to be patched at one time and to avoid reboots occurring at the same time.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  7. Ability to change the webui port

    With agent communication going over 443 and the webui port being 443 as well the device cannot securely sit behind a radius firewall that requires dual factor authentication.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow scheduling icon to appear even if LDAP login/password are not provided

    The KBOX seems to require the specification of an LDAP login name and password in order for the scheduling icon to show up. Since our LDAP server does not require a LDAP login/password (all of the relevant user data is visible via anonymous bind), we left those fields blank. When I created a dummy LDAP account just for the purpose of binding, and specified this account for the LDAP login/password, the scheduling icon showed up again.

    Ideally it would be good if this limitation could be removed (so that an LDAP login/password is not required to get the scheduling icon…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add option for "Max Concurrent Devices to Receive Patches"

    Currently we are using the K1000 to do all of our Windows patching. We have ran into the problem where we have some users who are on our VPN and never receive patches. Our bandwidth for our VPN is rather limited, so adding something in to say "only 2 people can receive patches at a time" for a specific schedule would be fantastic as it would reduce bandwidth consumption and allow us to patch our remote users consistently.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  10. Dell Updates progress message

    Add the ability to show a progress message on Dell Updates, similar to that already available in the patching section to let users (or other IT staff) know when Dell updates are being installed. Currently after the initial message, the only way to tell is to look at the web console for each device.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  11. Ability to add other encryption products to track status

    Ability to add Mcafee or other encryption products similar to the current bitlocker status.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  12. Auto-retry failed patch detect and deploys

    Occasionally patch detection or deployment fails usually due to machines going offline. The failure is reported back in the stats but nothing is done about it and this can result in a machine remaining insecure for an extended period.

    I suggest detects and deploys auto-retry in a similar manner to Managed Installs do, say by default three times, next time the machine is online. This should ensure a higher success rate overall and I imagine would be easy to implement.

    Now that users have more control over reboots the resulting delay in the patch deployment (pushing it outside of the…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  13. Access Control List Needs Ability to Restrict Management Console Only

    The access control list allows you to restrict access to certain IPs for the entire KACE server. It would be helpful to be able to create separate restrictions for the user console and management console. For example, allow all IPs to connect to the user console, restrict certain IPs for the management console.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  14. Firewall for all traffic, not just httpd

    Even with ssh disabled from the web gui, I get a lot of messages re: sshd login attempts. I'd rather have all traffic outside my subnets dropped except for connection to Kace update servers.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  15. Do not Auto-Fill Login Username

    As part of the medical industry, we have adhere to HIPAA security standards. Because of this we would like the Username to work like a banking site and not allow the username to be saved and Auto-Filled.
    Here is a code example.
    https://developer.mozilla.org/en-US/docs/Web/Security/Securingyoursite/Turningoffform_autocompletion

    Thanks

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add Dell Update support for Dell Embedded Box PC

    Please add dell update support for Dell Embedded PCs (5000 and 7000).

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  17. Ability to change konfig & netdiag passwords

    Please allow the ability to change all default system passwords.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  18. Issue a command to a PC before rebooting after updates are applied by kace

    I would really appreciate if k1000 would allow me to run a script or a command before rebooting a PC after updates apply. It would be useful for disabling bitlocker or gracefully shut down a database or such

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  19. Add additional logging for the appliance

    There should be additional logging on the K1000 appliance to audit when kace admins make huge changes to the environment. Ex: Upgrading the Kace appliance to a major version.
    We have about 7 or 8 employees that have admin access in our k1000 appliance and an upgrade was performed and ended up breaking our environment. We tried to figure out who initiated the upgrade by exporting all the logs and were only able to find other information like who uploaded items into the scripting section, who ran a script, etc. But no information on who started an appliance upgrade. This…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  20. Dell Updates schedules

    Can you change the standard behavior in schedules whereas, 1) no Device Label is specified and 2) the "All Devices" checkbox is left unchecked, that the schedule will actually deploy to no devices? This is the logical, more intuitive, behavior.

    My thought process usually goes: 0+0=0

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base