Security

If endpoints are properly configured, you can use remote desktop launching mstsc.exe with the /restrictedAdmin switch, which does not require re-entering credentials and does not send the password to the remote computer. Per Microsoft's documentat...

Our environment has separate administrator logins for our endpoint team. When we launch MECM with our admin accounts, RCT uses the admin account to access and manage devices, etc. The Intune plugin uses the user context that the browser is running...

It would be very helpful if we can perform a BIOS upgrade (firmware upgrade) on client workstations. We mostly use Dell and some HP hardware.

In Carillon we do not allow long activation code validity times. There should be a central place where the allowed times can be configured and which one is the default. e.g. Carillon: ServiceDesk \ ActivationCodeValidityTimes .xml" <?xml versio...

I'm looking solution for BIOS Management & Firmware Upgrade for DELL, HP, Lenovo & Surface devices.

Patching for third party apps would be a nice to have. It would elminate the need for patch my pc or manage engine.

As more people are using passwordless and/or long passwords, when using the run as domain users, writing the password is a bit legacy. Could we use Windows Hello for Business credentials to confirm the elevation without using a password?

I'd like to be able to view what BIOS version each computer has when pulling up the Security Tools. There's a lot of BIOS/UEFI information such as TPM and secure boot, but adding a BIOS version will easily let us know if they're needing to be upda...

Map a list of known vulnerabilities to the software inventory and hardware firmware so you can pull a report of vulnerable software installed on clients/servers.

This really would be for all RMS actions. But instead of storing in the database, we could keep only a few days here and then ship them all off to our syslog server for future discovery. I'm thinking about utilizing Recast Builder more for admin t...