Comodo ITSM AV.
Add a feature to avoid the disabling of the AV client and the rest of modules from user that has not the correct rights.
For example add a password to the AV UI so normal user cannot change settings, uninstall the AV or the Agents and so on.
Hi @ece.isel
Thanks for pointing out. I have evaluated the procedures sent on a Win7x64 Virtual PC and these are my finds:
1- Having the PC running normal, the user (User without privs or admin) cannot delete the Comodo folder and cannot uninstall the CCS and CCC if he/she does not provide correct password.
2- Having the PC running normal, the user (User without privs or admin) cannot access/change settings on the CCS and CCC if he/she does not provide correct password.
now…
3- Having the PC running on Safe Mode, the Admin user can delete all Comodo folders and uninstall it by just enabling the Windows Installer Service.
There are some users that normally use their computers as an Admin by default and if for some reason another person or the user itself access to the Safe Mode will be able to dissapear the Comodo software at once by just deleting the folder.
- the local customer would benefit since they are often billed for the local IT support we deploy, so if the technicians can gain insight on the systems that are being managed, they can perform some work ahead of time prior to arriving on site.Awesome! Thanks for your response. As an MSP, we find that we have to subcontract out some physical duties to on-site technicians. This type of security would be fantastic!
I have looked and not found anything ( forgive me if is in place or has been asked before ) but with mobile devices, when adding an app from the store this can then get pushed out to devices and automatically installed or added to the library for all devices.
I would like to be able to set up a way, so that I can set libraries for specific devices or auto install ( managed apps ) are deployed to specific devices ?
i.e :-
Device 1 will have available / installed app 1, app 2, app 3 and app 4
Device 2 will have available / installed app 1, app 3 only
Device 3 will have available / installed app 1, app 2 and app 4 only
etc, etc, etc
Hi @bob-sawyer
Thank you, good feedback. Ability to state application requirements per profile is already on the roadmap with intended delivery of Q2/Q3.
Ilker
Another request for Mobile devices is can a notification be sent if a device has had too many password attempts and then been wiped due to this ?
Also could it be set that if there are too many password attempts the device becomes locked and needs to be unlocked from the Portal instead of being wiped ?
Hi @bob-sawyer
You can set the auto-wipe from pass-code restrictions and set a number for “Maximum Failed Attempts for Wipe”.
https://help.comodo.com/topic-399-1-…html#passcode
For the second request, you can change the passcode on device by using “set screen passcode” action,
https://help.comodo.com/topic-399-1-…d-Devices.html
Ilker
I’d like to see enhanced disk monitoring capabilities to enable alerting for each physical disk on a system. The current monitor capabilities are focused primarily at the system drive, with another all drives parameter that doesn’t seem to have any real practical use. I’d suggest a new parameter be added for “each local fixed disk” that would monitor every disk on a system individually and report as to whether or not each individual disk was filling up. I’d think this would be achievable using the properties available in wmic logicaldisk get “Description”,“DeviceID”,“FreeSpace”,“Size” and report on any device that has a “Local Fixed Disk” description, or possibly use the DriveType or MediaType in the same namespace.
What is the roadmap for expanding mobile use of C1? Currently, unless you’re at a Windows workstation, from a remote support perspective, C1 provides little value. Being able to perform critical tasks when they need to be performed via mobile device would be a huge improvement. Moving as much of the functionality that’s currently in the RMM Administration Console to be web based or manageable within the mobile app would be a huge improvement. The critical ability would be remote desktop access (something similar to ScreenConnect would be ideal).
We released a remote access framework today. This brand new infrastructure and framework will now enable us to build technologies that will give you remote access from your mobile phone. Its in the roadmap and we are making good progress.
Having PowerShell support instead of Python or Ruby would be great. This would simplify things greatly.
So you want to be able to write scripts with PowerShell rather than Python?
Also, do you know we have a team of people who can write anything you want for free?
Hello @Scott75
We have contacted you via email regarding your request.
In ITSM - Device List - Summary (or some other tab) would be great to have graphs for CPU, MEM, DISK, Network usage over time, maybe a week or a day (or custom), so we can se if something unusual is happening at a glance
Also need a better monitoring overview
Some dedicated pages with red, yellow green, like Check_mk or others
Ability to customize which systems/services that we think are important to have on a quick glance monitor/screen
also ability to have monitoring alerts on the dashboard, like “Status pr. Company” og “Security Status” look like.
Have been testing the patch management feature and and have some suggestions:
/Frederik
Hello @frederikbay
Thank you very much for those bright suggestions, I will just add them to your ticket and will contact you via email.
Cheers!
Hi All
Follow-on post to my adventure in patch management, have another observation.
Have experienced that, patch management, report a server as patched (Green Icon and all), but the machine is not patched - the reason is that the “Windows Update” service has been disabled or not running.
So we should resolve that somehow.
The check for patches is incomplete or at least there should be a check whether the “Windows Update” service is running.
Have a great weekend
All the best
Frederik