J.J.

Hello in version 9.1.13.0 is fixed to run on Ubuntu 22.04 latest kernels, in changelog Fixed: Compilation of kernel modules fails with latest kernels on Ubuntu 22.04. Latest kernel on Ubuntu in time of release is 6.5, it should work with latest kernel with no issues.

You can list detections of specific on-demand scan by lslog https://help.eset.com/essl/10.1/en-US/events.html

Hello They are not the same version they are different version and that is the exactly what error message says we are looking for sources here /lib/modules/4.18.0-425.3.1.el8.x86_64/ and 4.18.0-425.3.1.el8.x86_64 is the version of kernel what can be seen on screenshot kerel 4.18.0-425.3.1.el8 and kernel devel and kernel headers are different version 4.18.0-425.13.1.el8 kerel-devel 4.18.0-425.13.1.el8 kernel-headers 4.18.425.13.1.el8 Solution is to install headers and kernel-devel of same version for example you can use command yum install kernel-devel-`uname -r` kernel-headers-`uname -r` and than restart the service If they are in the repository it should be possible to install them

Hello This error message means that you don't have installed kerne, kernel-headers and kernel-devel packages of same version, or some of this packages are missing. It is needed to have installed all three packages with matching version. They are needed for compilation of kernel module. To list installed packages you can use: yum list kernel* Once you check the packages you will see what you need to install. This issue is also documented here: https://help.eset.com/essl/10.0/en-US/?realtime_protection_cannot_start.html Thank you

Hello I tested it at my environment and it works as expected and once you disable WAP in gui is red notification like in windows. In your case it could be caused by following policy or setting:

cache and temp directories are: /var/opt/eset/efs/lib/data and everything under this directory /var/opt/eset/efs/lib/data/backup /var/opt/eset/efs/lib/data/cache /var/opt/eset/efs/lib/data/updfiles Access rights should be 755

Hello Nwb Thank you for provided log files. I checked them and there are definitely issues with access rights of logging service, which could be caused by some issue during installation or installation is broken. 09/24/2021 09:41:32 PM,Logging service,Cannot create temporary file: Permission denied,eset-eea-logd 09/24/2021 06:29:30 PM,Configuration service,Cannot write to socket: Broken pipe,eset-eea-confd Regarding to feedback about permissions of tmp it should be ok. But information about missing directories indicates broken installation. In this case I would suggest to uninstall EEA reboot the machine and make clean installation from terminal running binary as root. Also you are using version 8.1.3.0 and we released new service release with performance fixes so, I would suggest to obtain installer of newest version 8.1.4.0. https://download.eset.com/com/eset/apps/business/eea/linux/g2/latest/eeau.x86_64.bin

Hello Nwb please restart the system stop eea service check the folder /var/log/eset/eea/ods/ clean up the log files - delete the log files rm /var/log/eset/eea/ods/* check the permission of /var/log/eset/eea/ods/ (stat -c %a /var/log/eset/eea/ods/) should be 700 check permissions of /tmp/ (stat -c %a /tmp/) should be 1777 in case the permissions are different it is needed to fix the permissions to this folders In case issue will persist please collcect the log files and provide us with log files https://help.eset.com/eeau/8/en-US/collect-logs.html

Hello Fedora distribution is not supported by ESET Endpoint Antivirus for Linux Desktop https://help.eset.com/eeau/8/en-US/?system_requirements.html The following operating systems of 64-bit architecture are officially supported and tested: •Ubuntu Desktop 18.04 LTS 64-bit •Ubuntu Desktop 20.04 LTS •Red Hat Enterprise Linux 7, 8 with supported desktop environment installed. •SUSE Linux Enterprise Desktop 15

Hello Could you please provide us with log files. They will be needed for investigating the issue. It is needed to enable ECP logging as mentioned in following article, activate product with error, and than collect the log files using collect_logs.sh script. https://help.eset.com/eeau/8/en-US/collect-logs.html Thank you.

Hello You can find packages for Suse here: https://software.opensuse.org/download/package?package=glibc&project=openSUSE%3ALeap%3A15.2%3AUpdate

When you don`t use ESET Protect and Policies or Web interface in ESET File Security for Linux also same applies for ESET Endpoint Security for Linux You can export settings using /opt/eset/efs/sbin/cfg --export-xml=filename.xml And edit following section and than import xml file set value to 1

Hello JasonLFL Thank you for provided log files. I checked them and it looks there are more issue at this machine: 02/15/2021 10:05:39 AM,Real-time protection service,Syscall init_module returns error: Operation not permitted,root 02/15/2021 10:05:39 AM,Real-time protection service,"Initialization of system handler for on-access scan has failed. Please update your OS and restart your computer, then check system logs.",root 02/15/2021 10:06:40 AM,Updating service,Error updating Antivirus modules: Update information is not consistent.,eset-eea-updated 02/10/2021 02:27:21 PM,Updating service,Error updating Antivirus modules: Update information is not consistent.,eset-eea-updated 02/10/2021 03:02:36 PM,Licensing service,Cannot receive data from server: Network is unreachable,eset-eea-licensed 02/10/2021 03:02:36 PM,Licensing service,Cannot receive data from server: Network is unreachable,eset-eea-licensed 02/04/2021 12:22:02 PM,Licensing service,Cannot read from file /var/opt/eset/eea/licensed/license_cfg.json: Permission denied,eset-eea-licensed 02/04/2021 12:22:02 PM,Real-time protection service,Syscall init_module returns error: Operation not permitted,root There are issues with access rights and also with reaching our update servers and modules update. It could be caused by installing the product with lack of privileges etc. I would suggest to uninstall it and install with root privileges. And also check connection to our servers. Here you can find which ports and IPs needs to be reachable: https://support.eset.com/en/kb332-ports-and-addresses-required-to-use-your-eset-product-with-a-third-party-firewall Also issue could be caused by secure boot please check if it is enabled. In case it is enabled it is needed to disable it because secure boot is not supported. You can use following commands to check the state of secure boot: sudo apt-get install mokutil mokutil --sb-state

Hello Could you please provide me with the file name, I will need it to identify the file with log files. Please send me the file name via PM. I will check the logs and let you know. Thank you

Hello Could you please provide us with log files from affected machine? To collect log files please follow instructions in manual: https://help.eset.com/eeau/7/en-US/collect-logs.html Upload log files to ftp.nod.sk/support/ And provide us with information about file name. Also recommendation I would suggest is to completely uninstall product, check if you have installed krenel, kernel-devel and kernel-headers in same version for kernel which is actually in use. Thank you.