Using Automox

Sharing is caring, so we'll share our best practices and tips for using Automox. Ask your questions to make the most of your Automox experience!

  • 591 Topics
  • 2,059 Replies

591 Topics

sparrowhawk
sparrowhawkNovice
asked in Using Automox

Automatically disable patch after specified number of failed attempts

This doesn’t happen too frequently, thankfully, but when it does it can be very frustrating for end users.A patch that requires a reboot fails to install so Automox tries again on the next scheduled run. As I find I have to run schedules often to keep up with the number of patches, this can mean that a user has to reboot every day.What I’d like is the ability to disable a patch after a number of failed attempts so that this doesn’t happen. I’d also like to be notified about this so that we can investigate the cause.As we get too many failure notifications we’ve actually turned these off for now anyway.Does anyone have any thoughts or suggestions on this?Thanks

1
sparrowhawk
5 days ago
S
sethhallRookie
asked in Using Automox

Patching and Completion Notification

Hello, I would like to notify end users once their patching is completed so that they know if it is okay to shut down their device.If a device is shut down, logged out, or put in sleep mode, the patching will fail. I’ve noticed this multiple times with testing on different devices. There is no real way for an end user to know when their patches have been updated. Furthermore, on Automox I am able to see each “Device Status” as “Refreshing” when updates are being conducted, and “Ready” once they are complete.I would like confirmation that Refreshing = Patching. With that wording it is a little confusing.I have ran manual patches on certain devices that will begin “refreshing” and after completion, they will turn to the “ready” state. Although I will still see the same patches needing an update in the “Software” section of the device. Does anyone know why this is happening? It is as if the patch runs and after completion nothing actually happened with those items that needed to be patche

5
sparrowhawk
5 days ago
C
csmith6Rookie
asked in Using Automox

Group Parameter in MSI Installer

Good Afternoon,I’m planning on deploying via GPO using MSI.  I’ve gotten the ACCESSKEY entry added to the MSI using Orca.  I was hoping to assign device group membership as well.  Could someone please provide the syntax for this?  I haven’t had any luck, and am not finding any documentation.  I tried the following with no success:Property: GROUPValue: “Default/Parent Group/Device Group”Thanks!

2
C
8 days ago
D
dhobrechRookie
asked in Using Automox

Incorrect Machine Restart States

Hi there,I’ve been experiencing an issue on certain clients where the Automox device section states “Reboot Required” even when a reboot has been administered, in some cases multiple times. I’ve tried manually restarting, restarting from the Automox client, CLI restarts, etc. The message is persistent. This seems to only apply to macOS devices. Any ideas?Best,Dane

6
M
13 days ago
A
aldomoroRookie
asked in Using Automox

How to enforce Macos reboot after Macos patching

Hi I would need some adviceI use policy “Patch recently released macOS updates”. It shows a pop-up window and if user click on “patch”, e.g. MacOS 14.3.1 is upgraded to 14.4. But I see it has two IFIf user does not click on “patch” button, MacOS is not updated If he does it, MacOS is not restarted. There is just notification in Settings icon, but my users ignore it. Is not there any way to enforce patching even if user does not click “Patch” button? Is not there any way how to significantly show to user he should reboot? And if he does not reboot, reboot is forced e.g in 48 hours? Thank you for you helpAldomoro

1
MarkH-Automox
1 month ago
J
jfranciscoRookie
asked in Using Automox

Microsoft Teams failing to apply patch because it is currently running.

Any solutions to the output below? We have such low compliance because everyone uses Teams. Failed to apply patches ("Teams Machine-Wide Installer..."): Error: Microsoft Teams is unable to patch because it is currently running.

4
S
1 month ago
jack.smith
jack.smithAll Star
asked in Using Automox

Mac OS Automox Remote Control would like to record this...

Anyone have a guide on setting up MDM to approve this? 

1
jack.smith
1 month ago
Afonso_Alves_31
Afonso_Alves_31Pro
asked in Using Automox

Patching Adobe Creative Cloud

Does automox has an adobe creative cloud patch coming up?

5
jack.smith
1 month ago
Carson
CarsonRookie
posted in Using Automox

Feature request: Direct Uninstall via Automox Console!

While the need to install critical software is often urgent, we are finding the need to track and remove unwanted software to be equally pressing in some cases. I see that substantial and ongoing work is being done on Automox Worklets which uninstall software. That leads me to wonder whether tracking and removal of software might some day go “mainstream” in Automox and be managed directly through the Automox console. For example, perhaps there could be an Automox Policy which reports ALL packages installed on an end point and can be used to trigger uninstall logic on some subset of these. Am I totally off-track here? Please enlighten!

3
J
1 month ago
R
Ryan-ATGRookie
asked in Using Automox

Automox install failing on Mac

While running this command: sudo launchctl load /Library/LaunchDaemons/com.automox.agent.plistI am seeing this error:Load failed: 5: Input/output errorTry running `launchctl bootstrap` as root for richer errors===I’m installing Automox on a Mac from the installer file.  I can see the Mac from the Automox console.

1
S
2 months ago
F
filemodRookie
asked in Using Automox

Known Behavior of execmd.ps1?

Looking to validate events from an EDR related to amagent activity.  Are these known behavior?The script C:\programdata\amagent\execdir775765479\execcmd799295514.ps1 attempted to create a viewable window, by calling the function "CreateWindowExW". The operation was successful.The script C:\programdata\amagent\execdir775765479\execcmd799295514.ps1 attempted to modify the next instruction to execute in the process "C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe". The operation was blocked and the application terminated by Cb Defense. 

4
F
2 months ago
M
Maulik_BusaNovice
asked in Using Automox

failed updates for devices

Hi Everyone, im newbie for Automox and still easing my path through this new platform.Here’s the little info before i ask my question. So we have got more than 150 devices registered in Automox so far now. we have created couple of policy which patching throughout all week and im still thinking we dont need this much policy on place to be honest cause it’s just crating confusion(see attached screenshots). After all this policies in place we are still not able to get most devices compliant in our dashboard. its indicating almost 70 to 80 percent devices are failed to updates and 40 percent device required reboot to compliant.. we tried to set reboot deferral to 2 times from 3 times before but still no luck..  so is there any way we can set this policies in such a way we can achieve more devices compliant and is there any way from we can start to troubleshoot those failed updates device.. i know its a too much information there but im hoping to get guidance from this awesome community. T

1
S
2 months ago
B
bwilsonmsiRookie
asked in Using Automox

Agent behavior during check in for missed policies

If we have the two policies below1) Servicing Stack - running at 8:00 am2) Windows Updates - running at 9:00 am If the device powers on at 9:30 and the Automox agent checks in and sees the 2 missed policies, which one is processed first?If the device powers on at 8:59 am and the Automox agent checks in and sees the 1 missed policy as it hits the schedule for the second, which is processed first? Thanks for your help.

1
B
3 months ago
M
MD Shoaib PashaNovice
asked in Using Automox

Dynamic groups in Automox.

Hi,In Automox, do we have Dynamic group populated? Instead of static group or manual group? 

2
M
3 months ago
FCPMoxGuy
FCPMoxGuyRookie
posted in Using Automox

Automox detects an Older version of Google Chrome that doesn't exist

Hey all, Ran into a very strange situation where I have a windows endpoint that is attempting to patch an older version of Google Chrome and all my activity logs say that chrome is patching successfully, however when i look at the device record, Automox still tells me the older version of Chrome is installed (version 66 strangely enough) and that the app hasn’t patched successfully. when I RDP’d over to the PC, i can see that the latest version of Chrome is installed and there are no older versions of chrome that i can see. As you can imagine it is a buzz conversation amongst our IT SecOps team because Chrome 66 is of course absurdly old. I’m not exactly sure where else i can look to find where automox is detecting this older version of chrome that doesnt seem to be installed. Any suggestions or ideas would be appreciated.

1
MarkH-Automox
4 months ago
C
CNYMetalGuyRookie
asked in Using Automox

Automox confusing host names/fqdn

I am onboarding my devices having come from another product. I am having issues correctly onboarding my 4 DNS servers (ubuntu) and my webserver (ubuntu)  I onboarded my webserver first, it registered and initially displayed the correct info in the System Details. I proceeded to onboard DNS01 and I received the Slack message it hit my account. When I went to device details DNS01 is not in the list and my webserver is now displaying the DNS01 fqdm in system details. Any ideas to either correct this within the GUI or manually edit the details on the endpoint?

3
philips66
4 months ago
M
MD Shoaib PashaNovice
asked in Using Automox

Linux Patch Targetting

Hi,While creating Patch All Except Policy for Linux. Which Patches do we need to include to be installed?What is best recommendation for patching Linux?

0
M
4 months ago
M
MD Shoaib PashaNovice
asked in Using Automox

SSO or Email & Password

Hi team,In our environment, SSO is Enabled for the Zone and during failover of SSO. Can we use Email-ID and Password as an alternate method to login to the Automox Console.Thanks,Shoaib

0
M
4 months ago
M
MD Shoaib PashaNovice
asked in Using Automox

User - Roles and Permissions

Hi Team,As per the below article, Automox supports six role-based access controls (RBAC). But in the same doc we have one more role named as Helpdesk operator, and it has privilege to take Remote session as well. By default, does this role only used by Automox Support Team? or it can be assigned this role to Zone users?Ref: Roles and Permissions – Automox Thanks,Shoaib

1
MarkH-Automox
4 months ago
M
MD Shoaib PashaNovice
asked in Using Automox

OS Patch Management

Hi Team,While creating Groups we have a session called OS Patch Management. Where under that we have settings only for Windows and macOS nodes, so we need to know for Linux which is the recommended settings to be used?Can you please confirm if these settings applicable for Linux OS? if yes, what are the recommended settings to be used?If this Session is not applicable, then what settings do we need to be set?Ref: OS Patch Management Settings for Groups – AutomoxThanks,Shoaib

2
M
4 months ago
P
pgajwinstonRookie
asked in Using Automox

Filter on critical severity - Is your filter working?

For the past 2 months, our console fails to be able to report on severs that have high or critical severity. We are seeing an issue again when we try to filter devices by Severity for Critical or High patches, where it fails to load any devices.    We have a major patch window coming up on Saturday, and not having this available will mean that we need to manually verify patching on the majority of our servers, which is not acceptable. Is anyone else seeing this or is this local to our Automox console?

2
B
5 months ago
K
Kamelh
asked in Using Automox

Register automox device on Intune

Hello, We are currently using Automox to manage our linux device. Our user have to register frequently from the intune portal so that their device show in intune.I would like to know if it is possible to register automatically from automox to intune without any action from our user? Best regards

2
K
5 months ago
M
MD Shoaib PashaNovice
asked in Using Automox

Windows Firewall whitelist

Hi Team,We have disable Domain Firewall and we have Private and Public FW enabled on End nodes. In this case, do I need to allow below URLs on my all-End node’s Local firewall? to fetch updates from Microsoft. Windows OS - We might choose to apply a rule to permit HTTP RANGE requests.[RS1]    •             *.download.windowsupdate.com •             *.dl.delivery.mp.microsoft.com •             *.delivery.mp.microsoft.com Devices can reach necessary Windows Update endpoints through the firewall TLS 1.2  *.prod.do.dsp.mp.microsoft.com HTTP      emdl.ws.microsoft.com HTTP      *.dl.delivery.mp.microsoft.com HTTP      *.windowsupdate.com HTTPS   *.delivery.mp.microsoft.com TLS 1.2  *.update.microsoft.com TLS 1.2  tsfe.trafficshaping.dsp.mp.microsoft.com  

1
AnthonyM-Automox
5 months ago
A
aparkerRookie
asked in Using Automox

Install PowerBI

I’m trying to install Microsoft PowerBI but I am running into a wall. I am doing it through the “Required Software” option for installing programs. I am using the following powershell to install it:msiexec.exe /i "\\xxxxx\xxxxxx\Install Files\Power BI Desktop\PBIDesktopRS_x64.msi" /quiet ACCEPT_EULA=1 This exact powershell line works outside of automox and I can’t understand why it’s not working within the console. For added confusion, Automox say that it was successfully installed on the target computer but when I look at the programs installed on it that is not the case. Any direction would be greatly appreciated!

2
A
5 months ago
P
pgajwinstonRookie
asked in Using Automox

Filter on critical severity - Not working

For the past 2 months, our console fails to be able to report on severs that have high or critical severity. We are seeing an issue again when we try to filter devices by Severity for Critical or High patches, where it fails to load any devices.    We have a major patch window coming up on Saturday, and not having this available will mean that we need to manually verify patching on the majority of our servers, which is not acceptable. Is anyone else seeing this or is this local to our Automox console?

0
P
5 months ago
Terms & ConditionsCookie settings