SolarWinds RMM: Community Sharing of Custom SNMP Checks, Patch Management and Managed Antivirus Updates, Windows Agent FIPS 140-2 Compliant

Posted on November 8, 2019 by brianmackie

We’re pleased to let you know that this week’s RMM release contains several exciting updates, and is now available to customers in all territories. Here are all the enhancements that have been released this week:

The Windows Agent is now FIPS 140-2 Compliant

The RMM agent for Windows is FIPS 140-2 compliant as of Agent version 10.9.5.
SolarWinds utilizes the FIPS certified libraries provided by Microsoft. The details of
Microsoft’s FIPS certification can be found on the NIST website.

Community Sharing of Custom SNMP Checks for Network Devices

It’s not every day that we can say “for the first time ever….”, but this is one of those times!

For the first time ever, we’ve added in the ability for you to share custom SNMP
checks with other MSPs. This exciting new feature works in two ways:

  1. If you have a custom check that you want to share with the community, simply choose to “Share” it from the Settings -> SNMP Checks -> Network Devices menu:Share
  2. If you want to start using a check that has been shared with the community, click the Import from Community button from the Settings -> SNMP Checks -> Network Devices menu:

Import from Community

We know that SNMP can be a confusing and technical protocol – we think that this new sharing capability is going to allow those with SNMP expertise to be able to share their great work, helping those that aren’t as familiar to see how the pros do it!

Patch Management Engine Updates

We have released a Patch Management engine update to all territories, PME v1.1.5, with several performance updates and bug fixes – here are the details:

  • Monitoring WSUS registry key that could block PME patch scan
  • Hardened the cache service to handle corrupted files
  • Fixed typo in “PME cleanup” task
  • Updated cleanup process as some installers were not deleted from the Archive folder

Many will also be pleased to know that we have just added KeePass to our list of supported Third Party Patch products.

Managed Antivirus Bitdefender engine update v6.6.13.184

As highlighted last week, Managed Antivirus for all Modern Windows Operating Systems (Windows 7+/Windows Server 2008 R2+) has been updated to MAV-BD v6.6.13.184. The new Bitdefender engine version should not require any reboot. If a reboot should be needed, it will be displayed with the RMM dashboard. Ensure the delay and reboot settings in your policies are set accordingly for your customers

Enhancements:

  • The number of concurrent on-demand scans on the endpoint is now limited for enhanced responsiveness.
  • The endpoint users are no longer distracted by status alerts when the Advanced Anti-Exploit module is disabled

The following issues were fixed in this build:

  • In some situations, the Bitdefender Endpoint Agent service caused high CPU Usage on Windows 10On Windows 2008 R2 Standard, BEST generated large amounts of log files.
  • Fixed a memory leak issue affecting endpoints with no Internet connection.
  • In some cases, Bitdefender Endpoint Security Service crashed on Windows 10.
  • Antimalware On-access scanning caused a slowdown on Citrix login.
  • Antimalware On-access scanning caused a slowdown on Remote Desktop 2016 login
  • In some cases, the Advanced Anti-Exploit module caused Microsoft Outlook to crash due to products incompatibility

Delaying Engine Upgrades

MAV-BD Engine upgrades can be delayed by up to 10 days in the Managed Antivirus protection policy. Upgrades can also be delayed for weekends and evening hours.  Please refer to RMM’s help file for more detail on this feature.

mav engine 1

Handling MAV-BD Reboots

Reboots can be automatically enabled for the upgrade process by selecting an option in the MAV policy under the “Installation Settings” tab. Automatic reboots occur within 5 minutes of taking the update. Please ensure this option is disabled if you do not want your end user machine to automatically reboot. If the automatic reboot option is not enabled, the reboot will be displayed as a blue dot within the North Pane of the RMM Dashboard, indicating that the machine needs a reboot to complete the installation.  Reboot the machine at your earliest convenience.

mav engine 2

Determining the version on a device:

The version of the MAV agent, as well as the MAV engine version, can be seen in 2 places – by looking at the Managed Antivirus Check (Bitdefender), or by running the Managed Antivirus Protection Report.

To see the version of the agent within the MAV check, navigate to the South Pane of the device and find the Managed Antivirus Check – Bitdefender and select the “More Information” link.  To see across devices, run the Managed Antivirus Protection Report under Reports > Managed Antivirus > Antivirus Protection Report. Ensure that the Agent Version and Engine Version columns are selected from the Column drop down.

 

 

Here are the release notes for this week’s RMM update:

Summary for Service Release
– Community sharing of custom SNMP checks, Patch, Managed Antivirus engine updates
– RMM Console v2019.11.06
– No agent update

RMM Console v2019.11.06
FEATURE: Community sharing of custom SNMP checks for network devices
FEATURE: Windows Agent 10.9.5 and up now FIPS 140-2 compliant
BUGFIX: Update to Client Server Monthly Report uptime section
BUGFIX: Ensure Dell Processor/Motherboard SNMP Temperature checks are the correct way round

Patch Management Engine 1.1.5
UPDATE: Support for KeePass in Third Party Patch products
UPDATE: Monitoring WSUS registry key that could block PME patch scan
UPDATE: Hardened the cache service to handle corrupted files
BUGFIX: Fixed typo in “PME cleanup” task
BUGFIX: Updated our cleanup process as some installers were not deleted from the Archive folder

Managed Antivirus Bitdefender v6.6.13.184
UPDATE: The number of concurrent on-demand scans on the endpoint is now limited for enhanced responsiveness
UPDATE: The endpoint users are no longer distracted by status alerts when the Advanced Anti-Exploit module is disabled
BUGFIX: In some situations, the Bitdefender Endpoint Agent service caused high CPU Usage on Windows 10On Windows 2008 R2 Standard, BEST generated large amounts of log files
BUGFIX: Fixed a memory leak issue affecting endpoints with no Internet connection.
BUGFIX: In some cases, Bitdefender Endpoint Security Service crashed on Windows 10
BUGFIX: Antimalware On-access scanning caused a slowdown on Citrix login
BUGFIX: Antimalware On-access scanning caused a slowdown on Remote Desktop 2016 login
BUGFIX: In some cases, the Advanced Anti-Exploit module caused Microsoft Outlook to crash due to products incompatibility

This entry was posted in N-sight. Bookmark the permalink.