Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865

Transcription

Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865
Dell KACE™ K1000 Systems Management
Appliance 6.0 Cumulative Patching and
Security Hotfix 101865
Release Notes
October 2014
These release notes provide information about the Dell KACE™ K1000 Systems Management Appliance version 6.0
Hotfix 101865. This release contains bug fixes and updates to the K1000 appliance (server), and it requires the
appliance to restart after the update is installed.
This is a cumulative release that includes issues resolved in hotfix 6.0.101864, and it should be applied to appliance
version 6.0.101863 or 6.0.101864 only. The K1000 Agent software is not updated in this release.
•
About Dell KACE K1000 Systems Management Appliance on page 1
•
Resolved issues on page 1
•
System requirements on page 2
•
Product licensing on page 2
•
Update the appliance on page 2
•
Post-update tasks on page 5
•
Globalization on page 7
•
About Dell on page 7
About Dell KACE K1000 Systems Management Appliance
Dell KACE K1000 Systems Management Appliance is a physical or virtual appliance designed to automate device
management, application deployment, patching, asset management, reporting, and Service Desk ticket management.
Resolved issues
This release applies updates and resolves several issues.
Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865
Release Notes
1
Table 1. Resolved issues (new in hotfix 6.0.101865)
Resolved issue
Issue ID
When importing patch metadata, the appliance only looks for CAB, EXE, and PLP file extensions,
preventing some third-party patches from being deployed.
K1-16998
Versions of the Bash shell contain vulnerabilities.
K1-16984
Table 2. Resolved issues (from hotfix 6.0.101864)
Resolved issue
Issue ID
Service Desk ticket attachments that contain special characters, such as accent marks, are
handled incorrectly.
K1-16578
During scheduled LDAP group imports, LDAP group names are concatenated instead of being
imported with individual group names.
K1-16548
During scheduled LDAP user imports, existing user accounts are duplicated.
K1-16547
When using Internet Explorer® version 8 to access the Administrator Console, the Assets list is
blank.
K1-16536
During user import and login, LDAP user filters are applied incorrectly.
K1-16530
System requirements
Before installing this hotfix on your K1000 appliance, ensure that your system meets the minimum hardware and
software requirements.
For hardware and software requirements, see http://kace.com/support/resources/documentation.
Upgrade and compatibility
This hotfix should be applied to appliance version 6.0.101863 or 6.0.101864 only. To check the version number of
your appliance, log in to the Administrator Console, then click About K1000 at the bottom left of the window. If
your appliance is running an earlier version, you must update to the listed version before installing the hotfix.
Product licensing
If you currently have a K1000 product license, no additional license is required.
To obtain a license, contact Dell KACE Technical Support at http://kace.com/support/
Update the appliance
You can update the appliance using an advertised update or by manually uploading and applying an update file.
Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865
Release Notes
2
Prepare for the update
Before you begin
Before you update the K1000 appliance, verify that your appliance meets the following requirements:
•
64-bit system: If you have a physical K1000 appliance, it must be a 64-bit system. The hotfix update cannot be
installed on 32-bit appliances.
•
Current version: This hotfix should be applied to appliance version 6.0.101863 or 6.0.101864 only. To check
the version number of your appliance, log in to the Administrator Console, then click About K1000 at the bottom
left of the window. If your appliance is running an earlier version, you must update to the listed version before
installing the hotfix.
•
Disk space: You must have more than 15% free disk space available on the K1000 appliance. On physical appliances,
this disk space must be on the appliance's main drive.
Additional recommendations:
•
Allow plenty of time: If you have a large database, more than 150MB in size, the update process can take several
hours.
•
Back up before you start: Back up your database and files and save your backups to a location outside the K1000
server for future reference. For instructions on backing up your database and files, see the K1000 Administrator
Guide, http://kace.com/support/resources/documentation. If your backup file (kbox_dbdata.gz) is more
than 150MB in size, contact Dell KACE Technical Support for additional recommendations:
http://kace.com/support/contact.
•
Save patch notification messages: If you have disabled patch progress notifications to managed devices, but
you have notification message text that you want to keep, copy that text to a backup location. During the
update, patch progress messages are deleted if patch progress notifications were disabled.
•
Enable SSH: Enable SSH in the Security Settings section of the Administrator Console. This provides an easier
path to recovery if necessary. When the update is successful, you can disable SSH as needed.
Update the appliance using an advertised update
You can update the appliance using an update that is advertised on the appliance Dashboard page or on the Appliance
Updates page of the Administrator Console.
CAUTION: Never manually reboot the appliance during an update.
Procedure
1
Back up your database and files. For instructions, see the K1000 Administrator Guide, http://kace.com/support/resources/documentation.
2
Go to the appliance Control Panel:
•
If the Organization component is not enabled on the appliance, click Settings.
•
If the Organization component is enabled on the appliance: Log in to the K1000 systemui:
http://K1000_hostname/system, or select System in the drop-down list in the top-right corner of the
page, then click Settings.
Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865
Release Notes
3
3
On the left navigation bar, click Appliance Updates to display the Appliance Updates page.
4
Click Check for updates.
Results of the check appear in the log.
5
When an update is available, click Update.
The hotfix is applied, the progress page appears, and the appliance restarts.
When the update is complete, the K1000 login page appears.
Upload and apply an update manually
If you have an update file from Dell KACE, you can upload that file manually to update the appliance.
CAUTION: Never manually reboot the appliance during an update.
Procedure
1
Back up your database and files. For instructions, see the K1000 Administrator Guide, http://kace.com/support/resources/documentation.
2
Using your customer login credentials, log in to the Dell KACE website at http://kace.com/support/customer/downloads.php, download the K1000 server .kbin file for the hotfix release, and save the file locally.
Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865
Release Notes
4
3
On the left navigation bar, click Appliance Updates to display the Appliance Updates page.
4
In the Manually Update section:
a
Click Browse or Choose File, and locate the update file.
b
Click Update, then click Yes to confirm.
The hotfix is applied, the progress page appears, and the appliance restarts.
When the update is complete, the K1000 login page appears.
Post-update tasks
After the update, verify that the update was successful and verify settings as needed.
Verify successful completion
Verify successful completion by reviewing the update log.
Procedure
1
Go to the appliance Control Panel:
Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865
Release Notes
5
•
If the Organization component is not enabled on the appliance, click Settings.
•
If the Organization component is enabled on the appliance: Log in to the K1000 systemui:
http://K1000_hostname/system, or select System in the drop-down list in the top-right corner of the
page, then click Settings.
2
Click Logs to display the Logs page.
3
Review the log for error messages and warnings.
4
Click About K1000 in the bottom-left corner of the page to verify the current version.
Verify security settings
To enhance security, database access over HTTP and FTP is disabled during the update. If you use these methods
to access database files, change the security settings after the update as needed.
Procedure
1
2
Go to the appliance Control Panel:
•
If the Organization component is not enabled on the appliance, click Settings.
•
If the Organization component is enabled on the appliance: Log in to the K1000 systemui:
http://K1000_hostname/system, or select System in the drop-down list in the top-right corner of the
page, then click Settings.
On the left navigation bar, click Security Settings to display the Security Settings page.
Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865
Release Notes
6
3
In the top section of the page, change the following settings:
•
Enable Secure backup files: Clear this check box to enable users to access database backup files using HTTP
without authentication.
•
Enable Database Access: Select this check box to enable users to access the database over port 3306.
•
Enable Backup via FTP: Select this check box to enable users to access database backup files using FTP.
CAUTION: Changing these settings decreases the security of the database and is not recommended.
4
Click Save.
Globalization
This section contains information about installing and operating this product in non-English configurations, such as
those needed by customers outside of North America. This section does not replace the materials about supported
platforms and configurations found elsewhere in the product documentation. This release is Unicode-enabled and
supports any character set. In this release, all product components should be configured to use the same or compatible
character encodings and should be installed to use the same locale and regional options. This release is targeted
to support operations in the following regions: North America, Western Europe and Latin America, Central and
Eastern Europe.
About Dell
Dell listens to customers and delivers worldwide innovative technology, business solutions and services they trust
and value. For more information, visit software.dell.com.
Contacting Dell
Product questions and sales: (800) 306-9329
Email: info@software.dell.com
Technical support resources
Technical support is available to customers who have purchased Dell software with a valid maintenance contract
and to customers who have trial versions. To access the Support Portal, go to http://software.dell.com/support/.
The Support Portal provides self-help tools you can use to solve problems quickly and independently, 24 hours a
day, 365 days a year. In addition, the portal provides direct access to product support engineers through an online
Service Request system.
The site enables you to:
•
Create, update, and manage Service Requests (cases)
•
View Knowledge Base articles
•
Obtain product notifications
•
Download software. For trial software, go to Trial Downloads.
•
View how-to videos
•
Engage in community discussions
Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865
Release Notes
7
©
2014 Dell Inc. ALL RIGHTS RESERVED.
This guide contains proprietary information protected by copyright. The software described in this guide is furnished under a
software license or nondisclosure agreement. This software may be used or copied only in accordance with the terms of the
applicable agreement. No part of this guide may be reproduced or transmitted in any form or by any means, electronic or mechanical,
including photocopying and recording for any purpose other than the purchaser's personal use without the written permission of
Dell Inc.
The information in this document is provided in connection with Dell products. No license, express or implied, by estoppel or
otherwise, to any intellectual property right is granted by this document or in connection with the sale of Dell products. EXCEPT
AS SET FORTH IN THE TERMS AND CONDITIONS AS SPECIFIED IN THE LICENSE AGREEMENT FOR THIS PRODUCT, DELL ASSUMES NO
LIABILITY WHATSOEVER AND DISCLAIMS ANY EXPRESS, IMPLIED OR STATUTORY WARRANTY RELATING TO ITS PRODUCTS INCLUDING,
BUT NOT LIMITED TO, THE IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT.
IN NO EVENT SHALL DELL BE LIABLE FOR ANY DIRECT, INDIRECT, CONSEQUENTIAL, PUNITIVE, SPECIAL OR INCIDENTAL DAMAGES
(INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS OF PROFITS, BUSINESS INTERRUPTION OR LOSS OF INFORMATION) ARISING
OUT OF THE USE OR INABILITY TO USE THIS DOCUMENT, EVEN IF DELL HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
Dell makes no representations or warranties with respect to the accuracy or completeness of the contents of this document and
reserves the right to make changes to specifications and product descriptions at any time without notice. Dell does not make any
commitment to update the information contained in this document.
If you have any questions regarding your potential use of this material, contact:
Dell Inc.
Attn: LEGAL Dept.
5 Polaris Way
Aliso Viejo, CA 92656
Refer to our website (software.dell.com) for regional and international office information.
Patents
This product is protected by U.S. Patent Number # 7,814,190; 7,818,427; 7,890,615; 8,103,751; 8,301,737; and 8,381,231. For
more information, go to http://software.dell.com/legal/patents.aspx.
Trademarks
Dell, the Dell logo, KACE, Latitude, OptiPlex, PowerEdge, PowerVault, and Precision are trademarks of Dell Inc. Adobe, Acrobat,
and Reader are registered trademarks of Adobe Systems Incorporated in the United States and/or other countries. AMD-V is a
trademark of Advanced Micro Devices, Inc. Apache is a trademark of The Apache Software Foundation. Apple, iPad, iPhone, iPod
touch, Mac, Macintosh, Mac OS, OS X, and Safari are trademarks of Apple Inc., registered in the U.S. and other countries. App
Store is a service mark of Apple Inc. Ubuntu is a registered trademark of Canonical Ltd. Cisco is a registered trademark of Cisco
Systems, Inc. and/or its affiliates in the United States and certain other countries. Facebook is a registered trademark of Facebook
Inc. FreeBSD is a registered trademark of The FreeBSD Foundation. Google, Android, Chrome, Chromebook, and Google Play are
trademarks of Google Inc. Intel, vPro, and Xeon are trademarks of Intel Corporation in the U.S. and/or other countries. IBM and
AIX are registered trademarks of International Business Machines Corporation. Linux is a registered trademark of Linus Torvalds
in the United States, other countries, or both. McAfee and VirusScan are registered trademarks of McAfee, Inc. in the United States
and other countries. LinkedIn is registered trademark of LinkedIn Corporation. Lumension is a registered trademark of Lumension
Security, Inc. Microsoft, Access, ActiveX, Active Directory, Excel, Hyper-V, Internet Explorer, Visual Studio, Windows, Windows
Server, and Windows Vista are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or
other countries. Mozilla and Firefox are registered trademarks of the Mozilla Foundation. NETGEAR is a registered trademark of
NETGEAR, Inc. and/or its subsidiaries in the United States and/or other countries. Novell and SUSE are registered trademarks and
SLES is a trademark of Novell, Inc. in the United States and other countries. Oracle, Java, MySQL, and Solaris are trademarks or
registered trademarks of Oracle and/or its affiliates. CentOS, Fedora, Red Hat, and Red Hat Enterprise Linux are registered
trademarks or trademarks of Red Hat, Inc. in the U.S. and other countries. Debian is a registered trademark of Software in the
Public Interest, Inc. DameWare is a registered trademark of SolarWinds Worldwide, LLC. Symantec and Ghost are trademarks of
Symantec Corporation or its affiliates in the U.S. and other countries. Twitter is a registered trademark of Twitter, Inc. UNIX is a
registered trademark of The Open Group in the United States and other countries. VeriSign is a registered trademark of VeriSign,
Inc. and its subsidiaries in the United States and in foreign countries. VMware, ESX, ESXi, Fusion, Player, vCenter Converter,
vCenter Lab Manager, vCloud, vSphere, and Workstation are registered trademarks or trademarks of VMware, Inc. in the United
States and/or other jurisdictions. VNC is a registered trademark of RealVNC Ltd. in the U.S. and in other countries. Wi-Fi is a
registered trademark of Wireless Ethernet Compatibility Alliance, Inc. WinZip is a registered trademark of Corel Corporation and/or
its subsidiaries in Canada, the United States and/or other countries. Other trademarks and trade names may be used in this
document to refer to either the entities claiming the marks and names or their products. Dell disclaims any proprietary interest
in the marks and names of others.
Legend
CAUTION: A CAUTION icon indicates potential damage to hardware or loss of data if instructions are not followed.
WARNING: A WARNING icon indicates a potential for property damage, personal injury, or death.
IMPORTANT, NOTE, TIP, MOBILE, or VIDEO: An information icon indicates supporting information.
Dell KACE K1000 Systems Management Appliance 6.0 Cumulative Patching and Security Hotfix 101865
Release Notes
8