I would like the possibility to create a patching schedule which stages the installation of the patches for the associated devices. For example, a patch schedule with 3 devices, where the first device is installed with all the patches. Once completed (succesfully) the second associated device then begins, and so on. The idea behind this is for only 1 "server" to be patched at one time and to avoid reboots occurring at the same time.

With agent communication going over 443 and the webui port being 443 as well the device cannot securely sit behind a radius firewall that requires dual factor authentication.

Add the ability to show a progress message on Dell Updates, similar to that already available in the patching section to let users (or other IT staff) know when Dell updates are being installed. Currently after the initial message, the only way to tell is to look at the web console for each device.

Ability to add Mcafee or other encryption products similar to the current bitlocker status.

System level LDAP Authentication, and Roles.
Allow the same mechanism used at the Org level for Authentication and Role assignment at the System level

The access control list allows you to restrict access to certain IPs for the entire KACE server. It would be helpful to be able to create separate restrictions for the user console and management console. For example, allow all IPs to connect to the user console, restrict certain IPs for the management console.

Even with ssh disabled from the web gui, I get a lot of messages re: sshd login attempts. I'd rather have all traffic outside my subnets dropped except for connection to Kace update servers.

As part of the medical industry, we have adhere to HIPAA security standards. Because of this we would like the Username to work like a banking site and not allow the username to be saved and Auto-Filled.
Here is a code example.
https://developer.mozilla.org/en-US/docs/Web/Security/Securing_your_site/Turning_off_form_autocompletion

Thanks

Please add dell update support for Dell Embedded PCs (5000 and 7000).

Please allow the ability to change all default system passwords.

I would really appreciate if k1000 would allow me to run a script or a command before rebooting a PC after updates apply. It would be useful for disabling bitlocker or gracefully shut down a database or such

Can you change the standard behavior in schedules whereas, 1) no Device Label is specified and 2) the "All Devices" checkbox is left unchecked, that the schedule will actually deploy to no devices? This is the logical, more intuitive, behavior.
My thought process usually goes: 0+0=0

In the most recent patch for K1000 (6.4.120756), Dell added a restriction that prevents the use of certain IPs. This change was not disclosed in the release notes and almost had a significant impact on our network. We now have to run a limited DHCP scope (where we would prefer not to) to accomodate the KBOX and our IP scheme. Please, Dell, leave the networking to us!

User Portal - Allow customers to run security patch schedule on their own mobile laptop on-demand, to suite their own schedule.

Customers' work schedules vary greatly. Some run processes that can be interfered with by security patching jobs. They need to schedule their own time to install patches when no purported conflicts with running software could negatively impact their work.

It would be nice to have the option for credentials. Currently, if a function has a credentials field, its required. Sometimes some things hit a RO anonymous share and throwing credentials at it causes it to fail.

We need a view to show all the computers and their patching level based upon the patch groups it is assigned to. That way we can easily see which computers are not fully updated. Also the view should be sortable by column. Also when we click on the computer in that view it should show which patches are missing or the errors it is having trying to update the machine.

It would be nice to have a function like iptables or basic firewall in order to block network traffic from or to ip-addresses or network segments (e.g. User-VPN) directly on the K1000.