About gavsto

This author has not yet filled in any details.
So far gavsto has created 83 blog entries.

Diagnosing broken/misbehaving role definitions in ConnectWise Automate; come for a trip in the mystery machine

2021-12-22T01:44:13+00:00December 22nd, 2021|

Hey Gang! We're approaching Christmas, and what do people want at Christmas? They want to diagnose broken/misbehaving Automate role definitions! Firstly - if you're building your own role definition, know that you cannot use a { or } in a role definition. You may need to get creative in PowerShell if you want to do an if statement. Here is an [...]

Why I think we need a different, human-centric approach to honest security discussions

2021-12-17T15:14:44+00:00December 17th, 2021|

I'm sure we can all agree that there is a massive knowledge and skill gap when it comes to security, probably across most engineers and MSPs in the world. The threats and risks are evolving so quickly that keeping on top of all of them is next to impossible for most standard MSPs. It's even exceptionally difficult even where [...]

Why creating fake people to market to your existing partners is a profoundly bad idea

2021-11-23T13:25:24+00:00November 23rd, 2021|

MSP Vendors - learn a valuable lesson from this mistake made by ConnectWise recently. Take a look at this e-mail they sent out recently to existing partners, as posted in the v-connectwise Slack channel: This drew peoples attention, primarily because this person shares a name with Ashley Cooper (a good friend of mine and a huge presence in the [...]

Secure Application Model – For the Layman and Step by Step

2022-02-02T19:29:21+00:00October 25th, 2021|

Hello Everyone, You've seen me banging on about GitHub - KelvinTegelaar/CIPP recently. I know a lot of people want to get involved and running on this but I know a number of people have struggled with the Secure Application Model setup of this - and honestly, it's a particularly difficult process to follow, so I am going to walk [...]

I’ve been hard at work contributing to CIPP (an Open Source Improved Partner Portal)

2021-10-16T12:41:58+01:00October 16th, 2021|

If you've not heard about CIPP yet, it is an improved partner portal and is available here https://github.com/KelvinTegelaar/CIPP - have a look at the documentation at the bottom for screenshots and an explanation of what it is. I'd actually been developing something similar using Azure Functions for a couple of months so thought it was well worth the effort to [...]

Detect non-standard Antivirus (Like Defender for Endpoint) using Automate AV Detection

2021-11-03T21:31:08+00:00October 13th, 2021|

Manual AV Magic This post is aimed at people who are looking to detect anti-virus in a none standard way or are looking to detect Microsoft Defender for Endpoint using Automate. Firstly, this is not as simple as just importing a virus definition for Automate. Because Defender for Endpoint is essentially an extension for Windows Defender, there doesn't appear [...]

Why you’ll no longer be able to purchase ConnectWise Premium Reports on my site

2021-09-29T00:56:27+01:00September 29th, 2021|

For the astute among you, you may have noticed that I've recently removed all premium reports for sale from gavsto.com. There are a number of reasons I have made this decision, and I think it's only fair that I give people a 'heads up' on why I chose to do so. I really do believe that the Report Center [...]

What I learned from helping to Judge a Sysadmin CTF with hundreds of people

2021-09-28T23:56:58+01:00July 29th, 2021|

I recently finished helping to judge and moderate the CyberDrain CTF challenge, a free capture the flag event organised and written by my good friend Kelvin Tegelaar - and what an event it has been. I thought it would be interesting to blog about some of the things that surprised me when judging, including a few things that happened [...]

How secure is your RMM, and what can you do to better secure it?

2021-09-28T23:59:48+01:00July 3rd, 2021|

My MSP does not use Kaseya VSA. That doesn't mean though that I didn't have a sleepless night this Friday 2nd July. I was ready to help, and offered my assistance to impacted MSPs for free. It felt like the right thing to do. Whenever any event like this occurs, it threatens and damages all of us. It erodes [...]

Deploying the ConnectWise Automate Agent through Intune, or how to deploy a PowerShell script as an application in Intune

2021-09-29T00:00:06+01:00May 26th, 2021|

Happy May, everyone! I've seen this question popping up quite a bit recently and thought it would make a worthwhile blog post. There are certainly a number of different ways to approach this, but I have what I think is the most convenient long term solution. Instead of putting the agent installer, in the form of EXE or MSI [...]

Monitoring with PowerShell – Deploy the Microsoft Safety Scanner (MSERT)

2021-09-29T00:01:00+01:00March 8th, 2021|

After seeing that the MSERT tool by Microsoft (The Microsoft Safety Scanner) detected recent Exchange threats https://www.bleepingcomputer.com/news/security/microsofts-msert-tool-now-finds-web-shells-from-exchange-server-attacks/, I thought it would be prudent as a secondary measure to deploy the tool, scan, and make sure everything across our estate was clean. Although I didn't have that problem in my environment, I thought it acted as a good tool [...]

RMM providers – it’s time to pivot, or your product will die

2021-09-29T00:02:07+01:00February 27th, 2021|

What actually drives the features needed in an RMM? MSPs and their staff certainly have a vested interested in what those features are, but ultimately an RMM is a tool used to service a client's IT estate. It might sound obvious, but it's important to re-iterate that as the client's IT changes, so do the needs of the MSP, [...]

Monitor Effective Alert Policy – Where are my tickets coming from?

2021-09-29T00:02:24+01:00February 22nd, 2021|

A quick one today! This report will tell you what alert template policies are set for your Internal and Remote Monitors, what groups they are set on, and it will amalgamate all the results in to a simple report ordered by Monitor Name. People often can't figure out where a ticket is coming from and this should help. Download [...]

Power Bi – The future of reporting, and how Auvik are seemingly at the forefront of it

2021-09-29T00:02:32+01:00February 10th, 2021|

Those of you who know me know I love reports. Yeh, I'm weird like that, but I love the challenge of collecting and grouping data to visually display it in such a way that is beneficial or provides intelligence to the consumer. Some of you may know that I also do consulting for reporting. For a while now I've [...]

Updating ConnectWise Manage Contact based on Automate EDF

2021-09-29T00:02:37+01:00January 28th, 2021|

I saw this as a request on a ConnectWise Facebook group that I am, and it intrigued me. The poster was looking for an integration that took an EDF value (e-mail address in this case) from ConnectWise Automate, find the matching Manage Configuration and update the contact on it all using the API. As the Author of https://github.com/gavsto/AutomateAPI I [...]

Pulling data from a Microsoft SQL Server or any ODBC compatible data source from inside an Automate Script

2021-09-29T00:02:49+01:00January 6th, 2021|

Did you know that it was possible to poll databases / datasets outside of the Automate database? All that is needed is a System DSN (OBDC Connection) on the agent you wish to query from, and you can then reference that in the following script function: On the agent, open the ODBC Data Source Administrator and go in to [...]

ConnectWise Automate Advanced Scripting – Understanding variables passed from a monitor to a script

2021-09-29T00:02:56+01:00January 5th, 2021|

Have you ever been in a position where you have wanted to put together a custom script that triggers when a monitor fails, but you have no idea what variables are passed in to the script from the monitor? It's not like you can debug through this behaviour either as you can't trigger a script as monitor in debug [...]

Restrict or prevent an Automate script running during certain time frames

2021-09-29T00:03:05+01:00January 4th, 2021|

Happy new year, everybody! Today I am sharing a cool trick that you can use inside the Automate Scripting Engine to prevent scripts from running if the current time falls between a window that you set. This example can be run on any agent. This can be useful in situations where you say don't want a piece of software [...]

Go to Top