New features in Kaseya 2008 SP1 (v5.1.0.0) – 7 September 2008

Audit - System Info

Entering data into a manually added field in System Info as http:// or https:// displays the data as a URL link. To manually add a field click the Show More button, then click the New...* button.

Audit - Documents

The Documents function, located on the Audit tab, can now be accessed as a new tab in the Machine Summary interface. The Machine Summary interface displays when you click any agent status icon.

Scripts - Mac OSX Agent

The Mac OSX agent has been improved to handle installation and log off conditions on all platforms up through OSX 10.5.4. Mac OSX agents are now able run the Execute Shell Command and Execute File script commands as either "system" or as "user" using user credentials. In the initial release of the Mac agent, these commands always ran as "system".

New Sample Reboot Scripts

New sample scripts have been added to support several reboot scenarios:

·         Reboot-Ask-No: If user is logged in, ask if it is OK to reboot; assume no after 5 min.  If user is not logged in, go ahead and reboot. This script calls Reboot-Ask-No-2 to ask the user.

·         Reboot-Ask-Yes: If user is logged in, ask if it is OK to reboot; assume yes after 5 min.  If user is not logged in, go ahead and reboot. This script calls Reboot-Ask-Yes-2 to ask the user.

·         Reboot-Nag: If user is logged in, ask to reboot every 5 minutes until the user allows the reboot. If user is not logged in, go ahead and reboot. This script calls Reboot-Nag-2 to ask the user.

·         Reboot-No-User: Reboot the machine only if a user is not logged in.

·         Reboot-Warn: If the user is logged in, warn the user that a reboot will happen in 5 min.  If the user is not logged in, go ahead and reboot. (Schedules reboot script 5 minutes from now.)

Dashboards – Alarm Count

All alarm dashboards with an alarm count now pull data from a rollup count table allowing for a more efficient query and update of the dashboard.

Event Log Collection

Prior to this release, when the VSA detected a flood of event log items, the VSA disabled collection of the entire class of events (Error, Warning, Informational, Success Audit, Failure Audit) for a log type on that machine. With this release the VSA introduces two new techniques to better manage certain events from overwhelming the system:

• Global event log black list - A small number of event types from a handful of machines can overwhelm and cripple your VSA server with volume. Typically the offending event is of little or no value to the administrator. With this release, each agent will continue to process all events, however events listed on the black list will not be sent up to the VSA server. This should effectively cure the flood problem and prevent automatically disabling event log collection on any machine. Alarm detection and processing operates regardless of whether entries are on the collection blacklist.
• Flood detection - Flood detection is still in place but the action taken has changed. No longer is processing permanently disabled. Instead, after 1000 events (not counting black list events) in one hour are sent to the VSA server, further collection of events of that log type are stopped for the remainder of that hour. A new event is inserted into the log to record that collection was suspended. At the end of the hour, collection automatically resumes. This technique prevents short term heavy loads from swamping your VSA server. Note that these techniques only affect collection. Alarm detection and processing operates regardless of whether collection is suspended.

Monitor Log, SNMP Log

Added start date and time to monitor log display allowing for more flexibility when searching log data.

Ticketing - View Summary

• Changing multiple tickets - You can now change any field on multiple tickets at once. On the View Summary function, check the box for all tickets you wish to change a field value for. Then click Set Field… The next screen lets you set a new value for any or all of the fields.
• Search for phrases enclosed by double quoted strings - The search function looks in all text fields and notes returning all tickets that contain all the elements of the search string. Search string elements are delimited by spaces. Previously this prevented you from searching for phrases. Now you can include phrases as an element by enclosing multiple words in double quotes. WARNING: double quoted strings must be matched exactly. If you enter two spaces together in a double quoted string, then search only returns tickets containing the two spaces.
• Preview Tickets - Hovering the mouse over a ticket’s preview icon displays the ticket in a quick pop up window. Use the preview function to quickly go through all your tickets without having to open each ticket.
• Auto submit checkbox - Checking this box automatically re-displays the View Summary page every time one of the field filters changes. If unchecked, change multiple field filters, then click Submit. The page now processes all the field filter changes at the same time and redisplays the page once.

Ticketing – Create/View

The View Ticket function name has been renamed to Create/View to better indicate this is the place to go to create new tickets.

Ticketing - Notify Policy

You can now format/customize additional ticket notifications. On the Notification Policy page click the Format button next to the following options to customize the notification email format:

• Edit Summary
• Assignee Change
• Field Change
• Due Date Change
• Send auto response to emails creating new tickets

Ticketing -

Access Policy

On a per administrator role basis you can now control access to:

• Editing submitter information
• Changing the machine ID associated with a ticket.

Ticketing -

Assignee Policy

Assignee Policy is similar to Due Date Policy. It lets you automatically assign a ticket to an administrator based on the values from an combination of the list fields.

Ticketing - Email Reader

The sender’s name is now pulled from the From address in the email header and set as the username in a newly created ticket. Tickets containing no message body and no attachments are now suppressed in place of adding a note that states “No response text provided”

Patch Mgmt -

View Definitions

Seven new filter options related to Patch Management have been added:

• Machines having no patch scan results (unscanned)
• Machines with Reboot Pending for patch installations
• Machines with Patch Test Result
• Machines with Patch Automatic Update configuration
• Machines with Patch Reboot Action configuration
• Machines with Patch File Source configuration
• Machines missing a specific patch (identified by the patch’s 6 digit KB Article ID)

Patch Mgmt – Scan Machine

Removed the option for master administrators to schedule a refresh of the patch database that only applies to legacy systems no longer supported by Microsoft and to download the latest Office Detection Tool (ODT).  An automatic background process now executes daily to ensure the latest ODT is downloaded to the KServer.

Patch Mgmt – Patch Scan Results Processing

• Moved the processing of patch scan results from the general background process to its own separate background process and added process throttling. This improves overall system response and alert processing time when there are hundreds of machines with updated patch scan results.
• When processing patch scan results, a new script is generated and executed to bring the KBxxxxxx.log and the WindowsUpdate.log up to the server for any patches that are reported as “failed”.  These logs are occasionally useful in troubleshooting patch installation failures. The logs are found in the Get File function under the Scripts tab for the specific machine. The script log for each machine contains entries indicating that these log files have been pulled up to the server as appropriate.

Scripts – Patch Deploy

The patch installation script generated by the Patch Deploy Installer Wizard now schedules a patch rescan for execution right after the next reboot. This ensures the proper reporting of a patch’s status without having to manually run a patch scan on the machine.

Patch Mgmt – Patch Installation Scripts

When patches are executed in a patch installation script, an entry is made in the machine’s Script Log. Modified the log entry to include the patch title in addition to the KB article number/security bulletin number.

Patch Mgmt – Patch Scan Script

Added a new script (“Patch Scan”) that is available in the Script Editor when either Execute Script or Schedule Script is selected. This “Patch Scan” script can be used to schedule a patch scan as part of a custom script. It will execute the appropriate patch scan script for the selected machine.

NOTE: Running the Patch Scan script executes only one of three secondary patch scan scripts. Each of the three secondary patch scan scripts is appropriate for the selected machine. When the Patch Scan script is run, you will see an entry in the script log and in the Pending Scripts tab of the Machine Summary interface for one of the following: "WUA Patch Scan 1 (x86)”, “WUA Patch Scan 1 (X64)", or "Legacy Patch Scan".

Patch Mgmt – Windows Auto Update Scripts

The "Disable Windows Automatic Update" and "Reset Windows Automatic Update" system scripts are now available in any Script Search popup and the Script Editor when either Execute Script or Schedule Script is selected.  Since it is not possible to configure a template account with a specific Windows Automatic Update configuration, exposing these two scripts as system scripts now allows an administrator to schedule these scripts for any machine, including template accounts, from the Pending Scripts tab of the Machine Summary interface or to add the execution of these scripts in any other script such as a custom machine setup script.

Patch Mgmt – Initial Update

• Removed the “Skip if machine offline” checkbox. Due to the nature of Initial Update processing, this option is not applicable.
• Added warning for machines that are not a member of a Patch Policy so the administrator knows ALL missing patches will be installed.
• Changed processing order to: (1) Windows Installer, (2) OS related service packs, (3) OS update rollups, (4) OS critical updates, (5) OS non-critical updates, (6) OS security updates, (7) Office service packs, (8) Office update rollups, and (9) All remaining Office updates.

Patch Mgmt –Pre/Post Script

Modified the Pre/Post Script function to include template accounts so the script assignments can be assigned via Agent Copy Settings and Agent Import/Export Settings.

Patch Mgmt – Automatic Update

• Added warning for machines that are not a member of a Patch Policy so the administrator knows ALL missing patches will be installed.
• Added new “Run Once” scheduling option, selected from the Daily/Weekly/Monthly drop-down list, to schedule a non-recurring one-time scheduling for automatic updates.

Patch Mgmt –Approval by Policy

Modified screen layout to support the following enhancements:

• Added the capability to copy approval statuses from the current policy to another selected policy. This was added to support those customers who perform patch testing against a group of test machines using a test policy. Once testing has been completed and the patches have been approved/denied as desired, use the copy feature to copy only the approval statuses from the test policy to a production policy.
• Added the capability to override the default approval status in a policy for patches that are classified as "Manual Install Only" or "Windows Update Web Site". Checking the option checkboxes at the bottom of the table sets existing updates of these types as denied in the policy and ensures future updates of these types in the policy are automatically denied.

Patch Mgmt – Reboot Action

The default value for a machine is now “Skip reboot if user logged in” rather than “Reboot immediately”.

Patch Mgmt – Patch Download Location Override

An automated patch update (patch) location override service has been added. This service applies to patches that cannot be downloaded successfully using the original patch download location provided by Microsoft. This service identifies patch download locations (URLs) identified during WUA Patch Scans that are candidates for override location URLs. Candidates are those updates which the WUA Patch Scan reports as multi-file installation packages or as CAB file installation packages. When a new candidate update is identified, an email notification is sent to Kaseya with the update details. These details are used by Kaseya to identify a single executable file installation package. If one exists, an override location URL is added to an override location database (XML file). This override location database is automatically downloaded and processed by a background process every four hours.

The email notification that is sent to Kaseya contains no information other than selected update (patch) data elements from the Microsoft Update Catalog via the WUA Patch Scan.  It is possible to disable these notifications by unchecking the checkbox next to “Enable Invalid Patch Location Notifications” on the Configure page under the System tab. If blank, no notification is sent to Kaseya. You will still receive updated patch location overrides prepared in response to notifications reported by other customers, regardless of this setting.

A new patch location warning, “Patch Location Pending”, might be observed on the Machine History, Machine Update, Patch Update, and the Patch Details pages. This warning indicates that the update (patch) does not yet have a valid download location URL and it cannot yet be installed. This warning is removed once an override download URL has been provided by the override location database.

K-VNC for Mac OSX

The K-VNC for Macintosh machines has been updated to RealVNC Enterprise version 4.4.2.

Note for OS X 10.5 users – After the first time install of K-VNC, the system must be rebooted before remote control sessions may be established. Remote control sessions to 10.5 requires that a local user already be logged onto the system.

K-VNC for Windows

The K-VNC for Windows machines has been updated to RealVNC Enterprise version 4.4.2.

Remote Control – Terminal Server

This release adds two enhancements to remote control using terminal server.

• When sharing disks, you can now restrict the drive letters shared to a limited list. Set Parameters lets you list the drive letters you wish to expose to the remote machine. Use this to share D: without exposing C:
• The window title now includes the machine ID you are remote controlling. This is helpful when you have several terminal server sessions open at once.

Remote Cntl > Send Message

You can now identify the currently logged on user of a machine before sending a message to that machine.

Backup

Backup is now a separate installable module (BUDR.exe). On install of the 5.1 update, BUDR.exe is installed if either (a) there are some backup licenses or (b) there are some installs of backup.

Backup – Schedule Folders

The schedule folder page no longer allows scheduling a folder backup if the Image Location is not configured

Backup – Image Location

When clearing the Image Location, scheduled backups for that machine are removed.

Backup Report

Separate backup counts are displayed for succeeded/failed/warning/cancelled in the header of the backup report.

Reports – Executive Summary Report

Calculations for the Network Health Score for Operating Systems have been changed.  Score thresholds were changed from Vista, 2003, XP, 2000 to Vista/2008, XP/2003, 2000, Mac OS.  This means the OS thresholds are basically for “Windows 6.x”, “Windows 5.x”, “Windows 4.x”, and “Mac OS”.

NOTE: Customers should check their currently saved executive summary reports and adjust the scores as desired for the OS Score.

Reports- User State Management Power Savings Report

Added a new report for licensees of the User State Management module to calculate actual and possible savings from managing computer power settings with the Power Policy feature of User State Management. 

Agent

Agents are now supported on Windows Server 2008.

LAN Watch - Active Directory Harvest

When performing a LAN Watch on a primary domain controller, you can now optionally enable/disable the harvesting of AD users and AD computers.

Active Directory- paging

Added paging capability to the “View AD Users” and “View AD Computers” pages.

Temp Directory

Master administrators can now set a system wide default for the agent temp directory.

Copy Settings

• The status column now displays the machine name that settings were copied from and the time they were copied.
• Added the ability to copy User Profile information in Copy Settings.

Update Agent

You can now schedule a script to run immediately after an agent update completes. This capability lets you reapply any customizations you have made to managed machines that are lost after an agent update. Typically agent customizations involve renaming or hiding agent identifiers to prevent users from being aware that the agent is installed.

Log Archiving new partition tables using bcp

Partition tables have been added to help manage large amounts of log data for the following tables: nteventlog, monitorCounterLog, monitorProcessLog, monitorServiceLog and monitorSnmpObjectGeLog.  A partition table is created every day for each log, for example nteventLogYYYYMMDD. Archiving the partition table uses the Bulk Copy Program (BCP) to efficiently move the data from the database to an archived text file. The archiving is based on the maximum value for that specific log found in Agent -> Log History.

NOTE: The server name is setup using the computer name during installation of SQL Server. If you change the name of the server you need to use sp_addserver and then restart SQL Server. If the computer name has been changed since the original installation then the bcp command will fail because the -S parameter is using the <servername\instancename> that was the <computername\instance> at time of installation.

Function Access - Messages and Tasks

You can now enable/disable access to both the Messages and/or Tasks panes shown in the View Dashboard page of the Home tab on a per administrator role basis. Select Function Access under the System tab to set these rights.

Function Access - Documents

You can now enable/disable access to document deleting and document uploading on an administrator role basis. Select Function Access under the System tab to set these rights. Documents are managed using the using the Audit > Documents page.

System – Configure

A new checkbox exists on the Configure function used to force an automatic redirect to use SSL when ever anyone attempts to log into your system via http. To activate, check “Automatically redirect to https at logon page”.

Installer / Updater

The Kaseya Server installer and updater now pulls the latest hotfixes prior to the final step of reapplying the database schema.

Third Party Copyrights

A new Third Party Copyrights button displays in the System > Configure page, next to Release Notes and Show License. This information identifies open source and third party software licensed for use by Kaseya.

Database Views – Patch Views

An “InstallationWarning” column has been added to the following views:

• vPatchApprovalStatus
• vPatchPolicy
• vPatchStatus. 

The column returns 'Manual Install Only', 'Windows Update Only', 'Product Upgrade Only’, or an empty string as appropriate.

Database Views – System Status Functions

Added three new SQL user-defined functions (pseudo-parameterized views) to return the counts displayed in the operating system pie chart and the missing patch pie chart seen on the View dashboard page under the Home tab. These functions are used just like views.  Refer to the help topics under Database Views for:

• fnOSCounts()

• fnMissingPatchCounts_NoPolicy()
• fnMissingPatchCounts_UsePolicy()

VSA API Web Service

·         Many new operations have been added to the API.

·         The API can now call and display any VSA page the authenticated administrator has access rights to.

·         The API can now set the value of any field displayed in the Ticketing > Edit Fields page.

Kaseya User State Management v1.0 (v1.0.0.0) – 7 September 2008

Application Settings Extensibility

Added documentation on the technical details of how to extend User State Management in order to manage additional application settings. This allows 3rd party and custom vertical applications settings to be managed seamlessly within the User State Management module. This feature was released with Kaseya 2008 (v5.1.0.0).

New features in Kaseya 2008 (v5.0.0.0) – 10 March  2008
Monitoring, Active Directory, User State Management, and more…

Agent Icon

The agent icon will always remain visible in the system tray for systems configured to show the icon. Prior to this release, Windows would hide the icon if it had not been accessed in a while.

Status Icon

Added a new status icon to represent that an agent is online and that someone is logged into that machine. If someone is logged in, then the tool tip for the icon lists the login name.

Machine ID / Group ID filter -

Machine Count

The machine ID / group ID filter area now lists the number of machines matching the current machine/group/view filter. Use this information as a quick reference to identify the number of machines potentially effected by any action.

View Definitions - Collections

Collections are now defined using the View Definition window in the machine ID / group ID filter. A new check box labeled “Only show selected machine IDs” lets you specify an arbitrary list of machine IDs seen when using this view. Collections, as with all View Definitions, can be private, shared or public.

View Definitions - Missing Patches

The View Definition window includes a new “Use Patch Policy” check box showing machines missing patches greater than or equal to a specified number to optionally apply the patch policies. If this box is checked, only missing approved patches will be counted.

View Definitions - Patch Scan Options

The View Definition window includes the following new options for patch scan scripts:

• Patch scan scheduled / not scheduled
• Patch scan success / failure
• Patch scan has / has not executed in last x minutes/hours/days

All alert email functions have database access

All alert email functions now include data pulled from the database. The same format provided in the Get Variable script function may be used in any alert formatted as follows: <db-view/column>. For example, to include the computer name of the machine generating the alert use <db-vMachine/ComputerName>

SW License

The Audit > SW Licenses function highlights when duplicate licenses are found on the same group. The duplicate license count is now a link that lets you drill down and get a list of machines that share the same license code.

Machine Summary

Added the following to the Machine Info tab:

• currently logged in user
• domain/workgroup
• Last check in time
• last reboot time
• first check in time

Added new log type Log Monitoring

Machine Summary -

New Ticket link

The Machine Summary page now includes a New Ticket link at the top of the page. Clicking the link opens a new ticket assigned to this machine id. An optional interface allows you to configure this link to access external systems as well. See the Machine Summary online user assistance topic for details.

External Link to Machine Summary

The following URL displays the Machine Summary web page for a specific machine ID: http//servername?machName=MachineID.groupID
You are first prompted to login, if you are not already.

Packager

The application Packager function used for creating custom installations now supports output packages larger than 2 GB.

Distribution

The Distribution function, under the Scripts tab, histograms the recurring schedules for scripts. This function quickly highlights potential server loading by showing peaks where multiple machines are scheduled to run the same script at the same time. This release adds a drill down capability to the histogram such that you can click any peak on the histogram and get a list of machines that make up that peak.

Scripts -CheckVariable - Evaluated Expression

A new script IF EvaluateExpression command evaluates expressions consisting of script variables from a parent script and six mathematical operators +, -, *, /, (, and ) to perform the comparison to determine whether to execute the THEN or ELSE statements.  For example, you can evaluate the expression

IF (#variable1# + #variable2#) * 100 > #variable3#

where the variables contain numeric values from a parent script that obtained them using GetVariable commands.

Scripts -

OS Type

The OS type selection for script steps now includes the options for “Mac OS X” and “All Windows Operating Systems”.

Scripts -

GetFile

A new option sends an alert for the GetFile script command when the file is identical to the one that was retrieved the last time.

Scripts -

GetVariable - Expressions

Added the ability to specify an expression that consists of script variables and six mathematical operators +, -, *, /, (, and ) that will be evaluated and assigned to a new script variable.  For example, ((#variable1# + #variable2#) + 17.4) / (#variable3# * 4). The script variables must contain numeric values.

Scripts-

GetVariable - WMI Values

Added the ability to specify a WMI namespace, class, and property and assign the retrieved value from a managed machine to a script variable.  The format of the specified WMI property is NameSpace:Class.Property.  For example, root\cimv2:Win32_OperatingSystem.FreePhysicalMemory

Scripts -

Set Registry Value

Added ability to set registry values with the data type REG_MULTI_SZ. Separate each string with the two character sequence of “\0”.  Use the three character escape sequence of “\\0” to include “\0” as part of a value string. This capability requires the Kaseya 2008 agent.

Dashboards and Dashlets

Added a new Dashboard List function to manage configurable monitoring windows called “Dashboards”. Each administrator can create their own dashboards and add one or more custom “Dashlets” in each dashboard. Each dashlet has the following customizable attributes; position, size, machine filter, header and refresh rate. Dashlets include:

• Alarm Summary
• Alarm Rotator
• Alarm Ticker
• Network Status
• Group Alarm Status
• Monitoring Set Status
• Monitor Status
• Machines Online
• Top N - Monitor Alarm Chart
• KES Status
• KES Threats

Alert -
Format Alert Email

The Alert > Agent Status > Format Alert Email window now has two new formats. One for a single machine going offline. The second when multiple machines in the same group go offline. Note that a separate alert is generated for each machine group.

Pre-Packaged Monitor Sets and Event Sets

Kaseya 2008 features a wide variety of performance and service monitor sets and event sets. These sets monitor server and workstation performance objects including SQL, Exchange and other key performance objects such as DNS, DHCP and disk drives. Event sets monitor the Windows event logs for a variety of application, security and system event entries. Events set alerts are defined using Monitor > Alert > Edit Event Sets. Sample monitor sets and events sets are loaded with the installation of Kaseya 2008 or by using the System > Configure page. Sample monitor sets and sample event sets can be identified by the naming convention. Each name begins with ZC-.

Monitor Set Naming Example:

    ZC-SV3 – DHCP Server – DHCP Services

Event Set Naming Example:

    ZC-CM1-E1 Antivirus Events

Monitoring - General

• Alarms are now optional.
• Alarm state (Open, Closed) and notes no longer exist for monitor alarms. This data is now a read-only log.
• New alarm state data contains current state of monitor counters, services, process and SNMP. Alerts, system check and log monitoring data are not included in this state data.
• Monitor view consoles are updated to use the new alarm state data appropriately.

Log Monitoring

Added new function to monitor the parsing of log files. 

• Ability to parse log files created from specific machines and syslogs from devices.
• Ability to pull log data into custom field parameters for reporting.
• New log called Log Monitoring to view and report on log data returned.

• Added to monitor alarms with the new alarming criteria; if event happens once, if number events happen over a duration, and if an event doesn’t occur for a duration.

• Alarm is not required.
• Added Log Monitoring to Logs report.
• Added Log Monitoring list to Machine Summary.
• Added Log Monitoring results to Executive Summary Report sections; System Activity and Network Health Score.

Windows Event Logs

Enhancements to Windows Event Logs:

• Added support for all Windows event logs. Update List By Scan function pulls event log types from the machine scanned.
• Added new Windows Vista event log types of Critical and Verbose.
• Event Alerts – alarms are optional
• Event Alerts – added new alarming criteria, if event happens once, if number events happen over a duration, and if an event doesn’t occur for a duration.
• Event Alerts – Added re-arm time
• Event log reports support all event logs.

Monitor Sets - Counters

In the Counter Thresholds tab of Monitor Sets enter an instance of *ALL for a monitor set object, as opposed to selecting *Total which combines the results. For example, if multiple drives are determined to exist on a machine, based on the Audit function, the monitor set with an instance of *ALL will dynamically select a counter for each drive.

Monitor Sets - Services

In the Services Check tab of Monitor Sets, select the *ALL selection to monitor all services set to automatic on a monitored machine, instead of having to address each service individually.

Monitor Sets - SNMP

In the SNMP Sets wizard in SNMP Sets select an instance of All to address each SNMP instance in an SNMP object separately. These instances are identified by the last SNMP walk perform during a LAN Watch.

SNMP Sets – Percentage Comparison

SNMP Sets now provides a percentage comparison of one SNMP Object to another, for example, if ifInErrors is greater than x% of total UcastPackets.

SNMP Quick Sets

An SNMP walk during a LAN Watch identifies all SNMP objects that apply to an SNMP device. Using Assign SNMP, you can click the link of a discovered SNMP device and create an SNMP "quick set" to monitor that device.

Monitor Sets and SNMP Sets -
Auto Learn

Monitor sets and SNMP sets can to set to automatically adjust their alarm thresholds based on real word data for a specfied time period. Once an auto-learn session has been completed, the alarm thresholds can be fine-tuned manually.

Monitor Sets and SNMP Sets -Individualized Sets

An “individualized” monitor set or “individualized” SNMP set can be created for a specific machine or SNMP device, based on a “standard” monitor set, a “standard” SNMP set or a “standard” SNMP quick set. From that point forward changes made to the individualized set apply only to the machine or device it is monitoring.

System Check - Custom Name

Added custom name to system check. The name is used in alarm and email format templates.

Email Reader

Ticketing > Email Reader can now be customized to ignore emails containing specific text strings. Use this feature to prevent ticket creation when emails are received from things like email bounces. Typical bounced emails contain the string “Undeliverable: ".

External Link to View Ticket

The following URL displays the Ticketing > View Ticket web page for a specific ticket:
http//servername?ticid=ticketnumber
You are first prompted to login, if you are not already.

Product Identification

Added a Product column to various patch screens to help identify the product category associated with the specific patch. Also added this attribute to the Patch Details screen. For those cases where a specific patch is used across multiple operating system families (i.e., Windows XP, Windows Server 2003, Vista, etc.), the product category is “Common Windows Component”. Examples of the “Common Windows Component” product include Internet Explorer, .Net, Windows Media Player, MDAC, MSXML, etc. This attribute has replaced the patch name on those screens where patch name was previously displayed.

Patch Status -
Reboot Button

Added a “Reboot Now” button next to the “Reboot Pending” notification on the Patch Status page. Clicking the button schedules an immediate reboot on the machine. A confirmation dialog box is presented to prevent inadvertent reboots.

Automatic Updates

Added capability to schedule automatic updates on a monthly basis.  Automatic Updates can be scheduled daily, weekly on a specified day of the week, or monthly on a specified day of the month (1-31).

NOTE: When processing monthly automatic updates, if the current month has fewer days than the scheduled day of the month, the automatic updates is processed on the last day of the month. For example, if the current month is April and the scheduled day of the month is 31, the patches are scheduled on April 30^th.

Patch Alerts

Added a new machine level patch alert. This alert, when configured, is generated when the Windows Automatic Update Policy on the machine is changed to a setting (disabled, enabled, user control) that is different from that specified in the Windows Auto Update function under the Patch Mgmt tab. The Windows Auto Update function displays the current Windows Automatic Update Policy setting on the machine. This setting is obtained during each patch scan, and the alert is generated, if necessary, during the processing of patch scan results.

Patch Update

A “Patch Group By” dropdown list has been added to allow the user to change how the displayed patches are grouped. Before this release current grouping was based on the update classification and could not be changed. Now, the user can group by either update classification or product. The screen layout was modified to include both product and update classification in the presented data. Patches are still sorted by KB article within each grouping so that patches having the same KB article number are next to each other.

Patch Policy

Changes to approval/denial of patches include:

·         The former "collections” functions on the System tab have been moved to the Patch Policy section under the Patch Mgmt tab.

·         These former collections are now called “patch policies”.

·         Standard administrators can only see patch policies that contain machines they have rights to see or patch policies they create. This should allow standard administrators to now safely manage patch polices without interfering with administrators restricted to a different set of machines.

·         When a new patch policy is created, all active patches in that policy are now automatically set to pending approval rather than the previous default behavior of approved.

·         The “Patch Approval” function has been renamed “Approve by Policy” to distinguish it from the new “Approve by Patch” function.

Approval by Policy -  Group By

Modified the screen to be able to select the view of the status table based on update classifications or based on products. Both views are presenting totals from the same data source, so the total patch count for each approval status are the same, just distributed differently depending on the view selected. When a drill down is selected to the patch details page, the patches are grouped by the classification (sorted within classification by product) or by product (sorted within product by classification) based on the view selection.

Approval by Policy - Save As

Added “Save As” capability to copy the current patch approval policy as a new policy with identical settings. All patch approval/denial statuses are copied as are the default approval statuses for the policy.
NOTE: Machine membership is NOT copied to the new policy.

Approval by Policy - Default Approval Status

Default approval status can now be set for each update classification and each product within a patch policy rather than just for the policy.  This allows setting patch policies to automatically approve selected update classifications such as security updates while automatically denying other update classifications such as service packs and automatically setting the rest of the update classifications to pending approval. It alsos allows setting patch policies to automatically deny patches for selected products such as Office 2000 while automatically approving patches for products such as Office 2007 while automatically setting patches for the rest of the products to pending approval.

NOTE: If there is a conflict between the two default values, the more restrictive default value is used. For example, if one default is denied, the patch is set to denied. If one default is pending approval, the patch is set to pending approval. Both defaults must be approved for the patch to be set to approved.

Approval by Policy - Drill Down Details

·         Added the ability to add an optional short note (max 500 characters) to document why a patch was approved or denied.  This note is displayed under the patch title when the “Show Details” check box is checked. The note is added to when the Approve or Deny buttons are selected.

·         Added additional columns in the display to make the screen more informative.

·         Added ability to filter list of patches on details view.

Approval by Patch

Added a new function under Patch Mgmt > called “Approval by Patch”. The data displayed on this page is the same data available in “Approval by Policy”. It is just displayed from the patch perspective rather than from the policy perspective. Approving or denying patches from this page provides an “approve or deny once” capability. Includes the ability to filter the list of patches.

NOTE: This function is only available for master administrators because it affects ALL patch approval policies.

KB Override

Added a new function under Patch Mgmt called “KB Override”. Using this page, you can set a default patch approval status override (Approve or Deny) for a specific Microsoft knowledge base (KB) article. This override status is used rather than the patch policies' default approval status when adding a new patch to all patch approval policies. It also resets the approval status for the specified KB article in ALL patch policies. To add the KB override, a patch must already exist in the system with the specified KB article number.

NOTE: This function is only available for master administrators because it affects ALL patch approval policies.

Chat

A new option in Remote Cntl > Chat, “Automatically close chat window when either party ends chat” lets you control how the window behaves at the end of a chat session. Uncheck this box to leave the chat session open after the other side closes the window. This gives people a chance to read the last message or copy data into another file.

ActiveX

ActiveX installs all remote control views for the admin and the remote control server for the user when the admin uses the Video Streaming function. This can cause problems if the user’s browser blocks ActiveX controls from running. With this release, if the user’s browser detects the ActiveX control could not run, then the user is presented with a link to manually download and run the remote control package manually.

K-VNC

K-VNC is now supported on Windows 2000, XP, and 2003 in addition to Vista.

Backup Status

Added a new Backup Status dashboard, which provides:

• A list of backups in progress including % complete
• A backup summary pie chart showing scheduled, skipped, failed or cancelled backups
• Backup status by machine showing status backups scheduled, skipped, failed or cancelled for each machine

The time period over which to collect results is selectable.

Backup Sets

Enhancements to backup set management include:

• Option to delete backup set before running backup. This reduces the amount of disk space necessary on the backup server.
• Additional folder and volume backup set data detail. Report now includes type of backup performed (full, incremental, differential) as well as the number of disk volumes backed up for volume backups.
• Access to full log detail from backup set detail page via hyperlink.
• Canceling a backup in progress using an option from the backup set detail page.

Backup Alerts

Alarms are now optional for alerts. Additionally, two new alerts have been added:

• Skip recurring backup for offline machines. An alert is generated if a recurring backup is skipped on a machine a designated (user set) number of times
• Alert when image location hard disk used reaches user defined number of Mbytes free.

Backup Logs

Enhanced error detection and recovery.

• If the original full backup is missing when performing an incremental or differential backup, the backup is now reported as a full backup.
• More robust detection of errors when end-user has uninstalled the Acronis agent locally

Reports -

Backup

Backup report now offers option to include or exclude machines without data.

Reports -

Patch Management

• Added “Manual Install Updates” to patch management report filtering to include all patches that require manual installation, including those patches that can only be installed via the Windows Update web site.
• Added ability to filter patch reports by either the existing standard filter selections or a custom filter for a specified comma delimited list of KB Article Numbers and/or Security Bulletin Numbers.
• Added a summary table of machines and count of installed patches to the “Patches Installed in Last x Days” report segment.

Reports -

Logs

• Added a new checkbox to the Logs report named “Preserve plain text formatting”. Check this box to display plain text logs with the formatting from plain text files preserved in the HTML page.
• New Log Monitoring Report - Reporting on data returned from the new log monitoring feature. Allows for filtering on log text and custom fields by log parser.
• New Event Log Frequency Report - Report gives the most occurring eventIDs for the selected event log types for each machine ID.

Reports -

Monitor Action Log

New log describing the actions that occur when a monitor alarm threshold is met. Contains information on alarm created, ticket created, scripts scheduled, and emails sent.

Reports -

Event Log Frequency

New report displaying top number (N) of windows event logs per machine ID.

Reports -

Executive Summary

Added Log Monitoring to system activity.

Added Log Monitoring Custom allowing to count, total, average, min and max of log parser custom number fields.

Report – Monitor Action Log

Added monitor action log to monitor reports section.

DNS Computer Name

The fully qualified DNS computer name is now available for any machine that is a member of a domain. Members of workgroups return the computer name only in this field. Display the DNS Computer Name in either the Agent > Agent Status function or in the Aggregate Table report.

CPU Count

The CPU Count number, returned by audit, is now available on both the Agent > Agent Status function or in the Aggregate Table report.

Log History

Added capability for the following to be aged and/or archived:

• Agent Log
• Configuration Changes
• Network Statistics
• Script Log
• Remote Control Log
• Alarm Log
• Event Log
• Monitor Log
• SNMP Log
• Log Monitoring

The archiving of logs places log table data into text files. These text files are stored at a specified location and categorized by log table and machine ID.

Agent Install Packages - Standard Administrators

Standard administrators are now restricted to creating agent install packages using existing group IDs.

Macintosh Agents

A Macintosh agent is now supported. The agent type is specified in the Create Package wizard in the Agent > Deploy Agents function. If an administrator password is omitted from the Macintosh installation package, the installer prompts for administrator credentials during the installation as long as the silent option is not selected.

Rename Group

The Agent > Rename Group function under the agent tab, lets you rename any machine group ID or subgroup.

Rename Agent

Agents now check in using a GUID instead of the machine ID. Old agents can still check in using the machine ID and are fully supported except for renaming capability. Renaming now just changes the display name of the agent. The agent GUID stays the same. So in order to rename agents in the new system, the agent must be upgraded to Kaseya 2008 first.

Hide Common Computer Names

Typical laptop computers may have multiple MAC addresses and LAN Watch may detect both MAC addresses for the same laptop, for example, wireless LAN vs. direct connect LAN. So an additional checkbox has been added to hide machines that have a common computer name in the same group ID. Only the MAC address used by the agent to connect to the Kserver is reported.

vPro

This release supports Intel’s vPro-enabled processors.

• vPro enabled machines can be discovered using LAN Watch.
• LAN Watch discovery can include an audit of the hardware assets of vPro enabled machines.
• Remote Cntl > Power Mgmt provides scheduling of power ups, power downs, and reboots of vPro-enabled machines.

Active Directory

LAN Watch has been extended to integrate with Active Directory. Running LAN Watch on a primary domain controller automatically discovers all computers and users listed in AD. Two new functions, View AD Computers and View AD Users, display Active Directory results. You may also deploy agents to Active Directory computers found by LAN Watch as well as update user information pulled from Active Directory.

AD Logon

Any user discovered by LAN Watch may be tagged as a new Administrator logon or User logon to the VSA using View AD Users. These logons are all authenticated by the domain controller the logon is attached to. So now you can use a single logon on both your network and the VSA, all controlled by Active Directory.

NOTE: You can remove both the Domain field and the Remember Me checkbox from the logon page by checking the appropriate boxes on the Logon Policy function under the System tab.

Copy Settings - Exclude Patch File Source

A new Agent > Copy Setting option, Patch File Source, lets you exclude or replace the patch file source. The patch file source is frequently a customer-specific setting and should not be overridden when copying settings.

Import/Export

The System > Migrate function has been replaced with a new Agent > Import/Export function. Exported accounts capture all machine settings, including script schedules, into an xml file. Use Import/Export to move settings attached to any agent. Note that Import/Export only moves settings and not data attached to a machine. Log data is not moved with Import/Export.

Suspend Agent

Suspend all agent operations (scripts, monitoring, patching, etc...) without changing the agent settings. Use Suspend to disable accounts without deleting the agent or modifying any of the agent’s settings.

Admin Role Management

Administrator management has been enhanced with this release to allow non-master administrators to more securely manage other administrators. The administrator management functions under the System tab, restrict non-master administrators to only seeing other administrators that are members of the same roles. Note that master administrators rights may never be removed by standard administrators. Effected functions are:

• Admin Roles – Create/Delete

• Membership
• Group Access
• Function Access
• Login Hours
• Admin Accounts – Create/Delete
• Enable/Disable
• Set Password
• Admin History

Function Access

A new Enable All/Disable All button gives you a quick way to turn access on or off for all functions for an admin role. Click Disable All when configuring an admin role that does not have access to many functions.

Function Access -

Summary Page

Access to the tabs on the Machine Summary page can now be granted or blocked on a per admin role basis using Function Access.

Function Access -

Lock Settings to Match

Function Access settings for an admin role may now be locked to some other admin role. Any changes to the Function Access list for one admin role are automatically applied to all roles locked to it. If you create unique admin roles in order to isolate access to machine group, but want to give each role the same list of functions, then you can use this new feature to manage all function access from a single role.

License Manager

License limits now flow down to subgroups. Subgroups now inherit the license limit applied to their parent groups if the subgroup does not have a limit specifically applied.

Login Policy

The login policy is now enforced for both user and administrator logins. Prior releases only applied login policy to administrator accounts.

Customize

The customize function now lets you further customize the logon screen. You can add additional links on the left edge of the screen. This may be a useful spot to place a link to the Video Streaming page (/getHelp.asp) for example.

Database Views -

vBackupLog view

Added a new column to the vBackupLog database view. imageSize shows the size in bytes of the backup file. If the log entry does not relate to a backup then this column returns a zero.

API Web Service

Added a web service that provides an API (application programming interface) to the VSA. Enable the web service using the System > Configure function. Once enabled, the web service may be queried from the URL http://<your-vsa-server>/vsaWs/KaseyaWS.asmx using a valid administrator credential. A test client example, access control rules, and further details may be found in the directory <kaseya-install-dir>\vsaWs.

Kaseya Endpoint Security v1.2 (v1.2.0.0) – 10 March 2008

View Status

The current available version is directly off the Grisoft RSS feed and will be updated within 15 minutes of Grisoft posting an updated

View Status

The “Threats” column nows present a link to the manage threats page filtered on that individual machine. The top machine filter is not affected.

Updates

Individual agents no longer have update schedules. The KServer now tracks updates and schedules update scripts on individual agents only as needed. This results in timelier updates with less overall activity.

Updates

Because of the new automatic update script assignment, periodic (recurring) updates are no longer allowed. This page is for “manual push” only.

Updates

KES updates now honor the “File Source” settings under Patch. So KES can now deploy updates to agents that are not internet-connected (as long as they can reach the file share and the file share can reach the Internet).

Updates

The KES Agent now goes to the VSA server for updates when the File Source is KServer or Internet

View Threats

Select All has new behavior. Now it selects all of the threats in the current filter instead of just the current page.

View Threats

Now has a “Purge” button in the action bar for “clean up”. This will remove the threat from the active threat list (and put it in the history list) without triggering any script on the agent.

View Threats

There are now two tabs. The “Current Threats” tab is conceptually identical to the old page, showing threats that are current or in process of being taken care of. “Historical Threats” are threats that have been taken care of either through a clean, delete, restore, or purge.

View Threats

Additional filters: “machine”, which allows narrowing by machine without affecting the top-level filter (useful for stepping back and forth from the status page). “Time” filters on the discovery date by min/max/in between. “Categories” filters on the threat type—whether antivirus or antispy. “Action” and “Status” filters by what action (if any) has been taken and what the progress of that action is (pending/failed).

View Logs

Filters added to make log more useful. “Time” filters by when the event occurred (you have a lower and an upper date, and if either is empty that end is “open”, so both empty means “all”). “Categories” lets you pick events to view by category. “Message” lets you text search the message for some particular string.

Alarms

KES Alarms are now assigned via sets. These sets are created on the new ‘Define Alarm Sets’ page, and assigned on the ‘Apply Alarm Sets’ page.

Alarms

There are new KES alarms.

Define Profile

The profile UI has been updated to more closely reflect AVG.  A few new options have been added as well.

• Certification text for incoming and outgoing mail.
• Ability to add prefix text to the subject of a message that contained a virus.

Define Profile

A new tab called “Exchange” allows for configuration of the new real-time monitor for Exchange (see MS Exchange Install/Remove below)

PUPs

There is a new button on the view threats page ‘Add to PUP Exclusion List’.  Any threats selected when this is pressed will be added to an exclusion list for the profile assigned to the machine they were found on. If AVG decides a file by this name is a PUP on any machine with this profile, this file will be ignored (excluded).

Install/Remove

There is now an option to choose which profile to assign to a machine at install time.

MS Exchange Install/Remove

Added support for real-time monitoring of Exchange Servers. This page allows you to install Exchange Server support on any KES endpoint that is also an Exchange Server. Different licensing applies.

Kaseya User State Management v1.0 (v1.0.0.0) – 13 March 2008

Policy Management

Functions to support definition and deployment of machine policy for power, mapped drives and printers. Support for backup, deployment and migration of user accounts, system and application settings.

Power

Create power policies for different groups and/or machine roles. Schedule and deploy power settings to all users on targeted machines.

Mapped Drives

Create drive mappings for different groups or roles. Deploy mapped drive settings to all users on targeted machines.

Printer Mappings

Create network printer definitions, schedule and deploy printer configuration to groups of machines.

Desktop Standards

Create a desktop standards package to deploy specific system and application settings to all users on groups of machines.

User Settings Backup and Restore

Back up user account information and system and application settings from groups of machines. Restore allows selective restore of account information and settings to the same or a different machine.

Migrate

Multi-machine migration of user account and system and application settings. Enables ordered migration of user account information and preservation of user settings migrations to new machines during hardware or Windows OS upgrades. 

New features in v4.8.0.0 – 5 June 2007

Exec Sum Report

• The OS score weighting can now be customized. You can individually weight the OS score given to Vista, 2003, XP and 2000. Enter the % weights (0 to 100) in the four columns normally used for %score. Place Vista in the 100% column, 2003 in the 75% column, and so on. All legacy OSs are given a zero. If you have a large number of legacy OSs deployed, considered turning off the OS score.
• Changed the default System Activity search filter data to only count “*Success THEN*” for Latest Audit and Patch Scan. Prior to this release, the default values counted any appearance of Latest Audit and Patch Scan, including reschedule events. Note: You must edit any saved Exec Sum Reports yourself to add these new filters in by clicking the Change Rows button.

Login Policy

The password strength section lets you specify the following:

• Block administrators from changing their login name
• Require password change every N days
• Enforce minimum password length
• Prohibit password reuse
• Require upper and lower case alpha characters
• Require both alpha and numeric characters
• Require non-alphanumeric characters

Patch Mgmt

Added WARNINGS and/or NOTES to screens affected by Initial Update to better inform users of its impact on patch management functions.

Patch Mgmt – Patch Status

Enhanced the Patch Status page with the following:

• Added a new column, “Missing Manual”, to provide a count of those patches that require a manual effort to apply. These patches cannot be processed by Automatic Update or Initial Update.  The total of all missing patches is the sum of the “Missing Approved”, “Missing Denied”, and “Missing Manual”.
• Added the ability to display the status of Initial Update while it is being processed.  The Initial Update status message and date/time is displayed instead of the column totals when ever Initial Update is being processed.
• Patch Test will not be performed on machines that have Initial Update being processed.  Added NOTE on screen to that effect.
• Added the ability to display the name of machine’s operating system if the OS is not supported for patching

Patch Mgmt – Rollback

Added the date, if available, that the patch was installed to the screen similar to the Patch History screen.

Patch Mgmt – Cancel Updates

Add a notation to the “Pending Update Install Status” column to indicate that the patches currently pending installation are being processed by Initial Update.  Canceling pending updates will now also cancel Initial Update.

Patch Mgmt – File Source

Enhanced the File Source page with the following:

• Modified the “Pulled from file server using UNC path” option by adding a Machine Group Filter dropdown list to filter the list of machines on which the file share is located.  Previously, the Select Machine Group that filters the list of machines displayed on the page was used.  This prevented users from selecting a machine in another group as the file share unless they selected all machine groups for the page.
• Added a sub-option under the “Pulled from file server using UNC path” option.  This new sub-option permits the administrator to configure a machine to obtain patches from the file server when the machine is connected to the LAN, but fallback to download the patches from the Internet if the file server is not available for any reason (cannot connect to file server or bad network credential).

Patch Mgmt – Windows Automatic Update

Added checkbox to “Force auto-reboot if user is logged on” to the “Configure - Force Windows Automatic Update configuration to the following settings” setting. We also changed the underlying default to NOT force the reboot. This is a Windows Update registry setting that only affects Windows Automatic Update.  Windows Automatic Update cannot use Kaseya’s Reboot Action settings.

Patch Mgmt – Office Source

Added the ability to filter by Office products/product codes to make it easier to set multiple machines to a common Office source share.  Since the same Office product can have one of several product codes, the filter ensures that only products with the same product code are selected together.

Patch Mgmt – Command Line

Renamed the “Default” button to “Reset to Original” and modified the action from replacing all command line switches to only those for the selected patches.

Status Monitor

The status monitor pop up window no longer counts or displays template accounts (agents that have never checked in).

Script Editor

Fixed problem with file list that would not list shared files unless that admin also had rights to upload and delete shared files. All admins may see shared files.

Agent Installer

Increased Agent installer options buffer from 128 bytes to 2048 bytes. This change allows longer messages to be included in the Agent Install switches when using Deploy Agents to create the Agent install package.

Video Streaming

Added link to terminate video streaming sessions. As an admin, when you start the wait for a user to initiate a video streaming session you are listed on the getHelp.asp page. Click the terminate session link to remove yourself from that list.

Backup Scheduling

All parameters for both Schedule Volume and Schedule Folder are now independently settable. So now you can change a machines backup schedule without modifying the backup set count or recurring interval.

Backup - Differentials

You can now choose to save all differential backups made since the last full backup in addition to just the last differential backup. Choosing to only save the last differential saves the most disk space.

Backup Imaging

• Vista is now supported. You can now backup Vista boxes
• In previous releases if a network connection dropped, however briefly, the backup or verify failed. With 4.7.1, the system retries for up to 10 seconds before giving up. This addresses issues found with NAS storage devices.
• This release has better VSS support.

Folder Backup

In addition to local drive paths, you can now specify UNC paths to backup. For example, you can include a folder like \\fileshare\docs into your list of directories to backup. Note that the file share must be accessible by the credential set up for this machine (Set Credential command under the agent tab).

Backup Alert

Added a separate alert for Full Backup Completed. This alert only goes out after a full backup completes, as opposed to incremental or differential backups. If you physically transfer disk images periodically, use this alert. Just after a full backup completes is a good time to transfer disk images.

Disk Info List

Show used space in addition to free and total space for all disk drive space tables and reports.

Application Changes Alert

You can now add exclude directories to the Application Changes alert. Any application added or removed to these directories will not generate an alarm. The exclude path may contain wildcards.

KServer

KServer modifications include the following:

• Log a script execution error when processing a Set Credential script command that has an empty username.
• Escape the ampersand character in the Send Message script command so that the character appears correctly in the dialog box shown on the Agent
• Escape the ampersand character in the Execute Shell Command so that the character is correctly recognized when it is part of the directory path.
• Corrected processing of script IF command “IF user response is Yes” when no user was logged in so that it takes the ELSE path

Agent – Pause Command Processing

The processing of the Pause Script command has been shifted from the KServer to the Agent to avoid the possibility of putting all process threads to sleep in the server for a prolonged period which would result in Agents going offline.

You must update your Agent to the current version in order to process any script with the Pause Script command.  The KServer will now fail at the Pause Script command when a script is run on an AgentMon.exe prior to v4.7.0.4.

Agent – Workgroup/Domain name

The Agent now reports whether the computer is joined to a workgroup or domain and the corresponding name.  This information can be used in creating a view as well as shown on the Agent status page and reports.

Agent – Response Issue

The Agent detects a connection corruption caused by security software that blocks KServer messages requesting an immediate checkin.  The corrupted connection was causing a 3 minute timeout before establishing a new connection to run the pending tasks.  When the Agent detects the symptoms of this condition, it removes the timeout so that the tasks can run at the specified checkin period.

Agent – Event log description

Resolved an issue so that the event log description is properly retrieved when the vendor provides multiple event log message DLLs.  Also fixed an issue with retrieving the description when the vendor provides only a 64-bit event log message DLL.

Agent – Event log collection

Resolved an issue with retrieving event log information on Vista when the application provides access only through the newer event log interface and omits backward compatibility through the legacy interface.

Agent – Contact Administrator Menu Item

Resolved an issue that opened the Administrator login page instead of the User login page when selecting the “Contact Administrator…” agent menu item.

Deploy Agents

Modified download page , dl.asp, to not list any packages if nothing is checked on the Deploy Agents page. Previously, it would always list the default package if nothing else was found.

Login

Error message changed to “Username or password is incorrect” when either the password or username was not correct. Prior to this release the error message said which was wrong.

Log display

You can now sort the Event Logs and Script Log by column in the Agent Logs function under either the Agent Tab or the single machine interface.

Edit Profile

Added a checkbox to the Edit Profile function called Show notes as tooltip. Checking this for any machine ID will display the notes field for that machine to display on the tooltip for the agent's status icon. Use this feature to quickly access notes for any particular machines.

Exec Summary Report

The OS score weighting has been changed to (Vista-2003:100%, XP:75%, 2000:50%, NT4:25%)

Function Access

Added ability to turn on/off access to admin notes on a per admin role basis.

Chat

Administrators can not remove their names from the list of available administrators to chat with. The list seen by administrators (in the Chat function under the Remote Cntl tab) and the list seen by users in the user login are controlled separately.

Restore Database

Fixed a problem only seen when moving your KServer to a new machine and installing on a different disk drive. The Restore Database function had a problem restoring the scheduled reports.

Set Credentials

Added a test function to verify the credentials work

System Info

System information now inserts a link to the PC manufacturer’s support site when a field in the System Information table may be used to access this data. Currently supported manufacturers are:

• Dell
• IBM
• Lenovo
• HP
• Compaq
• Gateway
• Sony

Views

Added option to list machines that have never checked in. Use this filter to list template accounts.

Monitor – System Check

Enhanced the capabilities of Custom command within the System Check function.  Custom commands will now require an output file assigned by the administrator.  Alarms will be created by searching the output file for a specific value(s) by using the operator contains or does not contain. 

Added alarm Re-Arm time, to allow all system checks to ignore addition alarms for the specified duration.

License Manager

The new License Manager function under the System tab, lets a master administrator allocate maximum license usage on a per machine group basis.

Remote Control – K-VNC

Added support for K-VNC to provide remote control on Vista.  K-VNC has also been added as an option for Video Streaming.

Remote Control – RAdmin

Added support for RAdmin 3.0. RAdmin 3.0 includes full support to remote control Vista.

Remote Control RDP

Support remote control of a terminal server running on a port other than the default port 3389.

Remote Control Policy

Both the Admin Role Policy and Machine Policy now support a fourth policy type. Require permission will not allow remote control unless a user gives permission. If no one is currently logged in, then permission is denied.

Automatic SQL Script Variables

SQL view parameters are now available as automatically declared script variables.  Use the format #SqlViewName.ColumnName# in a script variable to access the dbo.SqlView.Column for the machine ID executing the script. These automatic variables allows you to skip the call to GetVariable with the option “SQL View Data” with the format of SqlViewName/ColumnName.  See the context sensitive help for the System tab -> Database Views function for a list of the SQL views and columns that are available.

GetVariable Script Command

Added a new option “SQL View Data” that will place the result of a database query to retrieve data from an SQL view for a specific machine ID or for the machine ID executing the script.  The format of the parameter for this option is SqlViewName/ColumnName/mach.groupID or SqlViewName/ColumnName. The latter format is an explicit form of the automatic SQL script variable.  See the context sensitive help for the System tab -> Database Views function for a list of the SQL views and columns that are available.

Audit – Documents

There is a new function under the Audit tab named Documents. Use the Documents function to store files associated with a machine ID. Typically, people store things like scanned copies of purchase receipts, contract information, and configuration notes here.

User Welcome page

All the text on this page can now be customize. Prior to v4.8, a Welcome to your system name was always shown at the top.

Agent on Vista x64

The Agent now runs on Vista x64.  Drivers provided with the Agent are signed.  The only known restrictions are:

-       Terminal services (RDP) is the only remote control option

-       Network access can be granted/denied and network statistics can be gathered only for 32-bit applications

Reset Password

The password is now set to never to expire when it is set using the Reset Password function under the Remote Cntl tab.  This feature requires a new Agent, version 4.7.0.19 or above.

New features in v4.7.0.0 – 29 January  2007
Vista Support, Ticketing, Monitoring

Multi-Language Support

Kaseya now supports multiple languages. Currently Spanish is available with more to follow soon.

Ticketing – Adding notes via email

You can now send an email reply to any administrator ticket notification. The reply is automatically added to the ticket just as if you added the ticket through the web interface. If user notifications are enabled, then the new note is also emailed to the user. If you add ~hide to the text of the message, the new note is added as a hidden note.

Ticketing – Auto fill

Inbound tickets will auto lookup and fill in contact info based on user profiles. New inbound emails will be automatically assigned to a machine ID if that machine id has a contact email address and the auto assign ticket flag is set.

Ticketing -  View Summary

The last search filter is always used (on a per administrator basis) on the View Summary page. Now if you select a different function and come back to View Ticket, the last search filter is automatically filled in and applied. Click the Clear button to remove the filter at any time.

Ticketing – Split Ticket

Sometimes users reply to existing tickets and begin a completely different line of discussion. For better organization, you can now split these tickets in two. A new icon appears by each note in a ticket. Click the icon to split the ticket at that point. All field settings are copied from the original ticket and the original ticket is automatically closed.

Ticketing – Mobile Access

Notification emails sent to administrators contain a link to access the ticket. The system now senses when this link is clicked from your mobile device and automatically renders both the login screen and View Ticket page to fit your mobile device’s browser. Use this capability to view, add notes, or change field status on any ticket.

Ticketing – Due Date Policy

In prior versions the due date policy was applied when ticket data is first received (typically from an inbound email). This did not help much when entering a ticket through the web interface. With this release we have changed this behavior to always apply due date policy to new tickets after any field change. Once ticket ID is assigned, then only a warning is displayed if the due date does not match the policy.

Ticketing Report

• Added ability to show/hide hidden notes for tickets.
• Bar chart showing the tickets for each admin broken down by status
• Option to show a pie chart break down of each list field item.

Patch Mgmt – Expanded Support

Added full patch support for Exchange, Sharepoint, Vista, and Office 2007

Patch Mgmt – Patch Approval

Redesigned Patch Approval page to keep configuration data and patch approval data in different frames for ease of use.  Added the capability to configure a default Approval Status for each collection/policy to control the initial approval status of newly discovered patches.

Patch Mgmt – File Source

Added validation code to alert the admin when a LAN file source Machine ID no longer exists or if any of the required data is missing.

Patch Mgmt – Initial Update

Added support for the execution of a script before Initial Update and/or after Initial Update.  These scripts are configured on a per machine basis in the new Patch Mgmt – Pre/Post Script function.

Patch Mgmt – Alert

Added two new patch alerts:

·         Automatic addition of newly discovered patches to existing Patch Approval policies.

·         Invalid Agent credentials

Patch Mgmt – Patch Update

Removed processing of KServer.

Patch Mgmt – Command Line

In an attempt to minimize the need for installation media when patching Office 2003, we have added a new command line switch: “/MSOCACHE”. The " /MSOCACHE" switch only applies to Office 2003. When the patch database is updated, this switch is automatically added to all Office 2003 patches where an administrator has never modified a particular patch's command line switches. It is not automatically added to Office 2003 service packs. When this switch is used, the system determines if the MSOCache exists on the target machine. If the MSOCache does exist and this switch is used, the system will automatically use the run silently switch ("/Q") thereby relying on the MSOCache rather than requiring the actual installation media. If the MSOCache does not exist on the target machine, the existing switch will be used. If a patch installation fails that uses the "/MSOCACHE" switch, it typically means that the MSOCache could not be used by the patch. In this case, you must clear out all command line switches for this patch. This will result in the "/INSTALL-AS-USER" switch to be automatically added. Re-running the patch installation should now succeed. Unfortunately, this will require user intervention and also probably require the Office 2003 installation media.

Patch Mgmt – Office Source

Added support for configuring a machine with Office installed to use a network share or a directory on the local hard drive as the Office installation source rather than the default CD-ROM.  This feature modifies the machine’s registry so Office will look to the alternate location for the Office installation source. The provided source is validated to be sure that the source is compatible with the installed edition/version of Office.

Patch Mgmt

The explicit listing of “KServer” in various Patch Mgmt screens has been removed.  To process patches on the KServer, an Agent must be installed on the KServer.  All Patch Mgmt processing (except Initial Update – not supported on KServer) can be done with the Agent on the KServer just like any managed machine.

Copy Settings

If the source machine (the machine you are copying from) does not have a credential, then the credential is not changed on the target machines. Use this to create template accounts that do not effect the credential of target machines.

Scripts

All scripts run after a machine reboots were named REBOOT-xxxx. We received several support requests asking why Kaseya reboot their server when in fact the script was run as a result of a reboot and did not cause the reboot. To end this misconception, we have changed this naming convention to START-xxxx

Backup Password

Image passwords are logged and saved forever. Master administrators may retrieve a password for any machine ID, even machines that no longer have backup installed or even have an agent, as long as the machine ID at the time the password was created is known.

Offsite Server

List all offsite servers in the Offsite Server and Local server functions. All listed because the offsite box will probably not be in the same group ID.

Audit – SW License

The product installation key (CD key) is recovered during audit when it is available.

Audit – Add/Remove Programs

Audit now returns the add/remove program list.

Remote Control Status

• Currently logged in user for each machine ID, if any, is displayed on the Control Machine function.
• If any admin is currently remote controlling a box, the admin name is listed also.

Remote Control Notification Policy

define policy on a per admin role basis. Also allow policy to be defined on a per machine basis. If a machine policy exists, it over-rides the admin role policy.

o    Silent

o    Notify if logged in (now with customizable message)

o    Ask if logged in (else deny) (now with customizable message)

- Added option to pop up alert when remote session completes (with customizable message).

- Option to (or required if policy set) add a note to the admin notes log prior to allowing remote control session to start.

Remote Control Log

You can now report on remote control activity. The system now maintains a separate remote control log for each machine ID. You can view (Agent Tab – Agent Logs) or report (Reports Tab – Logs) on the Remote Control Log just like any other log.

Disable Remote Control on Install

Adding the /x option to the agent install package (Agent Tab – Deploy Agents) automatically disables remote control from the client side after a successful agent installation.

Remote Control User Mode

End users may now use Terminal Server to remote control their own machine.

Remote Control Verbose Mode

The Enable verbose relay flag is now remembered on a per admin basis. If you enable the verbose relay in a remote control of FTP session, that flag is automatically set the next time you remote control of FTP. The verbose relay flag is typically left off and is not needed for normal operation.

System Check

System Check verifies a remote machine, such as a web server, is functioning by connecting to it on a recurring basis. You can prevent temporary outages from sending alarms by specifying the length of time a check must fail before issuing an alarm.

Deploy Agents

Master administrators now have a checkbox to let them view all install packages created. Check this box to clean out and/or remove old agent packages.

Agent Status

Time Zone is now available for display in the Agent Status table.

Monitor – Agent Status Alert

The system now detects when a batch of agents go offline at the same time (usually resulting from an internet outage). The system will now send only a single email listing all machines that went offline at the same time. Prior to this release, an email was sent for each machine ID.

Monitor - SNMP

Shortened time between SNMP monitor requests. In older versions, the interval between SNMP monitor request could have become prohibitively long if the SNMP Probe (Agent) was monitoring hundreds of SNMP Devices. The polling and connections are now multithreaded; creating narrow data sample intervals.

Monitor – SNMP

When Kaseya first discovers an SNMP device, a deeper initial request of SNMP data is now being performed. The initial SNMP Discovery will now include a 'deep dive' return of SNMP data. The SNMP branches currently being queried are:  iso.org.dod.internet.mgmt.mib-2.interfaces and .iso.org.dod.internet.private.

Monitor – SNMP

Added link to Assign SNMP Monitor page to view list of auto discovered SNMP data.

Monitor – SNMP

Added new function allowing the user to customize SNMP Device names and Types.

Monitor – SNMP

Added filters to the SNMP Log function to allow the user to filter log entries that contain certain text or values.

Monitor – SNMP

If the user removes the SNMP Community name, all associated SNMP Devices will be removed and logs cleared.

Monitor – SNMP

The SNMP Probe will attempt to find SNMP Table descriptions where possible and automatically insert the results into the monitor item description. (Example: If asking for the ifEntry.ifInOctets for interface #2, Kaseya will identify, if available, that interface #2 is the ‘external firewall connection’ and add it to the description)

Monitor - General

Pop-up warning on log-in will inform the user that Alarms are currently disabled.

Monitor - General

If the update of a monitor set is not ‘contextual’ (does not significantly change the monitor item), the logs will not be cleared.

Monitor - General

All monitor sets will continue collecting data even if the administrator changes the Kaseya temp directory.

Monitor - General

When a SNMP Community Name reference is removed, all related SNMP Agents will be removed also.

Monitor - General

Added more descriptive information within monitor set expanded information to the following web pages; Log Summary, Alarm Summary, Alarm Status, Monitor Set Status, Monitor Summary, Live Connect.

Monitor – System Check

Added Duration to all system checks for alarms.

Monitor - Alarms

History of note entries can now be kept on all Alarms.

Monitor - Alarms

If a monitor set generates an alarm email, an additional email notification can be sent if the Alarm value transitions back 'out of' its alarm state.

Monitor - Reports

Allows the user the ability to select a monitor counter and calculate the 95th percentile (or 5th) for each counter. Also added was a comparison feature; allowing two machines to be reported (trended) upon side-by-side.

Monitor - Reports

Added trending reports with 'number of days' filter and comparison features.

Monitor - Reports

Added trending reports for all SNMP Objects (again with comparison feature).

Monitor - Reports

Added Monitor Configuration Report listing the monitor set configuration for the machines selected.

Monitor - Copy Settings

'Copy Settings' will now include all monitor sets information when copying machines with the same operating system.  Monitor sets will not be copied if the operating systems isn’t supported by monitoring and/or copying from Windows 2000 to Windows XP/2003.

Monitor – Assign Monitor/SNMP Sets

New edit icon, when clicked will allow the editing of existing monitor set deployment parameters on the specific machine/device.

Monitor Sets and Logs

All monitor sets will stay collecting data even if the administrator moves or renames the Kaseya temp directory.

Monitor – Log Summary

Added icon indicator and action to refresh specific monitor object on the machine or device.

Monitor – Log Summary

Added Filters to log and chart data.

Monitor – Log Charts

Added more description info and X/Y titles to charts.

Monitor Console – Machines Online

Added Customized zones Red/Yellow/Green

Monitor Console – Popup Windows

Fixed positioning of console windows alignment.

Monitor Console – Group Alarm

Removed View drop down list.  Group alarm status page will now use the main view filter.

Agent Changes

• Now supports Windows Vista on i386
• Now supports Windows XP on x64
• Now supports Windows 2003 on x64
• Enhanced processing for various system monitoring changes
• processing a duration prior to reporting an alarm for the System Check
• support for foreign language notation in performance counter data that utilizes commas instead of decimal points
• fixed access rights required to query the status of some services that grant only read-only privileges
• Agent now detects hibernate & suspend. Upon a resume event, the Agent generates entries into the agent log file so that the uptime history report will show the Agent as being powered down over the period. Prior to this, the uptime history report showed the Agent as being continuously online.

Installer

There is now only a single installer rather than the separate versions for with and without the database. The installer asks if you are using your own SQL server or need the database at install time. If you need the database, the installer downloads it and installs it at that time.

Known Issues

Deploy Agents

Agents can not be deployed over the network (using Install Agents function) to Vista machines unless UAC is disabled.

Backup

Backup is not supported on Vista yet

Agent Installer

The agent is not compatible with Vista-64

New features in v4.6.3.0 – 21 August  2006
Folder Backup Fix, Minor Maintenance Release

Maintenance

Fixed minor display related problems

Folder Backup

Fixed Acronis bug in the folder backup system.

VSS Support

Volume Shadow Copy Service is now automatically used on systems that have VSS enabled on a drive being backed up. The checkbox to enable/disable VSS support has been removed since it is fully automatic now.

Backup Image Size

Collect backup image size after each backup. Backup Status, Logs, and Reports all now list image size.

Backup Post Script

The Pre/Post Script function under the Backup tab runs a script before or after backup completes. You can now conditionally run the post script depending on the status of the backup that completed.

Backup Schedule

You can now disable incremental/differential backups and only run full backups, by entering a zero for the incremental backup period.

Patch Approval

The "Filter patches by Approval Status" dropdown list will now retain the last selected approval status between page refreshes.  For example, this will permit the selection of all "Pending Approval" patches and mark some as approved and some as denied without having to re-select the "Pending Approval" status after applying the approval.

System Tab Web Pages

Improved performance of web pages under the system tab. Some these pages took an long time to render on systems with a large number of machine groups and a large number of administrators. These pages now response considerably faster.

Monitor - Edit

Changed 'alarm duration' logic. The system will now look back in the log table to see if there any records that were under the alarm threshold. If there are none, instead of going into 'alarm' (old behavior), it will continue to look to the next oldest log value. If that value is over the alarm threshold, the system will only then go into 'alarm'.

Monitor - Reports

·         Added trending reports with 'number of days' filter and comparison features.

Monitor - Copy Settings

'Copy Settings' will now include monitor sets. 

Monitor - General

When a SNMP Community reference is removed, all related SNMP Agents will be removed also.

Monitor - Edit

When a monitor set is edited, the logs will not be reset unless the counter, service or process specific information is changed.

Monitor - Logs

Logs now have icons that indicate that there are log entries for the corresponding monitor item..

Monitor - Logs

Added 'character match' filters to log tables. Allowing for searches of the log table entries (i.e. " ... show all service log entries like 'stop'")

Monitor - Logs

Added 'day range' filter to counter graphs (similar to SNMP logs).

New features in v4.6.2.0 - 19 July 2006
Minor Maintenance Release

Maintenance

Fixed minor display related problems

Remote Control

Added ability to independently set the screen width and height in terminal server sessions. See the Set Parameters function

Backup

• Support installation on Windows 98 and ME
• Added check box to not reboot after backup installation
• Backup log now has separate entry for each verification
• Fixed a problem with the Offsite Replication scheduler that failed to reschedule the local server restart after one day.
• Added support for Virtual Shadow Copy Service (VSS) to both folder and volume backup
• Added new Compression Function allowing you to set the compression level used by backup.

LAN Watch

IP scanning range is now restricted to 11 bits (2048 addresses)

Patch Mgmt - Initial Update

Modified the Initial Update screen to include update status from "scheduled" through the various "processing steps" to "completion".

Patch Mgmt - Patch Approval

Modified the Patch Approval screen to include the ability to filter on the approval status.

Patch Mgmt - File Source

Modified the File Source screen to improve the clarity of the source for the patch files and the patch file's destination on the target machine.

Monitor - Edit

Modified ‘Update Lists by Scan’ function to return all Counters and Instances.

Monitor - Edit

Modified ‘Add SNMP Object’ function to consume the newer MIB file formats.

Monitor - Edit

Added ‘Group Alarm Column’ selection as a step in the Add function for Monitor Sets and SNMP Sets.

Monitor – Assign Monitoring

Modified PerfMon commands to start counters after an agent machine has been re-booted.

Scripts (support of Monitor)

A script named ExecuteSNMPWalk.has been included in the Sample Scripts/Config Changes area. This script is very valuable if the user is new to the SNMP device.

System Alerts

Added a new system alert to report when the Email Reader in ticketing failed for any reason.

Reports - Patch Management

The Patch Status section of the Patch Management Report has been modified to display the same patch status as displayed on the Patch Mgmt - Machine Update page. Previously, the only statuses presented were "installed" or "missing". Now, more detailed status information is displayed when applicable.

New features in v4.6.1.0 - 30 May 2006
Advanced Monitoring, Backup, Ticketing, and more…

Function Access

You can now customize the Master group in addition to any other groups. Any function can be enabled/disabled except the System tab and all master admin only functions. We added an Enable All button to re-enable all functions for the selected role in one click.

User Remote Control Options

Users logging in to remote control their machine are now presented with the standard remote control options prior to starting remote control.

Event Set alerts

You can now set independent email addresses for different event sets on the same machine ID. This lets you send alerts generated by different application events to different administrators.

KServer Agent

An agent may now be placed on the KServer itself. You can manage your KServer just like any other system without restriction.

Machine Group Creation

Added option to allow standard administrators to create root groups. Only master administrators may grant this permission. To allow standard administrators to create/delete root machine groups, log in as a master administrator and click the Create/Delete Machine Groups function under the System tab. Check the “Allow standard administrators to create root groups” check box. Note: only empty machine groups may be deleted.

Event Sets

Added the ability to import and export event sets.

Manual Hotfix Install

Hotfix controls have been moved from Refresh Patch Database in the Scan Machine function (Patch Mgmt) to the Configure function under the System tab. The system now supports downloading and applying hotfixes out of band when the KServer is not connected to the internet. Hotfixes are automatically checked for and applied by the KServer every 8 hours. If your system can not connect to vsaupdate.kaseya.net or you would like to for a check for hotfixes, then click this link.

SQL Server 2005

This version fully supports Microsoft SQL Server 2005.

Agent Menu

Due to popular demand, we have returned to calling the agent the “Agent”. All references to Client have been changed back to Agent.

Script Directory

Added ability to import and export entire script directories (all scripts and sub-directories in any script directory).

Script Commands

·         Added ability to temporarily disable a script step. Select Disable Step from the drop down control used to only run a script step for a particular operating system.

·         Managed Files directories now support sub directories.

·         Write Directory – Script command writes an entire directory structure to the remote machine

·         Get URL – Copy a URL from an FTP or Web site to the remote machine

·         Schedule Script – Allows a script to trigger scheduling of a script on another machine ID

·         IF check to determine if Service is Running

·         IF check to determine if Application is Running

·         IF Test File support Contains and Not Contains

Agent Status

Added a Reset Filter button to quickly remove any advanced filter settings on the Agent Status function. The advanced filter may reduces the number of machine IDs displayed. Click Reset Filter to quickly display all machine IDs.

Email Reader

Added support for POP3 servers requiring SSL connections

Views

You can now share views with other administrators or administrator roles. Click the Share… button on the edit views page to set up share permissions. This release also adds significant filtering capability to views. You can now:

• Show machines that have or have not been rebooted in the last N days/Hrs/Mins
• Show machine that either contain a particular application or are missing a particular application. You can further refine this filter based on the application’s version number. For instance, you can display only machine containing acrobat.exe v6.0.0.0 and up.
• Advanced agent Data filter lets you display machines with parameters collected via audit. You can also apply Boolean logic to the filter using the same advanced filter capability found in the Agent Status function and the Aggregate Table report.

License Count

The system no longer counts agents that have never checked in (red status icon) against your license. This lets you freely create and configure an unlimited number of machine IDs for use as template accounts (to copy settings from when deploying new agents) or as a place to store tickets assigned to devices or people not associated with an active machine ID.

Run Audit schedules System Info

You can now schedule System Info data collection in conjunction with Run Audit (under the Audit tab). System Info may cause high CPU utilization on the client and normally runs once after the first audit. Use the new checkbox option to schedule System Info collection to run again or run recurring for any checked machine. The System Info scheduler has been removed from the System Info data display.

Reset Password

Added a new option allowing you to specify whether to create a new account in the administrators group or not.

Editable Sample Data

The sample scripts, sample event sets, sample monitor sets, and sample administrator roles are now fully editable. You have to option to prevent sample data from reloading each time a update or database maintenance runs on your system using the Configure function under the System tab.

LAN Watch Alert

In previous versions, LAN Watch generated an alert when a new device was found on the LAN that had not previously been on the LAN for the last 7 days. That time period is now fully programmable. If you have a network where devices may be turned off for extended periods, increasing this value beyond the longest time a device remains off prevents that device from generating an alert when it turns back on.

Agent Status

Added clickable column headers so you can sort this table by any column displayed. Clicking a header the second time sorts in reverse alphabetical order.

Status Monitor

Added a paging control to the status monitor. Previously you were limited to at most 100 machines. Now you can monitor all machines using the standard paging control.

Alerts

With the introduction of advanced monitoring, Alert functionality takes advanta