VladimirVladimir

Hi regarding the SIEM. We do not have any plugins/APIs for such products. But we are happy to hear any details regarding such requirement. Which specific SIEM tools are you interested in? what would you like to manage/configure/monitor from such tool? do you prefer a dedicated API, or also specific plugins are required? Thanks regards v.

Hi there 1. We have a feature called IP range whitelisting where you can define IP ranges from which second factor is not required (see product guide for more details) 2. Importing phone numbers is up to the AD capabilities. ESA just utilized the AD functionality. I presume, AD has an option to import data in bulk. 3.We internal product logging for (product logs) some of the user login activities. But there is not a dedicated UI for accessing such information. Also administrator can find last successful login and last failed login per each user in the AD tab of dedicated user (see attached screenshot). 4. Not sure if I understand. ESA has a security mechanism to lock user after certain amount of unsuccessful login attempts. ESA does not have a capability to set policies. 5. ESA has an API. please find details in product documentation. User guide API guide regards vladimir

Hi ESA support ADFS 3.0 (included in Win2012R2). Product manual: https://download.eset.com/com/eset/apps/business/esa/windows/latest/eset_esa_product_manual_enu.pdf regards vladimir.

Hi there Yes. This Thursday. regards v.

Hi this could happen if you checked "remember password" on the client. Which means it tries to log in with the same password (One time password) again and again. vladimir

Hi you can activate ESA (second factor) for any specific user in Active Directory You can protect the endpoint (server/PC) in two ways: By protecting the local login with a second factor or by protecting RDP connection with a second factor (if the user who is logging is enabled for 2FA). In both scenarios, ESA plugin for RDP/local login (just the plugin, no need to install auth server and management tools – on every machine) must be installed on each machine you want to protect (and activate 2FA for users accessing the machine). Regarding the Authentication server and management tools, its ok to have it installed only on one server in the domain. Yes regards vladimir

Hi not sure what version of product manual you have. But I meant this part: see the screenshot. Product manual LINK Several things could went wrong, its hard to say but: as mentioned, official support for Server 2016 will be from ESA 2.6, so there could be some issues in general you need to install core service and management tools, then install the proper plugin and at the end, provision users for 2FA. But from your screenshot I do not see the plugin installed, so definitely something went wrong without a proper installation logs I am not able to investigate further. Could you please contact your local support, send them appropriate logs - they will take it from there and help you resolve this issues. Please mind the fact, these issues may be caused by product being installed on unsupported version of the OS Regards v.

Hi If you already have the core service installed in the domain, and you want just add the plugin (desktop login) on the endpoint machine, you should check just the plugin, not the core service. Then no RSAT will be required. regards v.

Hi 1. At he moment, we do not officially support Server 2016. We are planning to add official support with the release of ESA 2.6 planned at the end of March 2017. Essentials should also be supported. 2. ESA could be installed on any server in the domain. The particular system also need to have RSAT installed. 3. If you want to protect just RWA then you should check only that. But I also advise you to look for chapter 11.3 in Product manual - focusing in more detail when you combine RDP and RWA. regards v.

Hi there New iOS app (64bit compliant), including push will be release at the end of March 2017. regards. v.

The plan at the moment is to have it released at the end of March 2017.

Hi Rudolf It seems, that probably, we will be able to bring support for Microsoft Sharepoint Foundation 2013 in the upcoming ESA release. regards v.

Our UK branch/office will receive your ticket and handle it properly, i.e. re-route it to HQ if necessary. They will also ask you for relevant inputs. But I also personally reach out to UK office to notify them about your issue. And found your ticket (all three of them) in our system. They will contact you about the next steps. regards v.

Hi, I have talked with the development team about your problem. To be able to help you, we need you to create an official support ticket. Logs before and after the failed login will be required among other things to analyze the problem. Are you able to create such ticket with the help of the reseller/partner? regards v.

Hi Rudolf please ask your local partner or channel manager to contact the Product manager of ESA directly (he would know who is responsible for ESA). Please also share the opportunity details (how big is the opportunity etc.) you are talking about with him, so I can use the data to prioritize the requirement. As I do not want to discuss the specifics in this open forum. Yes, whitelisting issue was added on March 2016. Thanks again for the feedback I really appreciate that you consider ESA one of the best solutions. v.

Hi Rudolf We do not support Sharepoint foundation. Also we did not support it in the past. This fact is also stated in the Product manual. It is interesting you was able to make it work. I presume, you are a reseller/partner of ESET. Are you able to provide us via your dedicated channels details about the opportunities you are mentioning? This kind of information will help us better grasp the urgency and prioritize such requirement in the future releases of the product (incl. the feasibility of such requirement). thank you regards. v.

Hi there, do you have any specifics in mind what do you want to protect? But in general ESA offers Login protection for Linux. This can be achieved by using a RADIUS PAM module which can make use of ESA RADIUS server. Administrators can add the second factor to any Unix-like system (Linux or Mac OS X) to protect local or remote (SSH) logins. If you are asking about supported environments than ESA runs in Windows environment. regards v.

Hi Simply, no. You are not able to set timeout values. But, this may be caused also by other things such as configuration of RDP web itself (e.g. https://social.technet.microsoft.com/Forums/windowsserver/en-US/2ab2bec7-a0ab-4840-9089-d59b3c5cf940/rdweb-timeout-sessions?forum=winserverTS). Can you please ask you reseller to create an official support ticket for this one? So support can look into it, rule out the non-ideal configurations and if applicable create an improvement request for the future. thanks v.

The screenshot represents actual reality. Stock browser is listed as supported, chrome is not supported due to known issue I have mentioned earlier and firefox was never support by EESA so that´s also correct.

Thanks a lot for the detailed feedback. We will look into it with the dev team to find out if this is a normal behavior or a bug. Regarding the Anti-Phishing: We have never supported Firefox. Anti-Phishing integrates with the most common web browsers available on Android OS. In general, Anti-Phishing protection is available for stock browsers that come as pre-installed on Android devices. Chrome is also supported except on Android 6 (due to changes executed by Google) – we are currently working on the fix. Thank you for your patience.

Hi Unicav please add also information about how often does these messages pop-up. Separately for "communicating with live grid" and "ESET Scans every web page", so we are able to identify if this is a normal behavior or not. thanks v.

Hi Said, Adding basic guide on how to setup AD FS + Office 365: LINK regards v.