Jump to content

KyleChx

Members
  • Content Count

    9
  • Joined

  • Last visited

Community Reputation

0 Neutral

My Information

  • Location
    California
  • Agent Count
    3000 - 4000 Agents

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. @michaelcluney and @DarrenWhite99 did you guys ever get this working?
  2. SELECT TIMESTAMPDIFF(MINUTE,c.LastContact, IFNULL(LastHeartbeatTime, "0000-00-00 00:00:00")) AS TestValue, c.name AS IdentityField, c.ComputerID AS ComputerID, c.LastContact, c.OS, h.LastHeartbeatTime, acd.NoAlerts, acd.UpTimeStart, acd.UpTimeEnd FROM Computers AS c LEFT JOIN HeartBeatComputers AS h ON h.ComputerID = c.ComputerID LEFT JOIN AgentComputerData AS acd ON h.ComputerID = acd.ComputerID LEFT JOIN Clients ON Clients.ClientID = c.clientid WHERE (c.LastContact > NOW() - INTERVAL 30 MINUTE OR h.LastHeartbeatTime > NOW() - INTERVAL 30 MINUTE) AND (TIMESTAMPDIFF(MINUTE,c.LastContact, IFNULL(LastHeartbeatTime, "0000-00-00 00:00:00")) < -6 OR TIMESTAMPDIFF(MINUTE,c.LastContact, IFNULL(LastHeartbeatTime, "0000-00-00 00:00:00")) > 6) AND c.OS like '%windows%' If anyone is interested, poked around this weekend and rewrote the monitor to exclude anything with an OS not like %windows%. Too many Macs in my environment and the ticket's were blowing up our boards.
  3. @Duong First, this is damn awesome. Thank you very much. Your script in the 'if' section is looking for an @status@ variable. I was having some issues because nothing was setting that variable to true or false. Once I set it back to IF True, it ran fine. Did you have something in the alert or monitor setting this variable by chance? debugging it looks like that is where it was failing for me (always going to else section). Also, I think a SQL guru should take a wack at eliminating Mac's from the Monitor
  4. @DarrenWhite99 @captainu99 @MGreen Hey Guys, thanks for all the work above! I don't know if this is not deprecated, but I am getting an error on anything no matter how I run the script. Any thoughts? Has something changed since this was last worked on in 2018? I've tried both variants above and get the same error. Any thoughts as I need to do it through powershell and not WMIC Rename-Computer : Object reference not set to an instance of an object. At line:1 char:1 + Rename-Computer -newname 'Test-Name' -DomainCredential (New-Ob ... + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (:) [Rename-Computer], NullReferenceException + FullyQualifiedErrorId : System.NullReferenceException,Microsoft.PowerShell.Commands.RenameComputerCommand
  5. Welp, mine came back with an excuse about these being SCSI devices and I just gotta live with it or exempt them all...
  6. I noticed the same thing recently. Opened a ticket as well and other than tier 1 sending me the KB on how to create monitors (ugh....) they escalated. here's to seeing what they say.
  7. While I really appreciate the security concerns voiced above, I don't want the objective to get lost of what I really had in my head which we could call more of a 'managed automate' service where, the MSP, would manage and build automate and the internal IT could be users and not have to staff or train-up to learn this never ending platform. We would ultimately charge 'more' for this service and the reason for me to ask in the first place, is to see if it could be designed in a way where the concerns in my post and what @BlueToast and @bigdog09 stated, but also if there was a way to protect from these vulnerabilities. I was also hoping to find any vulnerabilities that I may not of thought of. I'd rather stay away from 'resell' and having to build scripts to deploy from my server to their's (and maybe sync scripts/ monitors etc) but if that is the end of the line, than maybe I need to rethink the offering.
  8. Hey Team! So we had a request that I've had a few times before and failed a few times before and never thought to really make it a discussion topic. Basically we get opportunities where a very large account (10-15 internal IT staff) will really like everything we do in Automate and want to use our instance due to the time we've put in it, but ultimately want full access to all aspects of what automate is doing in their environment (global monitors, script building, build custom patch groups, etc). Now being they are larger, I can't use the typical MSP answer of 'well that's what you have an MSP for' because it just doesn't work at a business to that degree (hell, if I was an internal IT staff at that firm, I'd want access too!!). So I have to be able to find a way to either let them into some back end items if we are to win the account or keep the account (in the even they have rapid growth while they're under our management). The only more 'advanced' option I have thought of was to resell them each their own Automate server and create some 'bridge' to copy some of our scripts/ monitors/ etc to their db (sql to sql OR automate agent script to compare and inject). Only thing that would potentially suck with this, is I'd have to always 'sign out' and back in if I needed to get into their environment. May be less 'risky' though but def. a huge uptick in cost to provide this to the client (and maybe now not competitive) and I may have issues hooking to Automate server's into our CW (as we'd want the client to use streamline IT). All up for discussion, maybe I am over thinking this, but I know the most 'for certain' thing I've gotten is there is no clear-cut way to have a mutli-tennant 'feel' for single client users. Here are the hurdles I've faced in the past and am curious to how some of you would approach it: Prevent or have safeguards to if they change a global monitor that is used, well, globally across more than their environment. Monitor their activity in the scripting engine Including when they try to do things to the db with a script Small fear to SQL injection to run queries against other client environments we do have some Client's that are direct competitors Patch Manager be able to create Approval, Reboot, and Schedule policies but only have the ability to change items for their machines Alert Templates idk if this is a concern but I'll throw it out there
  9. Hey Team! So we had a request that I've had a few times before and failed a few times before and never thought to really make it a discussion topic. Basically we get opportunities where a very large account (10-15 internal IT staff) will really like everything we do in Automate and want to use our instance due to the time we've put in it, but ultimately want full access to all aspects of what automate is doing in their environment (global monitors, script building, build custom patch groups, etc). Now being they are larger, I can't use the typical MSP answer of 'well that's what you have an MSP for' because it just doesn't work at a business to that degree (hell, if I was an internal IT staff at that firm, I'd want access too!!). So I have to be able to find a way to either let them into some back end items if we are to win the account or keep the account (in the even they have rapid growth while they're under our management). The only more 'advanced' option I have thought of was to resell them each their own Automate server and create some 'bridge' to copy some of our scripts/ monitors/ etc to their db (sql to sql OR automate agent script to compare and inject). Only thing that would potentially suck with this, is I'd have to always 'sign out' and back in if I needed to get into their environment. May be less 'risky' though but def. a huge uptick in cost to provide this to the client (and maybe now not competitive) and I may have issues hooking to Automate server's into our CW (as we'd want the client to use streamline IT). All up for discussion, maybe I am over thinking this, but I know the most 'for certain' thing I've gotten is there is no clear-cut way to have a mutli-tennant 'feel' for single client users. Here are the hurdles I've faced in the past and am curious to how some of you would approach it: Prevent or have safeguards to if they change a global monitor that is used, well, globally across more than their environment. Monitor their activity in the scripting engine Including when they try to do things to the db with a script Small fear to SQL injection to run queries against other client environments we do have some Client's that are direct competitors Patch Manager be able to create Approval, Reboot, and Schedule policies but only have the ability to change items for their machines Alert Templates idk if this is a concern but I'll throw it out there
×
×
  • Create New...