Recently active topics

I want to deploy the Windows App.  I have downloaded the .msix https://apps.microsoft.com/detail/9N1F85V9T8BN?hl=en-us&gl=US&ocid=pdpshare I am copying it to C:\Installs using this command - Copy-Item "Windows_App_2.0.704.0_X64_msix_en-US.msix" "C:\Installs\Windows_App_2.0.704.0_X64_msix_en-US.msix" -ForceThat works fine but I can’t get it to install using Add-AppPackage with this command - Add-AppPackage -Path "C:\Installs\Windows_App_2.0.704.0_X64_msix_en-US.msix"Does anyone have any idea how I can have Automox install this .msix? Thanks!

HiyaI am having no luck uninstalling Copilot via Worklets. Neither the Office365 or Windows app. Has anyone been able to, and if so, what Worklet did you use? What is the secret?!Thanks [removed by moderator]

Hi Community,Have you explored the new Vulnerability Remediation course in Automox University yet? Let’s put your skills to the test with a quick challenge! ⚡️ Scenario:Your latest vulnerability scan identifies several devices impacted by the configuration-based vulnerability Sweet32. What’s next? How would you identify, remediate, and verify remediation for that vulnerability using Automox? 💡 Want a step-by-step walkthrough that will help you remediate vulnerabilities?AXU’s newest course covers the full workflow — from importing scan data to executing remediation strategies.🎓 Enroll now in Remediating Vulnerabilities with Automox and let us know your thoughts!

Morning, events have transpired that we need to move half of our devices in one Automox account to a new one.Is there an easy way to do this? I’d rather not have to go round and uninstall and reinstall Automox with the new key. I saw a similar ticket that had a script but it doesn’t seem to be accessible now.Thanks,F_IT

Hi Automox Community,We’ve recently started integrating edge computing environments into our infrastructure primarily for retail locations and remote branches. Automox has been performing well in our core setup, and now we’re excited to extend its automation and security advantages to our decentralized edge computing environments.I’d love to hear from anyone who has experience managing patching and policy automation for edge devices using Automox. Are there specific best practices you follow for scheduling, bandwidth usage, or handling limited connectivity?So far, the flexibility of Automox policies has made initial deployments smooth, and I’m optimistic about scaling further. Any tips or lessons from real-world edge use cases would be much appreciated especially around performance, security hardening, and group structuring.Thanks in advance and looking forward to contributing more as we go deeper with this!

Upcoming Live Learning EventsDon’t miss these live opportunities to connect with our team and get valuable insights:October 7th @ 10 AM CST - Automox Office Hours October 8th @ 11 AM CST - Workshop: Patch Smarter, Not Harder October 14th @ 10 AM CST - Automox Office Hours October 15th @ 11 AM CST - Workshop: Worklet Automation Execution Lab October 21st @ 10 AM CST - Automox Office Hours October 22nd @ 11 AM CST - Workshop: Simple Software Deployment (Required Software) October 23rd @ 10 AM CST - Expert Insights October 28th @ 10 AM CST - Automox Office HoursStay tuned for more updates next month!

Hi everyone,Trying to create a simple worklet to uninstall the Microsoft Copilot app, but not the Microsoft365 Copilot app (2 different apps).   This one line scripts locally, but doesn’t work on Automox.  When running it, I simply get this message: {"args":"","response":"[\"0\",null,null]"} Any thoughts? From my testing, the Gep-AppxPackage is the only command that works for the Microsoft Copilot app.

I would like to suggest adding when the software was installed under Software. 

I have installed all available patches in Automox, but the vulnerabilities I scanned on Lansweeper have not decreased. Why is this? 

Anyone using the beta agent and running into issues? I am seeing a number of failures and the log shows they failed due to execution policy issues. Unable to run the script because running scripts is disabled. This is new.

Checks to see if Zabbix is installed and if not, installs it. Covers Centos and Ubuntu, but can be extended for other Linux flavors fairly easily. Evaluation code: #!/bin/bash service=zabbix_agent if (( $(ps -ef | grep -v grep | grep $service | wc -l) > 0 )) then exit 0 else exit 1 fi Remediation code: #!/bin/bash #Get OS os_id="$(grep -w ID /etc/os-release | cut -d'=' -f2)" #Functions centos () { if [ $os_ver == '8.0' ]; then #Remove all dirty packages rpm -e zabbix-release-* #Get the Package rpm -Uvh http://repo.zabbix.com/zabbix/4.0/rhel/8/x86_64/zabbix-release-4.0-2.el8.noarch.rpm #Clean and Install with Yum yum clean all yum -y install zabbix-agent #Overwrite the conf file with attached cp zabbix_agentd.conf /etc/zabbix/zabbix_agentd.conf #Edit config to personalize for new system CONFIGPATH="/etc/zabbix/zabbix_agentd.conf" TARGET_KEY="Hostname" REPLACEMENT_VALUE="$(hostname)" sed -c -i "s/\($TARGET_KEY *= *\).*/\1$R

Is ARM64/Snapdragon supported by Automox on Windows 11 yet? For both install and for updating other ARM applications?

Hello!I’m trying to make it so that a user in a single Organization can use a Custom Role I have created.  So far this is proving difficult, as the distinction between whatever “Account” level and “Global” level is is about as clear as mud.  The descriptions of them are the same.  The best I could muster was a user who had the role assigned shown via Organizations, but if you looked under Roles & Permissions the role had 0 users assigned.I had a conversation with someone who used 3 terms (Account/Zone/Organization) to refer to Organization.  And also “Account” referring to… something else.I guess my 2nd question is… what is an Account in terms of Roles & Permissions Account/Global?3rd… what else is “Account?”More confusing is, as a Global Administrator, I can see users defined in 2 places.  With my custom role assigned to nothing, I can see the user in question at a Global level “unassigned” but not present within the Organization I want them to be in with the custom role.This

Apple released macOS Tahoe 26 with a redesigned interface, Apple Intelligence integration, and dozens of security fixes.Automox now provides same-day patching and full support so you can:• Deploy updates across Macs immediately — in office or remote• Close vulnerabilities in core subsystems, drivers, and frameworks• Maintain compatibility with Apple’s versioning shift (v26)Automox zero-day support keeps your fleet protected from day one while enabling fast, automated deployment.✅ Day-one security for macOS Tahoe 26 starts here!

I had a need to remove the pre-installed Office 365 components. Thought I would share. Its a little messy and unrefined, but I tested it and its working. I’ll post update after I clean it up a little. Evaluation<#.SYNOPSIS Uninstall Application by Name - Evaluation Script OS Support: Windows 7 and above Required modules: NONE.DESCRIPTION This worklet is designed to grant an Admin the ability to uninstall an application with minimal knowledge of the bitness, installer type, or uninstall command line. By placing an application name between the single quotes, the worklet will scan the registry for the matching application. If the application is found, it will exit with an Exit code of '1' and flag the device for remediation. Usage: $appName: The application name provided must match exactly as it is displayed in "Programs and Features" (Add or Remove Programs) for Win7/8.1, and "Apps and Features" for Win10. Universal Windows Platform (UWP) applications are

Hello,For some reason our Axonius integration with Automox (via API) has stopped working and I can’t seem to find the API key for it anywhere (but have noticed a Global level “New” Keys section just appeared).  How can I create an API key specific to a read only user that we have?Thanks,Mark

The overall structure of zones vs. groups is creating a lot of redundant issues. As a service provider, we have many clients, which means a lot of consistent policies and users being made. Having clients in zones, we can assign their users the ability to view their console. But then we have to duplicate the same policies, worklets, and users from one zone to another. This is really redundant and the overall structure of zones vs. groups just makes API calls for all clients a nightmare. I see that you can customize the Automox agent installer to specify a group. Managing by the zone (top-level) and groups (clients) makes everything easier to manage. Only thing missing is limiting a user to view only specified group(s). Is there a possibility of this being added in the future? It is just very odd that there is limited to no features when administrating on a global level.

We are trying to deploy several dmg packages to a Mac via Automox.  I am setting them as required software.  Here is the script: #!/bin/bashDMG_PATH="/path/to/Avid_Link_25.5.1_Mac.dmg"MOUNT_POINT=$(mktemp -d /tmp/avidlink.XXXXXX)echo "🔧 Mounting DMG to $MOUNT_POINT..."hdiutil attach "$DMG_PATH" -mountpoint "$MOUNT_POINT" -nobrowse -quiet# Confirm mount succeededif [ ! -d "$MOUNT_POINT" ] || [ -z "$(ls -A "$MOUNT_POINT")" ]; then echo "❌ Mount failed or mount point is empty. Exiting." rmdir "$MOUNT_POINT" exit 1fi# Locate the .pkg filePKG_PATH=$(find "$MOUNT_POINT" -name "*.pkg" | head -n 1)if [ -z "$PKG_PATH" ]; then echo "❌ No .pkg found. Unmounting and exiting." hdiutil detach "$MOUNT_POINT" -quiet rmdir "$MOUNT_POINT" exit 1fiecho "📦 Installing package: $PKG_PATH"sudo installer -pkg "$PKG_PATH" -target /echo "🧹 Unmounting DMG..."hdiutil detach "$MOUNT_POINT" -quietrmdir "$MOUNT_POINT"echo "✅ Avid Link installed successfully."The script gives this output.  Any ideas on why

We are getting ready to deploy Bambu Studio to some of our computers. I am testing the deployment on 2 machines. The software installed on one machine but the other just report Failed to install software. Is there a log file on the machine I can look at to find out what the issue is? # Define variables$InstallerName = "Bambu_Studio_win_public-v02.02.02. [removed by moderator] .exe"$ExpectedAppPath = "C:\Program Files\Bambu Studio\bambu-studio.exe"# Execute installer silentlytry { Start-Process -FilePath $InstallerName -ArgumentList "/S" -Wait -NoNewWindow}catch { Write-Error "Installation failed: $_" exit 1}# Validate installationStart-Sleep -Seconds 5if (Test-Path -Path $ExpectedAppPath) { Write-Output "Installation completed successfully."} else { Write-Error "Installation verification failed. Bambu Studio not found at expected location." exit 1}

 Attention IT pros: Office 2016 and Office 2019 are officially reaching end-of-support on October 14th.That means no more updates, no more security patches, and definitely no more excuses. 😬Join us next Wednesday, September 24th at 10:00 AM CST for our Automox Expert Insights Webinar: Migrating from Office 2016 and 2019 to Microsoft 365.We’ll cover: Why upgrading matters (hint: it’s not just about shiny new features) How to migrate smoothly without disrupting your users—or your sanity Key security risks to avoid when moving off legacy Office versions How to remediate at scale with Automox Worklets, so you can automate the heavy lifting and spend less time babysitting updates Think of this as a friendly intervention for your older Office installs. 💼➡️☁️Let’s make this transition painless and keep your org secure.🗓️ Date: Wednesday, September 24th⏰ Time: 10:00 AM Central🔗 Register now: https://university.automox.com/best-practices-webinar-registration

Shout out to the 2 authors of this worklet:  John Guarracino and Eric Liles. We’re a little late in updating all of our laptops to Windows 11 but this past month we successfully updated all of our 200 laptops using the Windows 11 Feature Update worklet. The worklet was easy to setup and the downtime for the users was minimal. Thanks!

Hi all,  We are currently making use of the Windows 11 Feature Upgrade worklet (Windows - Configuration - Windows 11 Feature Upgrade) and this had been working quite nicely for us, however we are recently experiencing and issue whereby this does not seem to be working. Upon checking the logs of devices, we are seeing that they have:  {"args":"","response":"[\"124\",\"Device is on a Windows 10 build. Running the Windows 11 Readiness Check to determine eligibility for the Feature Upgrade.\\r\\nEligibility check passed.\\r\\nDevice is Windows 11 Ready.\\r\\nFlagging Device for remediation.\",\"COMMAND TIMED OUT.\"]"} Please can somebody advise of how I can review why these are timing out and perhaps up the timeout limit to ensure that this is back working?  Thanks! 

I’m new to the product and would love to have an Otto for my desk.Loving it so far!

You’re not all scripts and servers all the time. What’s one underrated hobby or passion you pursue outside IT that surprises people when you mention it? It could be something totally unexpected (any astrophotographers or ant farmers out there?) or something more lowkey that helps you unwind after a long day.I’ll start: I enjoy training my 1.5 year old Golden Retriever named Gravy! It’s fun to teach him new tricks and skills. Sometimes they’re helpful in real life and sometimes they’re not. :)   

Hi,We’ve been a Automox client since May 2022.When we started to deploy the Automox Agent to our end user Windows 10 and 11 laptops we ran into a problem after about a month when a not insignificant amount stopped communicating with the Automox console. Without exception, when we investigated we found the Automox Agent wasn't running on the end point. Starting the service or restarting the machine would fix it.Reviewing amagent.log would present messages about abnormal closure to websocket.2022/09/25 00:54:07 stompclient.go:399: Error in axstomp readframe: websocket: close 1006 (abnormal closure): unexpected EOF2022/09/25 00:54:07 stompclient.go:437: Consumer error: websocket: close 1006 (abnormal closure): unexpected EOFWe were told the root cause was because our end users connect to a corp VPN and that the momentary change in connectivity for those devices was causing the Automox agent to to crash. While I understood the logic, I felt the agent should be able to handle a change in co