3 things that you wish C1 did for your enterprise?

Enterprise Area
1

What are those?

2

@melih

So this is a rather large list, one or two more items than the 3 you asked for.

The list below and the majority of the functionality here can be had for free with 3rd party services/software, where I can ill note the free options that I know of.

The biggest and most important thing that you can do to sell this to the enterprise space is stability. As some background I’ve been using this product for around 6-8months now and the system reliability is poor, its essentially a very early beta release. I understand that you need to build features in but you already have plenty of value in older products. Why not release and hold on to the old RMM module until ITSM is up to speed with patch management. Buggy software is causing myself, and other MSP’s wasted time in trying to fix issues that they shouldn’t have to. I’ve additional comments below hoping to help address some of these issues.

I do appreciate the support and there is plenty of communication on the forums but as it stands I couldn’t recommend this product to anyone.

ITSM

Misc.

  • 2FA across the board, not just on the C1 login panel.
  • 2FA to include SMS support
  • Logging all actions. Management view to show which tech performed what actions against a specific machine.
  • White / Black List. Only allow login to C1 consoles from certain IP ranges or hostnames.
  • Online Storage to push MSI's, perhaps link to Comodo Cloud Storage?
    • We would only need a small amount of storage, perhaps 10Gb per business?
    • From the MSP perspective you could sandbox storage and have shared storage. Ie Business 1 can access Store 1, Business 2 can only access Store 2. Both businesses can access Shared Store 1.
    • All the Cloud Storage to have a client for Admins to upload files directly to the Shared Folders.
    • Automatic link expiry.
  • After an update have a what's new splash page as you login, rather than just pointing you to a link on the forums.
  • Customisation, brand everything. Reports, login pages the works.
  • Auto Removal - Remove machine if not connected in XX days, allow the user to customize this.
  • Search, when you got the Device List, there is a "Search By Group" function, this should search all devices not just groups.
  • Compliance templates, ie PCI-DSS
  • In the device list show the current internal/external IP and site info.
  • Support for OSX 10.10+
  • Monitor other AV or the MS Security Centre
  • Dome proxy agent deployed as an option from ITSM with the bulk deployment option.

Hardware asset manager: (Free Alternative, Spiceworks, LANSweeper, and PDQ Inventory)

  • View all hardware assets and generate reports.
  • Add assets which aren't included in the ITSM, ie Scanners/Printers, ESXi Servers, networking equipment.
  • Ability to save Purchase Order / Asset information against the hardware.
  • Allow Finance delegated 'view only' access to hardware inventory for financial purposes. Current roles only appear to be along the lines of hide or allow management.
  • Warranty Scanning, alerts for warranties which are expiring.

Software inventory: (Free Alternatives, LANSweeper, Spiceworks, and PDQ Inventory)

  • Automatically scan for software and its licenses are saved in a report so that they can all be viewed at once, include filtering to just show XXXX applications or XXXX application on XXXX site /server etc.
  • The ability to mark a license as verified, ie it has been double checked against a known physical license key.
  • Automated reports to show current license count. Include this with widgets for compliance.

Sites:

  • Users and equipment allocated to specific sites. Ie XXXX machine is registered to XXXX site.
  • Roles assigned to sites, ie helpdesk tech can only pickup tickets and manage machines/devices located in XXXX site.

Dynamic Groups based off site/user/machine types.

  • Ie All equipment in Site XXXX
  • Ie All users in Site XXXX
  • Ie All Servers
  • Ie All Clients running OSX 10.10.x

Reports:

  • Automated email reports, with customisable output, PDF/Excel/CSV
  • Custom reports, ie, I want to see all machines which haven't connected in 30+ days which were running Windows 7, attached to Site X.
  • Online interactive report viewer, save having to download and filter stuff in excel.
  • Email report showing the scheduled procedures that have been run, the success/fails. Any fails include a detailed report and the machine is highlighted in the C1 dashboard/ITSM dashboard as having issues. Ticket created.
  • Ideally this single reports pane should be outside of ITSM and should run across ALL of the C1 services, ie I want to show a report for X machine, I want to see what software it has installed, if it has been backed up using Acronis properly, does it have malware which has been blocked using DOME.

3rd Party Integrations

  • Azure AD SSO, better support for Office 365 and email, IMAP etc.
  • Hip Chat
  • Slack
  • Teams

Alerts / Notifications

  • More advance notice of upgrades with what is going to be included.
  • Portal showing outages, advance notice of maintenance.
  • Push Notifications with support for 3rd party services, hipchat, slack, MS Teams.
  • SMS notification for tier outages.

Upgrades:

  • Groups to assign devices to.
    • Fast Ring - Beta for IT staff, testers.
    • Standard Updates - Standard, normal users
    • Slow Ring - Feature Freeze, servers and critical systems.

Remote Control: (Free Alternative VNC)

  • Work in Safe Mode
  • File Transfer, happen in the background. Allow procedures to be created to do this across groups. Ie I want to push an MSI to a machine on day one, once all of those machines have the MSI locally then ill login and do X or run X procedure.
  • 2FA
  • Logging
  • Procedures, drop down to apply whilst connected.
  • Ability to turn off remote control for single machines without the need to create a new policy (see tags below for an example).
  • White / Black list of users / IP Ranges which can initiate remote control.
  • Search by username
  • Search by site
  • OSX / Nix support (both client and remote control).
  • Remote Terminal / Command Line
  • Quick Support Option, send a link which allows remote control. Ensure that the link expires after X amount of time.
  • From Quick Support ability to push the agent install, this should be silent and take options from the Remote Control app, ie I want to enroll this device to X group @ X site and assigned to user X.
  • Branding again, for the quick support download page and for the remote client.
  • Remote screen shot
  • Remote inventory report, show the IP address and all system info on a quick access screen.

Tray Client:

  • Choose what options are available. Ie I don’t want users to be able to submit a ticket this way. Or have it launch the default browser with the online ticket submission page.

MDM: (Free Alternative Miradore / Meraki MDM)

Currently this is far too limited, it should have similar feature set to other major MDM’s. Check out the feature set of Meraki or Mobile Iron for a basic set of features. This is one area where you could have a decent upsell. I found the feature set to limited so haven’t deployed this in my environment.

  • Geo Location with Google Maps integration.
  • Better Policies and restrictions for iOS and Android devices.
  • Work with Android 7+
  • Lost device mode.

Configuration Templates:

  • Tags. Apply policy based on criteria, not only group but apply tags as well. Ie No Remote Access Tag is set against a single machine, this means that it can inherit the same global policy but has a deny on remote access.
  • Highlight new features when you clone a new template.

Support: (Free Alternative Spiceworks)

  • Basic email support in the free tier. Companies like Spiceworks currently do this and is one of the reasons why SMB's use their product over other packages. One of the first things that Enterprises/SMB's look at is if there is support. Good place for an upsell once people get hooked in.

Network Monitoring: (Free Alternative Nagios, Zabbix, Cacti, Spiceworks)

  • A local SNMP collector for devices which cannot have an agent installed. Switches, printers etc. Templates for ESXi / AD and other MS servers. Nice dashboard to show service status.
  • Service monitoring
  • Website Monitoring, both internal and external websites.
  • Site Monitoring - SNMP collector to remote site routers. Ie monitor remote connection to Site 1, Site 2, Site 3. Bandwidth stats etc alerts for offline.
  • Inventory of local devices with alerts.
  • Schedule scans and then upload all data to C1, have a view for local equipment and remove.
  • This section is huge! Sorry.

Patch Management (Free Alternative, PDQ Inventory, PDQ Deploy)

  • Patch by classification You are already classifying products in categories, allowing procedures to patch device (groups). Ie Group A update all Web Browsers
  • Allow exclusions by tags, ie update all application except (Tag for Teamviewer).
  • Logging. I still cannot get my head around how poor the logs are for procedures, you have to dig through all sorts to find it a machine has been patched. It should be clear to understand. You click on the patch logs on the machine it should be included here. A list of what was updated and when. Errors are shown on the dashboards
  • With the software inventory show how many installs there are, and how many updates are required.
  • High light when new 3rd party applications are available for patching and ask if they should be included. Changes should require a review -> apply task.
  • Patching OSX/MacOS, this is a big one for us.
  • Patch Unix Systems, ala Ubuntu Landscape or Spacewalk.
  • WOL, This should work for other bits as well (see network monitoring)

Service Desk (Free Alternative, Spiceworks (local and cloud), Service Desk Plus (local))

Website

  • Further customisation, allow the use of templates for branding.
Email
  • Better integration with Office 365
Technician Side
  • Run Procedures from the ticket
  • Start remote support from ticket
3

Major New Functions

  • Wiki for IT, internal KB outside of the helpdesk for stored documentation. Written as a procedure.
  • Password Manager - Shared for Admins, ala lastpass/keepass
Edit: Chat for Remote Control / Service Desk
4

Thank you Joners! This is a great list.
With every release we are improving both scalability, functionality and efficiency. With this kind of feedback, we will be unstoppable :slight_smile: please keep all the feedback coming…good, bad, ugly…that’s the only way we can improve…thank you!

5

I will second @Joners recommendations and emphasize that stability is VERY important. The platform seems to be maturing but still suffering from issues I wouldn’t expect to see in a market ready service product. I’d been using it on the MSP side for a year or more and now on the Enterprise side. Unexpected system outages due to maintenance or other reasons make C1 take a huge hit. This is one of the reasons companies are wary of cloud services, 0 control over delivery or performance. I understand that previously there was an on-premise solution for Endpoint Security Manager at least. Serving a global user base as you do, I’m not sure how you roll out updates without outages. There is no/never (a) good time for the service to be out and endpoints unreachable. It can’t happen. Yet I did come to work the other week to just this experience. As I am still testing the waters this didn’t cause me much alarm but had C1 been my sole resource for on-premise and remote endpoint monitoring or security it would be a deal breaker. If the solution were on-premise then I could both test updates in my environment and roll them out on our own time, in the middle of the night. An on-premise or at least hybrid solution would be beneficial here.

Security is another key factor. I appreciate the 2 factor authentication for the console. The new remote tool does not implement this however. Additionally, the remote control tool doesn’t recognize newly added endpoints forcing me to log out and back into the tool. Other security issues would be the ability to mandate permission to remote the endpoint be granted by the endpoint user with an admin override for special cases. Logging access to endpoints, actions or procedures etc. Activity should produce an audit trail, login attempts, device location, specs etc.

Better MDM functionality. There are a few functionalities I’d like to see added here. Currently, we are using AirWatch. I was ready to test C1 on my phone only to learn Android 7 isn’t supported. Still waiting on management function from the phone app BTW. One of the issues with MDMs I’ve used to date is that the management is pretty much restricted to policies. Supporting mobile devices in the field takes place how? I can’t see the screen, I can perform only very limited operations. If there is an issue with an app or the phone itself, I don’t have many tools at my disposal to avoid the user bringing the device to me. The field worker/device makes the company money in the field. IT is supposed to be a business enabler. So all design, functionality, and performance improvements that enhance this for direct or indirect customers of the platform are desirable.

6

@Joners list was great! That functions is really needed. :smiley: