GFI LanGuard

How can we improve?

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Inclusion of MS Bulletin ID's When Exporting a Report

    Would it be possible to please include the MS Bulletin ID's along with KB numbers, when generating/exporting reports? I feel that the inclusion of the MS numbers, makes identifying the patches so much easier

    5 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  2. allow linux scanning with non root accounts

    Languard needs to have an option to connect to and scan linux machines with another account besides root. Most people do not allow root access to linux servers via SSH. That way we can have a dedicated account that will be used for scanning and patching linux servers without giving root access to the entire server.

    5 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  4 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. LanGuard support for patching Amazon Linux

    Please would you add the capability for LanGuard to able to scan and patch the Amazon Linux OS.

    This feature would be useful for companies moving their workloads to the AWS platform.

    https://aws.amazon.com/amazon-linux-ami/

    https://forums.aws.amazon.com/thread.jspa?threadID=146805

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  LanGuard 12  ·  Flag idea as inappropriate…  ·  Admin →
  4. Option to manually approve the automatic distribution of a major version

    Currently, if you've got the "disable automatic approval for major version upgrades" option turned on, the only way to then get a major version installed/rolled out, is to manually select it for one or more systems and trigger a remediation.

    I would be great, if those major versions would pop up in the "Manual Approval" list and could be declined or approved there.

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  LanGuard 12  ·  Flag idea as inappropriate…  ·  Admin →
  5. Assett monitor needs to capture Dell service tag like it used to.

    Provide me with the capabilities I had before.

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  6. Allow LanGuard agents on public servers to report back using a NAT address which is specific to the LanGuard server.

    We currently have a LanGuard server on a private IP but the agents deployed to a handful of public servers are unable to communicate back to this server. The agents are configured to use the private IP which they are unable to communicate with. I have a NAT in place to use but the current server agent configuration is not capable of using this. We would prefer to have the agents report in versus going agentless and needing to regularly scan these systems. This is also causing issues with the public servers reporting patching status during deployments.

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. Relay Agent high availability...

    it will be great if you can have two relay agent grouped into one pool and the client machines pointed to the pool this will help in sites where the relay agent server can be off for extend times, one server will cover the other.

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  8. off-line computers not showing out of date

    Have the icons change to red if a tracked host has not communicated with the Languard server. As it is now if a host goes off line you have to check each host to see if it has not responded whereas if they were marked red after missing x number of scans you could tell quickly there was a problem.

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. Major release JAVA and Adobe Reader no more...

    I understand the reasoning for no more major release update for JAVA however maybe GFI can program it as an option in LanGuard.
    In the configuration somewhere (check box type option) allow for those of us who would like to continue to have it update through major versions. Because, to us this is now going to cause us more work in GFI now updating via custom software for JAVA.

    Thank you

    Frank Klimczak

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  10. Staggered scanning times for agent based scanning

    With languard 2011 add a way to automatically stagger scan/reporting times for agents so that you don't have hundreds or thousands of agents reporting at the same time.

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  11. Resumable patch deployment

    It would be a great advantage to have resumable deployments. Specifically critical when deploying patches or custom deployments to Mobile devices such as laptops and Windows based tablets. These are notorious for dropping connectivity. Being able to resume a deployment from last point would save a lot of time and bandwidth.

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. Custimizable Reports

    Sometime I'm only interested in seeing the processor, Memory, Disk, User, Computer, etc. Maybe the scan results could be exported to Excel or Access and I could write my own report.

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. Chain Multiple Updates

    I would like to suggest that LanGuard be able to detect where there are new versions of applications available or chains of dependent updates and be able to jump to the latst comprehensive update or version (in the case of free software in particular) or chain the updates together so that a single cycle (or at least a few cycles) of remediation will bring a system completely up to date.

    We have been using LanGuard for several months now and still have systems that are catching up on their updates. I see how the current functionality is quite sufficient for…

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Computer tree group by subnet

    Right now computer tree can group by domain/OU, Network Role, relay distribution and custom attributes.
    I want to add a feature request to group by network subnet.
    Normally network subnet is equal to department or something else. This feature will decress attribute configuration time.

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  15. Scan by attributes

    I'd like to be to initiate a server scan by custom added attributes.

    4 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Collecting Feedback  ·  3 comments  ·  Flag idea as inappropriate…  ·  Admin →
  16. Enable TLS 1.2 support in LanGuard and Central Management Server

    Central Management Server requires TLS 1.0 to connect to the SQL server hosting its database. This is a massive security hole.

    This is the error in Windows on a server which has TLS 1.0 disabled.

    "An unknown connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed."

    3 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  LanGuard 12  ·  Flag idea as inappropriate…  ·  Admin →
  17. Allow Languard management console to be installed on workstation.

    Allow management console for Languard to be installed on client or workstation so that Languard can be managed from any computer and not just one machine.

    The best way to do this would be to setup via a web interface or just allow the management console to install on workstation and point to central server for database and central config.

    3 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. Add Some Roles in LanGuard

    Feature requirement: Add Some Roles in LanGuard
    Our customers have submitted some suggestion about adding some roles in LanGuard:
    Some multi-national enterprises have more than one system or network administrators.
    Some of them are in charge of vulnerability scanning and some are in chage of patch management.
    They have different roles for IT, eg: IT security Auditor, Client Service (Windows Workstations), Network Engineer (Network equipemnt), OS&DB Engineer (Windows Server and DB server) etc.
    But now the GFI LanGuard only has one role --global administrator. And it has full permissions.
    I think it will not meet the needs of large-scale companies…

    3 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  LanGuard 12  ·  Flag idea as inappropriate…  ·  Admin →

    This is already possible.

    Different roles are available in the Central Management Server.

    Each Administrator needs to have his own LanGuard instance that he manages, applies and approves patches, reporting is pushed to the central server for a unified view.

  19. Feature: Adding site information and add grouping possibilities

    If we use multiple sites I want to see the sites in the reports and would know in which site the device appears. Especially in larger organization, to reach out to the responsible teams, it's an essential information where the device/node or specific vulnerability appears.

    3 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  LanGuard 12  ·  Flag idea as inappropriate…  ·  Admin →
  20. Feature: Dedicated Site network security overview

    The network security overview if generated for multiple sites, is good, but with a little bit more site based statistics and information on which site it would be a great enhancement e.g. Items I would like to see:

    - World map
    - Most vulnerable computer with site information beside the IP
    - Which site is more vulnerable (Computer vulnerability distribution based on sites)
    - Show split and consolidated diagrams for
    -- Security sensors with the sites where something was found (e.g. Software updates: 8/18 computers on 1 site)
    -- Network roles
    -- Computers by operating systems

    3 votes
    Sign in
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  LanGuard 12  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base