Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865
Transcription
Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865
Dell KACE™ K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865 Release Notes October 2014 These release notes provide information about the Dell KACE™ K1000 Systems Management Appliance version 6.0 Hotfix 101865. This release contains bug fixes and updates to the K1000 appliance (server), and it requires the appliance to restart after the update is installed. This is a cumulative release that includes issues resolved in hotfix 6.0.101864, and it should be applied to appliance version 6.0.101863 or 6.0.101864 only. The K1000 Agent software is not updated in this release. • About Dell KACE K1000 Systems Management Appliance on page 1 • Resolved issues on page 1 • System requirements on page 2 • Product licensing on page 2 • Update the appliance on page 2 • Post-update tasks on page 5 • Globalization on page 7 • About Dell on page 7 About Dell KACE K1000 Systems Management Appliance Dell KACE K1000 Systems Management Appliance is a physical or virtual appliance designed to automate device management, application deployment, patching, asset management, reporting, and Service Desk ticket management. Resolved issues This release applies updates and resolves several issues. Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865 Release Notes 1 Table 1. Resolved issues (new in hotfix 6.0.101865) Resolved issue Issue ID When importing patch metadata, the appliance only looks for CAB, EXE, and PLP file extensions, preventing some third-party patches from being deployed. K1-16998 Versions of the Bash shell contain vulnerabilities. K1-16984 Table 2. Resolved issues (from hotfix 6.0.101864) Resolved issue Issue ID Service Desk ticket attachments that contain special characters, such as accent marks, are handled incorrectly. K1-16578 During scheduled LDAP group imports, LDAP group names are concatenated instead of being imported with individual group names. K1-16548 During scheduled LDAP user imports, existing user accounts are duplicated. K1-16547 When using Internet Explorer® version 8 to access the Administrator Console, the Assets list is blank. K1-16536 During user import and login, LDAP user filters are applied incorrectly. K1-16530 System requirements Before installing this hotfix on your K1000 appliance, ensure that your system meets the minimum hardware and software requirements. For hardware and software requirements, see http://kace.com/support/resources/documentation. Upgrade and compatibility This hotfix should be applied to appliance version 6.0.101863 or 6.0.101864 only. To check the version number of your appliance, log in to the Administrator Console, then click About K1000 at the bottom left of the window. If your appliance is running an earlier version, you must update to the listed version before installing the hotfix. Product licensing If you currently have a K1000 product license, no additional license is required. To obtain a license, contact Dell KACE Technical Support at http://kace.com/support/ Update the appliance You can update the appliance using an advertised update or by manually uploading and applying an update file. Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865 Release Notes 2 Prepare for the update Before you begin Before you update the K1000 appliance, verify that your appliance meets the following requirements: • 64-bit system: If you have a physical K1000 appliance, it must be a 64-bit system. The hotfix update cannot be installed on 32-bit appliances. • Current version: This hotfix should be applied to appliance version 6.0.101863 or 6.0.101864 only. To check the version number of your appliance, log in to the Administrator Console, then click About K1000 at the bottom left of the window. If your appliance is running an earlier version, you must update to the listed version before installing the hotfix. • Disk space: You must have more than 15% free disk space available on the K1000 appliance. On physical appliances, this disk space must be on the appliance's main drive. Additional recommendations: • Allow plenty of time: If you have a large database, more than 150MB in size, the update process can take several hours. • Back up before you start: Back up your database and files and save your backups to a location outside the K1000 server for future reference. For instructions on backing up your database and files, see the K1000 Administrator Guide, http://kace.com/support/resources/documentation. If your backup file (kbox_dbdata.gz) is more than 150MB in size, contact Dell KACE Technical Support for additional recommendations: http://kace.com/support/contact. • Save patch notification messages: If you have disabled patch progress notifications to managed devices, but you have notification message text that you want to keep, copy that text to a backup location. During the update, patch progress messages are deleted if patch progress notifications were disabled. • Enable SSH: Enable SSH in the Security Settings section of the Administrator Console. This provides an easier path to recovery if necessary. When the update is successful, you can disable SSH as needed. Update the appliance using an advertised update You can update the appliance using an update that is advertised on the appliance Dashboard page or on the Appliance Updates page of the Administrator Console. CAUTION: Never manually reboot the appliance during an update. Procedure 1 Back up your database and files. For instructions, see the K1000 Administrator Guide, http://kace.com/support/resources/documentation. 2 Go to the appliance Control Panel: • If the Organization component is not enabled on the appliance, click Settings. • If the Organization component is enabled on the appliance: Log in to the K1000 systemui: http://K1000_hostname/system, or select System in the drop-down list in the top-right corner of the page, then click Settings. Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865 Release Notes 3 3 On the left navigation bar, click Appliance Updates to display the Appliance Updates page. 4 Click Check for updates. Results of the check appear in the log. 5 When an update is available, click Update. The hotfix is applied, the progress page appears, and the appliance restarts. When the update is complete, the K1000 login page appears. Upload and apply an update manually If you have an update file from Dell KACE, you can upload that file manually to update the appliance. CAUTION: Never manually reboot the appliance during an update. Procedure 1 Back up your database and files. For instructions, see the K1000 Administrator Guide, http://kace.com/support/resources/documentation. 2 Using your customer login credentials, log in to the Dell KACE website at http://kace.com/support/customer/downloads.php, download the K1000 server .kbin file for the hotfix release, and save the file locally. Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865 Release Notes 4 3 On the left navigation bar, click Appliance Updates to display the Appliance Updates page. 4 In the Manually Update section: a Click Browse or Choose File, and locate the update file. b Click Update, then click Yes to confirm. The hotfix is applied, the progress page appears, and the appliance restarts. When the update is complete, the K1000 login page appears. Post-update tasks After the update, verify that the update was successful and verify settings as needed. Verify successful completion Verify successful completion by reviewing the update log. Procedure 1 Go to the appliance Control Panel: Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865 Release Notes 5 • If the Organization component is not enabled on the appliance, click Settings. • If the Organization component is enabled on the appliance: Log in to the K1000 systemui: http://K1000_hostname/system, or select System in the drop-down list in the top-right corner of the page, then click Settings. 2 Click Logs to display the Logs page. 3 Review the log for error messages and warnings. 4 Click About K1000 in the bottom-left corner of the page to verify the current version. Verify security settings To enhance security, database access over HTTP and FTP is disabled during the update. If you use these methods to access database files, change the security settings after the update as needed. Procedure 1 2 Go to the appliance Control Panel: • If the Organization component is not enabled on the appliance, click Settings. • If the Organization component is enabled on the appliance: Log in to the K1000 systemui: http://K1000_hostname/system, or select System in the drop-down list in the top-right corner of the page, then click Settings. On the left navigation bar, click Security Settings to display the Security Settings page. Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865 Release Notes 6 3 In the top section of the page, change the following settings: • Enable Secure backup files: Clear this check box to enable users to access database backup files using HTTP without authentication. • Enable Database Access: Select this check box to enable users to access the database over port 3306. • Enable Backup via FTP: Select this check box to enable users to access database backup files using FTP. CAUTION: Changing these settings decreases the security of the database and is not recommended. 4 Click Save. Globalization This section contains information about installing and operating this product in non-English configurations, such as those needed by customers outside of North America. This section does not replace the materials about supported platforms and configurations found elsewhere in the product documentation. This release is Unicode-enabled and supports any character set. In this release, all product components should be configured to use the same or compatible character encodings and should be installed to use the same locale and regional options. This release is targeted to support operations in the following regions: North America, Western Europe and Latin America, Central and Eastern Europe. About Dell Dell listens to customers and delivers worldwide innovative technology, business solutions and services they trust and value. For more information, visit software.dell.com. Contacting Dell Product questions and sales: (800) 306-9329 Email: info@software.dell.com Technical support resources Technical support is available to customers who have purchased Dell software with a valid maintenance contract and to customers who have trial versions. To access the Support Portal, go to http://software.dell.com/support/. The Support Portal provides self-help tools you can use to solve problems quickly and independently, 24 hours a day, 365 days a year. In addition, the portal provides direct access to product support engineers through an online Service Request system. The site enables you to: • Create, update, and manage Service Requests (cases) • View Knowledge Base articles • Obtain product notifications • Download software. For trial software, go to Trial Downloads. • View how-to videos • Engage in community discussions Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865 Release Notes 7 © 2014 Dell Inc. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright. The software described in this guide is furnished under a software license or nondisclosure agreement. This software may be used or copied only in accordance with the terms of the applicable agreement. No part of this guide may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying and recording for any purpose other than the purchaser's personal use without the written permission of Dell Inc. The information in this document is provided in connection with Dell products. No license, express or implied, by estoppel or otherwise, to any intellectual property right is granted by this document or in connection with the sale of Dell products. EXCEPT AS SET FORTH IN THE TERMS AND CONDITIONS AS SPECIFIED IN THE LICENSE AGREEMENT FOR THIS PRODUCT, DELL ASSUMES NO LIABILITY WHATSOEVER AND DISCLAIMS ANY EXPRESS, IMPLIED OR STATUTORY WARRANTY RELATING TO ITS PRODUCTS INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT. IN NO EVENT SHALL DELL BE LIABLE FOR ANY DIRECT, INDIRECT, CONSEQUENTIAL, PUNITIVE, SPECIAL OR INCIDENTAL DAMAGES (INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS OF PROFITS, BUSINESS INTERRUPTION OR LOSS OF INFORMATION) ARISING OUT OF THE USE OR INABILITY TO USE THIS DOCUMENT, EVEN IF DELL HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. Dell makes no representations or warranties with respect to the accuracy or completeness of the contents of this document and reserves the right to make changes to specifications and product descriptions at any time without notice. Dell does not make any commitment to update the information contained in this document. If you have any questions regarding your potential use of this material, contact: Dell Inc. Attn: LEGAL Dept. 5 Polaris Way Aliso Viejo, CA 92656 Refer to our website (software.dell.com) for regional and international office information. Patents This product is protected by U.S. Patent Number # 7,814,190; 7,818,427; 7,890,615; 8,103,751; 8,301,737; and 8,381,231. For more information, go to http://software.dell.com/legal/patents.aspx. Trademarks Dell, the Dell logo, KACE, Latitude, OptiPlex, PowerEdge, PowerVault, and Precision are trademarks of Dell Inc. Adobe, Acrobat, and Reader are registered trademarks of Adobe Systems Incorporated in the United States and/or other countries. AMD-V is a trademark of Advanced Micro Devices, Inc. Apache is a trademark of The Apache Software Foundation. Apple, iPad, iPhone, iPod touch, Mac, Macintosh, Mac OS, OS X, and Safari are trademarks of Apple Inc., registered in the U.S. and other countries. App Store is a service mark of Apple Inc. Ubuntu is a registered trademark of Canonical Ltd. Cisco is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries. Facebook is a registered trademark of Facebook Inc. FreeBSD is a registered trademark of The FreeBSD Foundation. Google, Android, Chrome, Chromebook, and Google Play are trademarks of Google Inc. Intel, vPro, and Xeon are trademarks of Intel Corporation in the U.S. and/or other countries. IBM and AIX are registered trademarks of International Business Machines Corporation. Linux is a registered trademark of Linus Torvalds in the United States, other countries, or both. McAfee and VirusScan are registered trademarks of McAfee, Inc. in the United States and other countries. LinkedIn is registered trademark of LinkedIn Corporation. Lumension is a registered trademark of Lumension Security, Inc. Microsoft, Access, ActiveX, Active Directory, Excel, Hyper-V, Internet Explorer, Visual Studio, Windows, Windows Server, and Windows Vista are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. Mozilla and Firefox are registered trademarks of the Mozilla Foundation. NETGEAR is a registered trademark of NETGEAR, Inc. and/or its subsidiaries in the United States and/or other countries. Novell and SUSE are registered trademarks and SLES is a trademark of Novell, Inc. in the United States and other countries. Oracle, Java, MySQL, and Solaris are trademarks or registered trademarks of Oracle and/or its affiliates. CentOS, Fedora, Red Hat, and Red Hat Enterprise Linux are registered trademarks or trademarks of Red Hat, Inc. in the U.S. and other countries. Debian is a registered trademark of Software in the Public Interest, Inc. DameWare is a registered trademark of SolarWinds Worldwide, LLC. Symantec and Ghost are trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Twitter is a registered trademark of Twitter, Inc. UNIX is a registered trademark of The Open Group in the United States and other countries. VeriSign is a registered trademark of VeriSign, Inc. and its subsidiaries in the United States and in foreign countries. VMware, ESX, ESXi, Fusion, Player, vCenter Converter, vCenter Lab Manager, vCloud, vSphere, and Workstation are registered trademarks or trademarks of VMware, Inc. in the United States and/or other jurisdictions. VNC is a registered trademark of RealVNC Ltd. in the U.S. and in other countries. Wi-Fi is a registered trademark of Wireless Ethernet Compatibility Alliance, Inc. WinZip is a registered trademark of Corel Corporation and/or its subsidiaries in Canada, the United States and/or other countries. Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products. Dell disclaims any proprietary interest in the marks and names of others. Legend CAUTION: A CAUTION icon indicates potential damage to hardware or loss of data if instructions are not followed. WARNING: A WARNING icon indicates a potential for property damage, personal injury, or death. IMPORTANT, NOTE, TIP, MOBILE, or VIDEO: An information icon indicates supporting information. Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865 Release Notes 8