Jump to content

Leaderboard

Popular Content

Showing content with the most kudos since 10/27/2020 in all areas

  1. Marcos

    DotNet MSIL / Injector.VGR

    We've nailed it down. A legit tool was backdoored and loads a malicious dll with zero detection at VT which loads the following encrypted payload: I expect the detection to be available momentarily via streamed/pico updates. Also please confirm that you have enabled the LiveGrid Feedback system for maximum protection.
    5 points
  2. SeriousHoax

    antivirus version 15.0.6

    One thing that I don't like about LiveGuard is that it seems to send every new file created on the device to LiveGuard upon execution. Even if it's an old, trusted and safe file. As you soon as I try to execute a new file that wasn't on my device before, ESET sends that to LiveGuard. Eg: If I just extract a newly downloaded 7zip installer from a zip file where the installer exe is trusted by literally every AV, as soon as I execute it, it gets blocked and submitted to LiveGuard for analysis. What's the point of this? A ESET's reputation check shows that the file is old with reputation status being Fine & green and the number of users is also high with a green mark. ESET should feed from this LiveGrid status and determine that the file is trusted, whitelisted and not necessary to submit it to LiveGuard for analysis. This alone would massively reduce the load on LiveGuard's server. This type of unnecessary submission needs to be avoided. Kaspersky and Norton makes use of their cloud reputation appropriately, which is something ESET is not doing here. The LiveGrid reputation should mean something. The LiveGrid and the LiveGuard combo should communicate with each other to determine what needs to be submitted and what not. Otherwise, LiveGuard servers are going to be bombarded with excessive unnecessary submission. Unnecessary submission is going to annoy even expert users.
    4 points
  3. itman

    antivirus version 15.0.6

    I just checked U.S. prices for Eset. ESSP costs $10 more per year than EIS. As such and for me personally, the increased price is not a major factor. This important LiveGuard feature being included only for ESSP does "leave a bad taste in my mouth." For starters, Eset should have had LiveGuard capability in its consumer product versions long ago. Like feature capability has existed for some time in Eset competitor consumer products as you noted. This includes Microsoft Defender that doesn't cost anything. I also have no need for the extra features ESSP provides and feel upgrading to it for LiveGuard capability is shady marketing tactic. It also should be noted that EIS costs on the average, significantly more than its competitor's equivalent products. Bottom line to Eset - include LiveGuard in EIS or be prepared for a significant loss of your existing EIS product base.
    4 points
  4. Marcos

    Detections Actions Error

    The issue is caused by an older version of the Translation support module. On Monday we should start with upgrade, however, it will require a restart of the ESET PROTECT Cloud instance.
    4 points
  5. Marcos

    Website is clean now

    This forum is not intended for disputing blocks or detections. Since the malware has been removed, the website was unblocked but the applications will continue to be detected. Having said that, we'll draw this topic to a close.
    4 points
  6. the world is rocked by the horrifying news of how despotic authoritarian governments and their agencies have used the spyware pegasus made by NSO from israel to intrude the phones & privacy of journalists/opposition leaders/judges/activists etc. from all accounts, it is now becoming clear that the two primary operating systems on phones, android & ios by google & apple have intentional backdoors disguised as security bugs to allow the security agencies to snoop into any smart phone worldwide. my question is, as a responsible antivirus vendor, will eset ever be able to protect the users from such illegal intrusions ? is it ever possible, considering that the OS itself has been laid bare to such intrusions by incorporating "security bugs". phones, especially the smart phones are are no longer secure, but the stunning silence of all AV vendors is even more cause for concern.
    4 points
  7. itman

    Customer satisfaction survey 2021

    Comments: 7). Will not renew my EIS subscription unless LiveGuard capability is provided in EIS to block and submit for cloud scanning all locally detected suspicious Eset detection's. That is all currently files being submitted to LiveGrid but allowed to run. 8). LiveGuard in ESSP currently does not include the ability to set detection confidence levels and receive a suspicious verdict based on those levels as exists in EDTD. This would also include a display of suspicious factors found. 9). HIPS file wildcard specification capability that I have asked for years.
    3 points
  8. Hello ESET Endpoint Security / Antivirus users, We are pleased to announce the availability of ESET Endpoint Security / Antivirus 9 BETA for public testing. The new generation of ESET Endpoint products for Windows brings new features and improvements, let us briefly describe the most visible ones. Auto-update – This feature improves the upgrade experience for administrators and makes keeping ESET products on latest version easier. It is enabled by default and works out of the box. Technology was present in Windows Endpoint version already 8.0, EULA approval was replaced with EULA notifications. Brute-force attack protection - Evolution of reputation and blacklist-based password-guessing defense technology, providing further protection for RDP and SMB protocols in business networks. Official ARM64 support for both EES and EEA for Windows on ARM ( Secure Browser, Machine learning protection and Deep behavioral inspection features are not available for ARM64 platform in this version) The new features mentioned are not manageable by ESET PROTECT management console as of now. Please check also the list of Known issues for the first public BETA build, we believe the severity of those is very low so they should not affect your user experience much Device Control: Printing task stays in printing queue when printer is blocked Audit logs contain strings "FeatureId", "OldState", "NewState" Web control: Warn action does not work properly for some websites Secure Browser: Ask me option available for websites in list Secure Browser: Some websites are not loaded correctly in secured browser instance Device Control: Some bluetooth devices are not listed in Populate of Device control The ESET Endpoint Security 9 BETA and ESET Endpoint Antivirus 9 BETA builds are available for download at https://forum.eset.com/files/category/4-ees-eea-9-beta/ Both .msi and .exe installers are available and the ARM64 version for Windows on ARM too. We are looking forward to hearing your feedback and experience with the 9th generation of ESET Endpoint products. For your questions and issue reports, please use this forum directly. As usually the build is in BETA quality so by downloading and using it, you agree with our BETA program agreement, which is available at https://forum.eset.com/files/file/31-eset-beta-program-agreement/ After a week or so of BETA testing, please fill out this short survey for us https://survey.eset.com/index.php?r=survey/index&sid=798153&lang=en so we can evaluate the BETA program and make our offering even better for you. Thank you in advance. Peter Randziak on behalf of teams involved
    3 points
  9. I hate when things are changed for the sake of change. I like that ESET maintains the same interface throughout multiple versions and yearly updates. Antivirus isn't like an ide that you maybe staring at for a while. It should sit in the background and rarely be interacted with. Last thing anyone should want to do is waste 10 minutes looking for a setting because the interface has been updated.
    3 points
  10. ESET is a vendor of antivirus software and as such should have a consistent interface with only minor changes over the time to avoid confusion by users after upgrading to newer versions. Moreover, users should not keep the AV's gui open often, watching it for a long time so adding visual effects does not matter unlike in the case of operating system for instance which must attract home users. Last but not least, I'd like to remind that this topic is intended for posting suggestions. It's not for lengthy discussions which would spoil it. If you have a comment or want to discuss something, please create a new topic.
    3 points
  11. I wonder what you guys meaning of all of this, LiveGuard was introduced probably because there was need for 0-day protection and also Smart Security lacked something special that differs it from Internet Security The complaint here is that LiveGuard does take 1-10 minutes inorder to process what has been sent to Cloud and with that time it's blocked till it gets approved by ESET, even also as been reported that Signed files are even reported and uploaded, Let's not forget that before a while there was an article about Microsoft signing drivers which in the end was a malware LiveGuard is a kind of sandbox analysis server that is available for Smart Security products, which is normal thing for a sandbox to take time to process and analyze and send back information, there was a complaint before that LiveGrid doesn't block/prevent because it didn't have an update for a kind of file/threat , now that what LiveGuard is doing , it's blocking a file that it never seen before , which what people requested in order to prevent never seen before Ransomware files For sure a new feature , it would contain bugs and need to be fixed and optimized more and so the servers are , even if one will go and have EDTD and one endpoint for it , it would take the same amount of time for analysis And probably LiveGuard is powered by EDTD so would be same same. LiveGuard is very nice addition by ESET , it can be fixed and optimized more for sure and I believe by the time passes it's database will be bigger and better, it's still the first public version for it , but for the question to use it or not , well Internet Security is still there if answer is not.
    3 points
  12. The user must choose whether to enable or disable the LG feedback system. We cannot enable it automatically for legal reasons:
    3 points
  13. SeriousHoax

    antivirus version 15.0.6

    This is similar to Avast's (and AVG) CyberCapture feature, which is available even in the free version. The difference is that cybercapture is dependent on the Mark of the Web similar to Microsoft's Block at First Sight feature, while it seems with ESET it's for every file that is not known to ESET. So this is a nice feature and a good addition. But I can't really justify the decision to not include it in the Internet Security version. ESSP is ridiculously expensive. LiveGuard should've been made available to both EIS and ESSP.
    3 points
  14. When using the auto update feature, the upgrade is first applied at reboot, so it will continue to be fully protected by the old version until you eventually reboot the device which is then upgraded
    3 points
  15. The bug is just visual and should not have any noticeable effect on memory consumption. Will be fixed in v15.
    3 points
  16. This was never resolved for us. The recommendation to turn on advanced logging was of no use as the reboot cleared the problem on that computer. Randomly happens every few days. I chatted with ESET Support and no one can give me a resolution. Very annoying.
    3 points
  17. Tell me, Eset - are you insane? A few days ago you released version 8.0.2039 . We started a rollout for a few thousand endpoints and now you releasing 8.1.2031??
    3 points
  18. Hi, the problematic domain you reported has been already removed from the cloud blacklist. The quickest way to solve such cases is to send the email sample to nospam_ecos@eset.com (https://support.eset.com/en/kb141-submit-a-virus-website-or-potential-false-positive-sample-to-the-eset-lab#spam) as those are handled almost immediately. Also based on the sample we have identified a problem in the algorithm that selects the sender's address from email headers in some cases (Return-path: header), and it will be also addressed by an automatic update. Regards, Matej
    3 points
  19. Component upgrade task upgrades only ESMC/EP components, as is ESET Management Agent, ESMC Server and ESMC WebConsole, but it does not upgrade other, especially third-party components as is Apache Tomcat, Apache HTTP Proxy or MS SQL Server. Thus benefit of performing manual upgrade using all-ine-one installer for Windows, or performing upgrade ot EP/ESMC Appliance using "migration" to new version, is that also third-party and and possibly other support tools are upgraded. Also note that manual upgrade is less prone to failures caused by environment issues, as are those network related, but also those caused by missing dependencies (for example minimal supported version of OS or database itself). My recommendation would be to perform manual upgrade, as it is fairly simple from users perspective, and it offers more control. Also I would recommend to perform database backup before doing so, but hat should be case also for automatic upgrade.
    3 points
  20. Marcos

    MacOS 11 Update Issues

    We are in the process of finalizing a new version of Endpoint with all system extensions compatible with Big Sur 11.2. It should be released towards the end of March.
    3 points
  21. Primordiarch

    2FA for my.eset.com

    Hello. Please add 2FA feature on my.eset.com. Thanks.
    3 points
  22. Hello @Kostadin_k, EFDE for mac utilizes FileVault because there is no other way to FDE macOS. Apple prevents its system to use FDE from 3rd party vendors. EFDE for win is a different story. Microsoft allows for vendor´s proprietary encryption and we have this covered. So we are pretty much covered on both macOS and Windows. But yes, adding Bitlocker management to ESET Protect (Cloud) is an option, but even if we go this direction in the future, it will not work as seamlessly as you described. Taking over management of an already encrypted machine is more than complicated because of recovery password that belongs to a particular encrypted system. Migration of these recovery passwords from Active Directory (where Bitlocker stores them) to our console followed by a seamless "takeover" of the machines by the console is very complicated (if even possible). At this moment, adding management of Bitlocker to our EFDE/EP(C) solution is not on our roadmap. Ervin Rendek PM for Encryption solutions
    3 points
  23. When we update our ESET Agents we find that we need to have all our machines reboot. With the reboot option in the management console the machines just reboot with no warning. Any open work is lost and the user is confused, thus generating a call to the help desk. Would it be possible to have a reboot notification when pushing a reboot on a machine. ESET is finishing an update and will reboot in 30min. Reboot later or reboot now. I reached out to support and was told to post this request here.
    3 points
  24. Today (February 25) we plan to release a Detection engine update with expected size around 12,2 - 12,4 MB. We expect that the update will be available on the update servers for the clients to download at around 14:00 CET (+/- 30 minutes). This change will optimize the way how we store the data and will reduce the Detection engine size, it's memory footprint and also will make further updates smaller. The Micro updates scheduled on February 26 will have the weekly update package around 13 MB in size and the monthly update package up to 15 MB. Peter on behalf of the teams involved
    3 points
  25. Problem fixed. Windows server updates had reactivated a couple of services which had nabbed port 80. Simply disabling them negated the issue. I'm now planning on moving the EEE server onto a different port to resolve the issue permanently during the downtime over the weekend.
    3 points
  26. Hi Thomas, My solution is the following: 1.: - I created a dynamic group for collect the computers with error message "Restart required" : 2.: - Then I defined a CRON triggered task for send a pop-up window message into the affected computers: "Hello Collegue, please restart your computer as soon as possible because an ESET software update...bla..bla" or something like this You can configure the CRON for example launch the message hourly, every 10 minutes or as you want It works pretty fine
    3 points
  27. Avast blog article here: https://blog.avast.com/cybercapture-protection-against-zero-second-attacks . Detail on configuration options here: https://support.avast.com/en-us/article/54/ Of note is this feature exists even in Avast free version. Time Eset "get with the program" and offer same like capability for their home use products.
    3 points
  28. The fact is Eset has all the internal mechanisms in place to accomplish this. All they have to do is block the process until LiveGrid black list determination processing has completed. As to the false positive element, I say "to hell with that." Most home users would not be significantly impacted by such process blocking. This could be also further refined by adding Trusted Publisher, signing, etc. criteria to Eset Reputation scanner. Failure on reputation coupled with suspected malicious activity should be enough to block until LiveGrid initial scanning is completed.
    3 points
  29. We are aware of the problem with Windows applications and the changing path with each update. There is a plan to come with up a solution to this in long term. Also I can assure you that we value any constructive feedback or suggestion and it's discussed with product managers and developers.
    3 points
  30. This was in Cloud Administrator topic but should be here too Description: A new task/setting to reboot computers with a popup message warning,Detail: Add the possibility to notify user that computer will be restarted when reboot computer task is triggered and let them for example 5 minutes to save/close programs/data.
    3 points
  31. I will add to what marcos has put above by adding over the years, new features have been introduced e.g. ransomware protection, network device monitoring and just with the new version 15, ransomware shield. I have seen other AVs in the past change their UI each year and sometimes it felt like a way to hide there wasn't much new. While I always like to try new versions and see changes, changing the UI just because makes no sense. If it is for making things easier then fine but just to change the look could cause more issues. I'd much rather see Eset add more features over changing the interface
    2 points
  32. itman

    antivirus version 15.0.6

    Let's "cut to the chase" in regards to Eset's cloud scanning. As shown in the diagram in this article: https://help.eset.com/edtd/en-US/overview.html , Eset is using Microsoft's Azure AI servers. Microsoft will gladly allow anyone who so desires use of those servers. Obviously, this use is not for free. The question however is just how expensive is their use? There is a low budget developer who markets a security product add-on named VoodooShield: https://voodooshield.com/ which is popular with participants of the security forums; e.g. wilderssecurity.com. This product also uses the Azure AI servers. There is both a free and a paid version of this product. As far as I am aware of, both the free and paid versions use the Azure AI cloud servers.
    2 points
  33. A little off-topic, but it's great to see you around @m4v3r1ck 🙂
    2 points
  34. Eset revoked cert. detection is correct - see below QUALS screen shot. Note! Chryslercaptia.com URL cert. is OK. It is the cert. used for myaccount.chryslercaptial.com URL that has been revoked.
    2 points
  35. sesk

    ATP Toronto

    eset is sponsor ! 👍
    2 points
  36. It would not let me use my protonmail address. @pm.me The email: I had a home license I think, but it's now a business license. I upgraded because, why not? If that is what it's going to be, then fine. But there are no options, you cannot even manually scan. I have a brand new machine 5800x 32gb ram and nvme drive. It's very fast. Until today lol. It takes like 30 seconds to open terminal. Neofetch took almost a minute to grab info vs about a second before. I use PopOS 21.04. I will DM you the license.
    2 points
  37. The free version of ZoneAlarm definitely has been using the Kaspersky engine for a while: https://www.pcmag.com/reviews/check-point-zonealarm-free-antivirus-plus . The paid consumer and enterprise versions use more Kaspersky components: http://svendsen.me/worried-checkpoints-use-kaspersky-products-heres-disable-remove/
    2 points
  38. Hi Gang, Components: ESET Protect (8.0.2225.0) ESET Endpoint (8.0.2039.0) As part of a task, we install a specific version, in this case Endpoint 8.0.2039.0. This let's us ensure that all nodes are at least on the same version and potentially avoid any niggles by always going on the latest. However, ESET Protect always sees the latest version? This is currently Endpoint 8.1.2031.0. Thus ESET Protect now shows in the status dashboard that all our Endpoint nodes are now out of date. My question, how do we baseline or set a static version so that ESET Protect is not always referring to the latest version? I'd rather us determine what level we deem is up to do. I thought I achieved this with the task for installing Endpoint but that seems not to be the case. This is what I am referring to: Thank you, Daniel
    2 points
  39. Nightowl

    Dark Mode!

    It's not yet supported that's why you cannot use it
    2 points
  40. This is not possible without downloading the whole msi installer. After a microPCU update has been applied, the Repair option changes to Export.
    2 points
  41. Hello @Ufoto As of now, this is indeed not possible. I assume, that you are a reseller, and you have more than one customer, that has their own EPC instances. As of now, you will have to have a different aliases for every such instance, as one "EBA USER" can be linked only to one EBA instance, and one EPC Instance. We are working on a new reseller focus portal, which will allow you to have a "service level login" to all your customers EPC instances. So yes, there is plan to add multi instance access, however I can´t confirm exact timeline at this moment. But our target experience is similar to the one you are referring to. Regards, Michal
    2 points
  42. If your license is not restricted for use to a specific country and works, you don't have to do anything. When it expires, you can purchase a new license in your current country. If you would like to keep the existing license and purchase a renewal, you'd need to ask your previous license issuer to transfer your license to the ESET partner in your current country.
    2 points
  43. Marcos

    Secure Browser Warning

    It's caused by a bug in an internal notification system triggered by installation of a new version of the eelam driver by a module that is being gradually released in batches. The bug in the internal notification system will be fixed in the next Endpoint v8. Rebooting the machine should clear the notification.
    2 points
  44. Hello guys, thank you for your reports, I checked it with the QA and Dev, they are aware of this issue. Once the upgrade fails, can you please collect the logs as described at https://support.eset.com/en/kb3404-use-eset-logcollector-on-macos-and-send-the-logs-to-eset-technical-support?ref=esf upload them to a safe location and send me a private message with the download details and reference to this forum topic? Once you do, the work-around is to disable the Web access protection to apply the upgrade. We apologize for the inconvenience caused, Peter
    2 points
  45. Same problem here (Dropbox v111 - the lastest stable to the date). On the second computer, no problem with Dropbox v112 (early updates enabled). It's apparently a problem on Dropbox side since they have release the version 112 fixing this issue: https://www.dropboxforum.com/t5/Dropbox-desktop-client-builds/Beta-Build-112-3-254/td-p/476277 If you cannot update to Dropbox version 112, you can temporarily set Dropbox client to ignore in SSL/TLS filter.
    2 points
  46. itman

    I Am Very Ticked Off!

    Why did I anticipate this was going to be the answer? So let's analyze this. I have been an Eset customer since 2014. Not only do I pay a full license renew price, but the renewal price is considerable higher that a new license price. So it appears Eset's sales strategy is "to sock it to" their existing customers so they can lower the price to entice new customers. This might be for me "the last straw that permanently broke the Eset use back." Also considering the amount of time I spend on the Eset forum helping others, I should receive a free Eset license each year!
    2 points
  47. According to https://support.eset.com/en/news7604-eset-support-of-macos-11-big-sur, a version compatible with Big Sur that will include a firewall is planned for Dec 2020:
    2 points
  48. This is my Dynamic Group rule.
    2 points
  49. I had some issues configuring Active Directory integration (Kerberos etc.) with ESMC so I decided to do a write-up on what I did to get it working. This is for Ubuntu Server 18.04 but it should be applicable to other Debian based distros, adjust where required. Let's assume we have the following environment: ESMC Linux Distribution: Ubuntu Server 18.04 ESMC Hostname: esmc ESMC FQDN: esmc.test.local ESMC IP Address: 10.123.1.2 Active Directory Domain: test.local NetBIOS Domain: TEST Domain Controller: dc.test.local (10.123.1.1) ESET ESMC AD User Account: eset.esmc@test.local (eset.esmc) Ensure the required Server prerequisites (v7.2) are installed. sudo apt-get install krb5-user ldap-utils libsasl2-modules-gssapi-mit samba Configure Samba at /etc/samba/smb.conf Ensure you change workgroup to the NetBIOS Domain, netbios name to the ESMC Hostname and realm to the Active Directory Domain. The following configuration is based on one found in ESMC VA v7.2 [global] workgroup = TEST netbios name = esmc server string = Samba Server Version %v security = ads realm = test.local domain master = no local master = no preferred master = no socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=131072 SO_SNDBUF=131072 use sendfile = true idmap config * : backend = tdb idmap config * : range = 100000-299999 idmap config TEST : backend = rid idmap config TEST : range = 10000-99999 winbind separator = + winbind enum users = yes winbind enum groups = yes winbind use default domain = yes winbind nested groups = yes winbind refresh tickets = yes template homedir = /home/%D/%U template shell = /bin/bash client max protocol = SMB3 client use spnego = yes client ntlmv2 auth = yes encrypt passwords = yes restrict anonymous = 2 log file = /var/log/samba/log.%m max log size = 50 load printers = no printing = bsd printcap name = /dev/null disable spoolss = yes client ipc signing = auto Configure Kerberos at /etc/krb5.conf Ensure you change default_realm to Active Directory Domain (Must be capitalised) and the realm definition Active Directory Domain (Must be capitalised). Ensure you specify your Domain Controller as a kdc under the realm definition for your Active Directory Domain, if you have multiple Domain Controllers, specify multiple kdc's. Ensure you map Active Directory Domain (prefixed with ".") to the realm name (Your Active Directory Domain but capitalised) under domain_realm. The following configuration is based on one found in ESMC VA v7.2 [libdefaults] default_realm = TEST.LOCAL ticket_lifetime = 24h forwardable = true [realms] TEST.LOCAL = { kdc = dc.test.local } [domain_realm] .test.local = TEST.LOCAL Configure DNS Resolution. systemd-resolved can cause issues with Kerberos, it can probably be worked around but disabling it as follows also works. sudo systemctl disable systemd-resolved.service sudo systemctl stop systemd-resolved Configure /etc/resolv.conf Specify your Domain Controller as a nameserver, create additional nameserver definitions for each Domain Controller. Specify Active Directory Domain for search nameserver 10.123.1.1 search test.local Ensure Hostname is set correctly If you need to change your hostname, you can use: sudo hostnamectl set-hostname esmc.test.local Configure /etc/hosts Add your ESMC and your Domain Controllers to the hosts file. Take note of the ordering of FQDN and aliases after the IP Address as net join will use the first defined alias for your host as SPNs etc. when joining the system to the domain. All values are tab separated. 127.0.0.1 localhost 10.123.1.2 esmc.test.local esmc 10.123.1.1 dc.test.local dc Configure Time Synchronisation By default, the maximum tolerance for computer clock synchronization for Active Directory Kerberos participants is 5 minutes from a Kerberos Key Distribution Center (KDC; in our case, the Domain Controller) to operate correctly. If ESMC is in a VM, you may already be using a Hypervisor with some VM Agent that handles this but, if not, then systemd-timesyncd should suffice or you can use ntpd. Let's assume you use systemd-timesyncd: Configure /etc/systemd/timesyncd.conf NTP Server addresses are separated by spaces. specify each of your Domain Controllers [Time] NTP=10.123.1.1 Ensure systemd-timesyncd is set to sync and force it to resync. You should see a log entry that it "Sychronized to time server 10.123.1.123" as per your configuration. sudo timedatectl set-ntp on sudo timedatectl status sudo systemctl restart systemd-timesyncd.service systemctl status systemd-timesyncd.service Join System to Domain If you have Webmin you can use Rejoin Domain (VA v7.2) but it more or less just runs the following command (Replace Administrator with an authorised AD User that can join systems to the domain): sudo net join ads join -U Administrator This relies on a correctly configured /etc/smb.conf You will probably want to move the resulting Computer object this creates in your domain from the default Computers OU to a more relevant OU given your OU hierarchy design in your domain. Setup Mapped Domain Security Groups under Access Rights in ESMC Configure Active Directory under Advanced Settings in Server Settings (v7.2) Map Domain Security Groups and assign Permission Setting Map Domain Security Group users (v7.2) Setup a Static Group Synchronization Server Task in ESMC Synchronization mode - Active Directory / Open Directory / LDAP (v7.2) Setup a User Synchronization Server Task in ESMC User Synchronization (v7.2) Troubleshooting The following can be used to test Kerberos login and LDAP GSSAPI whilst showing debug information, useful for troubleshooting. It destroys and existing Kerberos tickets for your user, obtains a Kerberos ticket for the specified AD user, lists obtained Kerberos tickets then performs LDAP Search by authenticating with GSSAPI. When troubleshooting Kerberos, you should always check the system time with the relevant Domain Controller (KDC) to ensure they are within 5 minutes of each other (by default). Replace eset.esmc with the AD User Account that ESET ESMC will connect under. Replace dc.test.local with your Domain Controller. Replace DC=test,DC=local with the Distinguished Name (DN) of the Base OU in your Domain where you want to list all child Computer objects of. kdestroy KRB5_TRACE=/dev/stdout kinit eset.esmc klist -f KRB5_TRACE=/dev/stdout ldapsearch -LLL -Y GSSAPI -h dc.test.local -b 'DC=test,DC=local' '(&(objectCategory=computer))' 'distinguishedName' 'dNSHostName' @tomasS @Peter Randziak
    2 points
  50. Unfortunately it's by design. The plug-in writes information about scan to emails which causes the unwanted behavior. This will ultimately change with a new Outlook plug-in that will be most likely introduced next year.
    2 points
×
×
  • Create New...