Chat now with support
Chat with Support

KACE Systems Management Appliance 10.2 Common Documents - Release Notes

Quest® KACE® Systems Management Appliance 10.2 Release Notes

Quest® KACE® Systems Management Appliance 10.2 Release Notes

This document provides information about the KACE Systems Management Appliance (SMA) version 10.2.

About KACE Systems Management Appliance 10.2

About KACE Systems Management Appliance 10.2

KACE Systems Management Appliance (SMA) is a virtual appliance designed to automate device management, application deployment, patching, asset management, and Service Desk ticket management. For more information about KACE SMA series appliances, go to This release contains a number of new features, resolved issues, and security enhancements.

NOTE: This is the only document that is translated for this release. Other guides, such as the Administrator Guide and in-product help are not localized at this time, and version 10.0 is included with this product release.

New features and enhancements

New features and enhancements

This release of the KACE Systems Management Appliance (SMA) includes the following features and enhancements.

Built-in Windows 10 Feature Updates: Deploy Feature Updates to upgrade Windows 10 to the latest semi-annual release. The Feature Updates are detected and deployed in a manner similar to patching.
Improved authentication support (OAuth 2.0) for Service Desk inbound email: With Google and Microsoft introducing new security standards for client apps connecting to their respective accounts, the following credential types can now be configured with this new level of authentication, and used to access Service Desk POP3 inbound email.
Office365 OAuth credentials: You must have an Office 365 account, and have created a Microsoft Active Directory app in Microsoft Azure with a Client ID and Client Secret. For more information, visit
Google OAuth credentials: You must have a Google account to be used as your developer account, and have created a Google app with a Client ID and Client Secret. For more information, visit
Agent snooze through system tray: End users can snooze agent activities using the KACE system tray utility for 15 minutes, 30 minutes, one hour, and two hours. This is configurable up to a maximum of 5 times per day.
Parents pass fields to child tickets: The appliance now allows parent tickets to pass information to child tickets in a process (workflow). For example, while creating a new user you can now pass the user name, department, phone number, and so on, from the parent ticket to other departments involved in the new user creation.
PowerShell support: Native PowerShell for KACE SMA online scripting is now supported. Previously the KACE SMA online script only allowed users to define a batch script, if they wanted to run PowerShell, they had to wrap that inside a batch file and invoke through batch scripting. PowerShell scripts can now be launched directly from the KACE SMA.
Chromebook management enhancements: Additional inventory information, device command support, advanced search and Smart Label reporting is added in this release.
jOVAL support: OVAL and SCAP scanning now use jOVAL, a faster, more up-to-date, better supported, and cross-platform model, for all supported Windows agent platforms, including 32- and 64-bit devices.
KACE GO Biometrics: You can now use biometric features instead of the PIN code.
Ticket templates for KACE GO: This feature extends customizable templates with conditional logic fields introduced in KACE SMA 10.0 to work in KACE GO, too.
New layout options for ticket templates: Starting in this release, you can arrange related fields together in a ticket template, place fields close to the edge of the layout area, or create blank spaces between fields, as needed.

Resolved issues

Resolved issues

The following is a list of issues resolved in this release.

Table 1. Resolved Issues

Resolved issue

Issue ID

Deploy schedule of Dell updates did not function as expected when No Reboot was selected.


SAML (Security Assertion Markup Language) user attribute mapping was only allowed for LOGIN as the primary key.


Some Dell Updates did not appear in the list of available updates in the Administrator Console, even though they did exist on the KACE SMA.


SAML settings: Role mapping was not updated after an initial SAML configuration.


Provisioning failed on Mac OS when the provisioning schedule contained credentials for Linux and Mac and the credentials were not the same.


KACE Cloud Mobile Device Manager (MDM) provisioning failed if computer license count was reached.


Manually installing a Mac agent with a host name in the dmg did not populate in the installer.


After archiving a ticket, HTML code sometimes appeared in the Resolution field.


In a multi-organization, multi-language KACE SMA, some parts of the Administrator Console sometimes appeared in the wrong language.


Aggressive HTML sanitization converted the UNC path starting with \\n into a new line.


Task Chains: Tasks after the first task did not start off when sending actions to multiple devices.


Asset Status was not included in the export of a device to a CSV file.


It was not possible to upload files greater than 2 GB through the Administrator Console.


Sorting was not working on the Device Detail page in the Patching Detect/Deploy Status section.


Creating report from the patch catalog did not work.


Created and Modified dates in the ticket_fields_visible token were incorrect.


On the Device Detail page, in the Activities group, in the Service Desk Tickets section, choosing New did not associate the ticket with the device.


Database size could grow quickly with many devices checking in at a fast rate.


Archiving a ticket from the Ticket Detail page shows Ticket Deleted in history.


KACE alerts did not show up properly in dark mode on Mac OS 10.14 and 10.15. Alerts were not displayed in the dark mode theme, when selected.


Software MI (Managed Installation) did not increment or decrement the INSTALLED_COUNT after a successful run.


On the Asset Detail page, the Barcode Format field did not allow underscore '_' characters.


Hooks are now provided to allow IdP (identity provider) -initiated SAML logins to specify the Organization and Portal (user, admin).


A comma ',' in a Patching reboot message was incorrectly displayed as a space, backslash, or comma.


There were missing supported media types such as media and 10GBase-T.


When importing users, the role might not be imported as expected.


OVAL scan failed on Windows server 2019 with a Timeout error.


Process Tickets (parent and child) with angle brackets in subject disappeared from the Administrator Console upon creation.


Removing welcome message text leaved undesired text on the login screen for non-English languages.


Registry Configuration Policy script hanged the agent with large hexadecimal values.


Custom ticket rules which change HTML_SUMMARY might not behave as expected.


Monitoring raised an alert with corrupted text when an event log message matched more than one criteria for a monitoring profile.


Incorrect data in ticket status field sometimes prevented deleting or archiving a device associated with the ticket.


Emails from custom ticket rules were not sent to all addresses when there was a space in between the email addresses.


Approval column on the User Console Home dashboard did not display properly for non-English locales.


HTML email: Inline images showed as broken in email notifications using $last_comment.


Process email templates were not sent out if approval was not enabled.


It was not possible to add assets or devices to a location when user permission was set to read.


Unexpected behavior occurred when SCAP (Secure Content Automation Protocol) results were received for a machine that could not be identified.


Asset Import sometimes removed existing device location and user when they were not mapped in the import.


Initial logo seen in the User Console did not match initial selection in the organization drop-down menu.


Device List: Export report did not show Last Reboot.


Mac Managed Installations did not support installer in ZIP format.


A blank page could be seen on the License Detail page when the user has read permissions.


Moving a ticket to a queue without a matching category could result in unexpected values in the Category field.


Added CC for ticket from comment was removed after clicking Save or Apply Changes.


Exporting a computer list using through the System Administration Console resulted in a missing organization name.


Upgrading software could cause attached files to be abandoned.


Custom Device Field was not displayed properly on the Device Detail page.


Custom discovery schedule: Ping selection was reset when re-editting the schedule.


When doing an Advanced Search on the Licenses list page, the Name column link to the License Detail page could be incorrect.


Replication was not being completed when 32-bit Linux systems were used as replication agents with an SMB share.


Dell Updates wizard reports could fail to run.


Machine details page displayed the wrong MAC address.


Device Scope Label did not save when All devices is cleared.


Patch schedule detect/deploy timeout are now honored regardless of the agent process timeout setting.


Setting the Agent Alert logo could cause unexpected behavior with inventory on Mac and Linux devices.


Deleting a large number of Asset Locations at once took a long time to complete.


Disparity was seen between Advanced Search of a custom field in a regular ticket, when compared to doing a search of an archived ticket.


Duplicating a running patch schedule also triggered the duplicated schedule to the device.


Computer Inventory CSV download failed if CREATED or MODIFIED were used as sort fields.


MI at bootup/login was not working on Mac.


When SAML authentication is enabled, organizations with special characters in the name break the SAML login page.


In previous versions, every organization database had asset type views that were part of the linked reporting feature. This allowed customers to write SQL reports based on these views. The linked reporting feature stopped working in version 9.0, and these views (now obsolete) are removed in this version.


Google Admin Console link did not work properly.


Kerberos domain credentials can now be entered in a standard FQDN (fully qualified domain) format.


Offline kscript configured to run at user login failed on Mac device.


It was not possible to send Wake-on-LAN packet using simple method to a Mac OS device with a computer name containing a space character.


In the Service Desk, variable replacement for $ticket_category token was not working.


Self Service Tools
Knowledge Base
Notifications & Alerts
Product Support
Software Downloads
Technical Documentation
User Forums
Video Tutorials
RSS Feed
Contact Us
Licensing Assistance
Technical Support
View All
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating