Remediation Repository Content and Tips for Creating Remediation Actions

Aternity offers a handful of remediation use cases to benefit from our remediation capabilities without the need to develop the scripts by yourselves. Aternity provides ready PowerShell scripts for various remediation scenarios. Review the list in the below table and find a useful remediation for your organization.

Use the Remediation repository to find the shared scripts. To use the repository, you are required to log in to Riverbed Support Site. The scripts in this repository are signed, tested, and ready for use.

Read carefully the article that explains how to set up remediation actions and perform the procedure explained there, create an action using the guidelines in the below tables, test it, and then use in your production:
  1. From the below table you can copy the name and description to the Add Action screen.

  2. Then you should upload the required script (the one you found in the repository or developed by yourself).

  3. Set script privilege (according to the table below): select or keep empty the Run in the System account checkbox.

  4. Allow and enter script parameter (if required according to the below table).

Remediation actions can be automated via SDA or manual (learn more).

Application Use Cases

Script Name Repository Article Name for Easy Navigation and Search Description Use Case Remedy Silently or Use a Sample Question for User Confirmation Privileges - Run in the System account Is Parameter Used by the Script; Is it Mandatory or Optional

Clear Cisco Jabber Cache

Cisco Webex and Jabber

Solve issues with Cisco Jabber by stopping it and clearing its cache

Application

Ask for confirmation: Cisco Jabber application will be stopped to improve its behavior. You can continue using it after a short delay.

Yes

No parameters

Clear Cisco Webex Cache

Cisco Webex and Jabber

Solve issues with Cisco Webex by stopping it and clearing its cache

Application

Ask for confirmation: Cisco Webex application will be stopped to improve its behavior. You can continue using it after a short delay.

No

No parameters

Clear Microsoft Skype for Business Cache

Delete Skype Cache Data

Solve issues with Microsoft Skype for Business by stopping it and clearing it's cache

Application

Silent

Yes

No parameters

Enable Internet Explorer Compatibility Logging

Enable Internet Explorer Logging

Enable Internet Explorer Compatibility Logging to generate Event Log events

Application

Silent

Yes

No parameters

Reset Microsoft Outlook Navigation Pane

Microsoft Outlook Issues

Reset all customizations to the Outlook navigation pane to resolve "Cannot start Microsoft Office Outlook" issues

Application

Silent

Yes

No parameters

Uninstall Zoom

Uninstall and Remove Zoom

Uninstalls Zoom application and removes respective Zoom installation directory

Application

Silent

No

No parameters

Uninstall Bittorrent

Uninstall Applications

Uninstall Bittorrent from target machine

Application

Silent

Yes

No parameters

Restart SMS Agent Host service

Restart Aternity Agent Service

Restart the SCCM Agent service if it has become nonfunctional

Application

Silent

Yes

No parameters

Fix crashing Microsoft Photos App

Fix Microsoft Photos Crash

Re-register Microsoft Photos App to resolve routine crashes of this component

Application

Silent

No

No parameters

Repair Microsoft Office

Microsoft Office Repair

Run a quick repair on Microsoft Office (Click-to-Run installations only)

Application

Silent

Yes

No parameters

Create new Microsoft Outlook Profile

Microsoft Outlook Issues

Forcibly close Microsoft Outlook if open, remove all Outlook profiles and create a new profile (Office 2016 and upwards)

Application

Ask for confirmation Microsoft Outlook will be stopped and a new profile will be created. You will need to start it and add your account again to continue.

No

No parameters

Delete Current User's OST file

Microsoft Outlook Issues

Forcibly close Microsoft Outlook if open and delete the current user's OST file to fix synchronization issues

Application

Silent

No

No parameters

Microsoft Teams Fix - "We ran into a problem"

Microsoft Teams Fix - "We ran into a problem"

Fix Microsoft Teams "We ran into a problem" issue by closing Microsoft Outlook and Microsoft Teams, disconnecting the O365 account, and relaunching both applications

Application

Ask for confirmation: Microsoft Outlook and Microsoft Teams will be restarted to fix your Teams issues.

No

No parameters

Compliance Use Cases

Script Name Repository Article Name for Easy Navigation and Search Description Use Case Remedy Silently or Use a Sample Question for User Confirmation Run as System account Is Parameter Used by the Script; Is it Mandatory or Optional

Check MD5 file hash of PowerPoint

Check File Hash

Fetch the MD5 file hash of the PowerPoint executable to check for compromised installations

Compliance

Silent

Yes

No parameters

Check MD5 file hash of Windows Address Book

Check File Hash

Fetch the MD5 file hash of the Windows Address Book executable to check for compromised installations

Compliance

Silent

Yes

No parameters

Set Explicit Web Proxy

Set Explicit Web Proxy

Set the web proxy in Internet Settings based on supplied parameter (ipaddress:port)

Compliance

Silent

Yes

No parameters

Update Windows Defender Definitions

Update Defender Signatures

Forcibly update stale Windows Defender definitions to improve security

Compliance

Silent

Yes

No parameters

Suspend Bitlocker

Bitlocker - Suspend and Enable

Suspend Bitlocker drive encryption on target machine

Compliance

Silent

Yes

No parameters

Enable Bitlocker

Bitlocker - Suspend and Enable

Enable Bitlocker drive encryption on target machine

Compliance

Silent

Yes

No parameters

Repair SCCM Client

SCCM Remediations

Reinstall the SCCM client using the CCMRepair.exe command

Compliance

Silent

Yes

No parameters

Clear SCCM Cache

SCCM Remediations

Free up disk space by clearing the SCCM cache of unused items

Compliance

Silent

Yes

No parameters

Set SCCM Service Startup Type and restart service

SCCM Remediations

Set CcmExec service to have delayed automatic startup and restart service

Compliance

Silent

Yes

No parameters

Network Use Cases

Script Name Repository Article Name for Easy Navigation and Search Description Use Case Remedy Silently or Use a Sample Question for User Confirmation Run as System account Is Parameter Used by the Script; Is it Mandatory or Optional

Disable DNS Client Operational Event Logs

Windows DNS

Disable the Windows DNS Client Operational logs once troubleshooting is complete

Network

Silent

Yes

No parameters

Enable DNS Client Operational Event Logs

Windows DNS

Enable the Windows DNS Client Operational logs to troubleshoot DNS issues

Network

Silent

Yes

No parameters

Check DNS Response Time

Windows DNS

Check DNS resolution, response time and availability of supplied domain using supplied DNS server

Network

Silent

No

DNS Server, Domain Name and Number of tests are optional params.

For example, 8.8.8.8;www.aternity.com;10

Create Network Trace

Connectivity Remediation

Start or stop a Network Packet Capture on target device

Network

Silent

Yes

The following Trace Parameters are mandatory: [Start|Stop];Folder;Trace File;Buffer Size;[Destination]

For example, Start;c:\temp;trace.etl;200MB;\\192.168.1.254\Shared Folder\Trace

Perform a DNS name server lookup for target address

Connectivity Remediation

Perform a DNS name server lookup using the nslookup command for target address

Network

Silent

No

Target address for the nslookup command is mandatory.

For example, http://www.aternity.com

Ping a target address to check availability and collect round trip time

Connectivity Remediation

Collect network round trip time against the target address using the ping command

Network

Silent

Yes

Target address for the ping command is mandatory.

For example, http://www.aternity.com

Ping a target address and port to check availability and collect round trip time

Connectivity Remediation

Collect network round trip time against the target address and port using the ping command

Network

Silent

Yes

Target address and port for the ping command are mandatory;semicolon delimited

For example, www.aternity.com;80

Perform a traceroute against target address to understand network path and delays

Connectivity Remediation

Perform a traceroute against target address using the tracert command

Network

Silent

No

Target address for tracert command is mandatory.

For example, http://www.aternity.com

Collect Wi-Fi Adapters

Wi-Fi Adapters

Collect a list of Wi-Fi Adapters installed on target device

Network

Silent

Yes

No parameters

Set Advanced Wireless Settings

Wi-Fi Adapters

Set Wireless Settings to default to 5G for Preferred Band and Low for Roaming Aggressiveness

Network

Silent

Yes

No parameters

System Use Cases

Script Name Repository Article Name for Easy Navigation and Search Description Use Case Remedy Silently or Use a Sample Question for User Confirmation Run as System account Is Parameter Used by the Script; Is it Mandatory or Optional

Add User to Local Administrators Groups

User Local Admin Scripts

Add a user to the Local Administrators Group. Default is currently logged on user unless a username is supplied as parameter.

System

Silent

Yes

Parameter name user is optional.

If username is not supplied, currently logged on user will be used.

Remove User from Local Administrators Groups

User Local Admin Scripts

Remove a user from the Local Administrators Group. Default is currently logged on user unless a username is supplied as parameter.

System

Silent

Yes

Parameter name user is optional.

If username is not supplied, currently logged on user will be used.

Change Desktop Icon Size

Desktop Icon Size

Change size of Desktop icons to Small, Medium or Large

System

Silent

No

Icon size is mandatory: Small, Medium or Large

Enable Print Logging

Print Remediation

Enable Print Logging to diagnose printing issues

System

Silent

Yes

No parameters

Reinitialize Print Spooler

Print Remediation

Stop the Print Spooler service, clear the print job queue and restart the Print Spooler service to fix printing job issues

System

Silent

Yes

No parameters

Backup and Rebuild Performance Counters

Backup and rebuild corrupt 32-bit and 64-bit Performance Counters to avoid CPU spikes caused by failing WMI queries

System

Silent

No

No parameters

Rebuild 64-bit Performance Counters

Rebuild corrupt 64-bit Performance Counters to avoid CPU spikes caused by failing WMI queries

System

Silent

No

No parameters

Fix issues with Windows Search

Fix issues with Windows Search by restarting the Windows Search service

System

Silent

Yes

No parameters

Reset Windows Hello Enrollment

Reset Windows Hello

Resets Windows Hello PIN and Biometric Registration for logged in user

Reset Windows Hello (System use case)

Silent

No

No parameters

Fix Start Menu Failure in Windows 10

Rebuild a corrupted Windows 10 Start Menu with a user's applications

System

Silent

Yes

No parameters

Run Microsoft Disk Clean-up tool

Free up disk space by using the CleanMgr.exe command

System

Ask for confirmation

Yes

No parameters

Clear Windows Cache

Free up disk space by removing files under <userprofile>\AppData\Local\Temp for all users

System

Silent

Yes

No parameters

Rebuild Windows Search Index

Rebuild the Windows Search Index to fix searching performance issues

System

Silent

Yes

No parameters

Restart Windows Update Services

Restart all services related to Windows Update to resolve update issues

System

Silent

Yes

No parameters

Clear Windows and Website Credentials

Clear cached Windows and Website Credentials from target machine

System

Silent

Yes

No parameters

Disable Hibernation

Disable Hibernation where this may be a cause of System Crashes

System

Silent

Yes

No parameters

Get Top Memory Processes

Get top 20 processes by memory usage to investigate memory contention issues

System

Silent

Yes

No parameters

Tools Use Cases

Script Name Repository Article Name for Easy Navigation and Search Description Use Case Remedy Silently or Use a Sample Question for User Confirmation Run as System account Is Parameter Used by the Script; Is it Mandatory or Optional
Launch Aternity Recorder

Aternity Recorder

Launch Aternity Recorder to prepare for a recording session to investigate application issues

Tools

Ask for confirmation: Would you like to launch the Aternity Recorder in preparation for a recording session?

Yes

No parameters

Capture User Session Video

Aternity Recorder

Record screen of user's session for two minutes to troubleshoot a performance issue

Tools

Ask for confirmation: Please click OK to start a screen recording, then reproduce the issue. The screen will be recorded for 2 minutes.

Yes

No parameters

Restart Aternity Agent service

Restart the Aternity Agent service if it has become nonfunctional

Tools

Silent

Yes

No parameters