Jump to content

jdashn

Members
  • Posts

    109
  • Joined

  • Last visited

  • Days Won

    1

Everything posted by jdashn

  1. Thanks MartinK! Was just wondering if you'd had a chance to ask anyone else regarding if it's possible/advisable to set the target of the Apache Proxy cache to a dfs location as the traffic over our WAN for installs can be a limiting factor in getting updates pushed out to our clients in a timely manner? It looks like over night i was able to get the apache proxy setup, but I believe there may be some issues, when i set the following setting: hxxp://help.eset.com/era_install/64/en-US/index.html?efficient_usage_of_apache_http_proxy.htm After setting the above setting, the server states it's no longer able to access the ESET repository. I'm going to guess that this setting is for the ESET proxy? or for usage if you've got a web proxy setup for internet access in general? From the instructions it seems that this is part of what you do to get the apache http proxy setup? Is there a way with the apache http proxy to limit the items you get from it to just application updates and i can use the mirror tool for DB updates (I know the mirror tool can handle it's target file location being a dfs share, at least thats what it looks was being done for our 5x install. Thanks again!! Jdashn
  2. MichalJ Thanks for your reply. Is there a way to script the execution of a task? (ERAServer.exe -scan ScanWithCleaning -endpoint XXXCompName -trigger ASAP) Even if it's by Direct manipulation of the DB i could then use 3rd party tools to limit access to the scripts i create? At least this way I can allow my Helpdesk to preform some functionality without having to provide them with the ability to do just about everything. It seems odd that i'm not able to allow my Helpdesk to Initate a full scan, while not allowing them to install/uninstall software/agent or run commands against the os it's self. Thanks a ton!!!! Jdashn
  3. I got this information from here: hxxp://support.eset.com/kb3639/?locale=en_US When to start using Apache HTTP Proxy? Based on our practical tests, we recommend you deploy Apache HTTP Proxy if you have a network of 37 or more computers. Review the simple comparison below of downloaded update data in a month's time using direct internet connection in comparison to Apache HTTP Proxy: Looks like the 37 number is refrenced in a few different locations: hxxp://help.eset.com/era_install/64/en-US/index.html?difference_connectivity.htm bbahes Thanks a ton for your answers!! I had thought the mirror option was no longer available in v6. the proxy information is the same as i've seen for the most part. Unfortunately the WAN traffic caused by having the updates happen on a server in our DataCenter would cause difficulty with many of our remote sites. Which is why we need to place these files on our DFS. It looks like the Mirror functionality would work, but only will work for DB updates, not for application updates. A little further poking around and i see that under the 'Software Install' task i can specify my own url -- it looks like my best bet is to MANUALLY setup dynamic update groups based on OS and to, in advance, download and setup the shares for the install files myself. in essence, creating my own software mirror. Unless someone out there knows of a way i can set the cache location of the Apache proxy to a network location. I too understand why a company would see the benefit of moving a feature off to a 3rd party. I don't, though, see the benefit to the customer, considering the reduced support, knowledge regarding the product. Jdashn
  4. Good Morning/Afternoon/Evening, A little background, we have 2000+ endpoints we manage via ERA. Recently migrated to version 6x from 5x. In looking at the security setup for ERA, i've noticed that it's not as granular as i'd like. I'm hoping there is just something here i'm missing. I see how we can integrate into AD, which is great - I've got an AD group for our Helpdesk users - the issue i'm seeing is that i'm unable to assign them the permissions i'd like to, as far as i've been able to see. Ideally i'd like to allow the Helpdesk to initiate a full scan on a machine, Deploy Agent, Delete computer (when it's pulled from production for a re-image or what not), I'd like for them to be able to create and run display message tasks. -- that said, i dont want them to be able to do much else -- I dont want them to be able to create their own custom tasks (Run command, OS Update, Shutdown Computer, Software Install/Uninstall, etc) or run these types of tasks if they're already created. Is this sort of granularity possible? Thanks, Jdashn
  5. Good Morning/Afternoon/Evening! I have two questions to see if anyone here may be able to assist. I have taken over the administration of ESET and change-over from v5x to 6x, and have found that the documentation for the Proxy setup to not address some of the items and concerns that i'm having. 1. It appears in the instructions that you suggest all companies who have more than 37 client machines use a 3rd party software to preform proxy functions for their virus scanning software. I think it's a bit strange that this isn't a default functionality as i'm guessing that MOST of your clients have more than 37 licences. I am curious as to why it was decided to not incorporate Apache proxy setup and config directly into RA. 2. We have many different sites and because of a shared internet connection, and varying WAN link speeds we, in the past, have opted for the Mirror option. The mirror location was a dfs folder which would then distribute to our various sites, reducing WAN traffic significantly. Can i specify a network location as the cache target using the apache web proxy? 3. Once this is setup, will all install traffic come from this cache location? (Agent updates, Endpoint Application updates, DB updates)? Thanks! Jdashn
  6. Do you know where install and usage instructions are for the ESET HTTP Proxy are? I think the original administrator who setup our v6 server install attempted to set it up, but it does not appear to be functional. I believe with some instructions or documentation i should be able to set it up properly? This is like the 'mirror' option correct?
  7. All of my clients have direct visibility to the repository, but share their access on one metered line -- so we'd prefer not to have 2k downloads of the Agent file hence the reasoning for the adjustment to the batch file. What i'm doing right now is using powershell to: adjust this batch file based on the site the computer is at (pointing to the agent files on the domain controller at each site) deploy the batch file to the computers that are online, and do not have the latest version of agent installed (determined by quering the eset db, and a ping) Running the batch file locally on each machine. What i'm asking is really is there an easier way to update the agent from within RA without having to have each machine reach out to the eset repository? Even if i can't base the DL location on Site, but could just tell all the clients to update from the same local share that would be great, is that possible using 'Components upgrade task'?
  8. Good Morning/Afternoon/Evening; We currently have about 2k computers connecting up to Eset RA, they are a mix of win7,8 32&64bit, desktops, laptops and tablets. We would like for our clients to download the Agent files from the local network, instead of from ESETs servers. I have followed the instructions provided: hxxp://help.eset.com/era_admin/64/en-US/index.html?agent_live_installer.htm These instructions are wrong and the screenshots to not seem to reflect the same bat file that is generated in v 6.4-- Spesifically this line from the instructions: echo. eho.dim params: params = "/qr /i " ^& packageLocation ^& " /l*v %temp%\ra-agent-install.log" ^&_ appears like this in my unmodified batch file: echo. echo.Dim params: params = "/qr /i """ ^& packageLocation ^& """ /l*v ""%temp%\ra-agent-install.log""" ^&_ Please note the extra "s. If you follow the instructions given in the link above the resulting vbs file that is genereated by the batch file has an error at this line. The only way i was able to fix this (I think, as i've not been able to verify that it's working properly) is to leave the above line as it is, and to change: echo.packageLocation = DownloadUsingHTTPProxy^("!url!", "!http_proxy_hostname!", "!http_proxy_port!", "!http_proxy_username!", "!http_proxy_password!"^) to: echo.packageLocation = "!url!" (Of course after changing the URL path to the network location of the files) -------------------------------- Is there an easier way? Have i done this correctly? Why does ESET not automatically deploy the new agent to clients locally when it's determined the update is needed? Is there an option for this that i've missed? Thanks Jdashn
  9. I've got some problems with RA 6.4 (some are for all of 6x) i can share from our 2k Antivirus, 100 file security, and shy of a dozen exchange licences. Our Clients are a mix of desktops, laptops and Tablets, all windows 7/8 - 32 and 64bit. 1. Agent Deployment - We are upgrading the agents on our Desktop Clients Agents from 6.3x to 6.4x. I spent an entire weekend attempting to edit the batch file created from RA 6.4 to point to the Agent_x64 and _x86 files on our network share, instead of having to pull all 2k Agents from the internet as happens using the server task. After finally figuring out the adjustment of the batch file (The instructions in the helpfile and on the web are wrong for the current version of the batch file being deployed). I then had to set off a task in RA to run a custom command, use the super arcane throttling options (Too much to ask for an option that says 'Run 3 every 10 min' or something?) and time it so that it does not run during business hours. 2. Client Deployment - We have upgraded from version 5x (some computers are still not on 6x) and within a few versions of 6x -- we have found that the only reliable way to preform an 'automatic' update is to do the following: Upload ERAUninstaller.exe to client machine Run command ERAUninstaller.exe Reboot computer Run command ERAUninstaller.exe Reboot computer Run command ERAUninstaller.exe Reboot computer Attempt Install -- If failure (10% of all install attempts seem to fail) Repeat whole process Keep in mind that the above process again can only be done when the computer is not being used (I have to run a seperate script out side of eset to determine if someone is logged into the machine, but can't easily import these results into RA so) i have to manually select those computer names within ERA. 3. 'Proxies' - There are two? Proxy setup options within ERA if i'm not mistaken. One is for if your company has a web proxy in place already for access to the outside Internet. One serves as the 'Mirror' From version 5x. allowing clients to not download their DB updates from the internet (Same with Agent and Software updates??). Unfortunately because of my inability to source the proper documentation this has not been a feature we've been able to properly implement. (Let alone easy setup/deploy from within RA) 4. Dynamic Groups Entry Run Task - This seems to be setup strangely, and it appears to run the task on ALL computers in the Dynamic group whenever a new computer enters or leaves the group -- not very helpful if you just want to run a task once on a computer as it enters the dynamic group (run uninstall task on computers that enter the dynamic group). Maybe this is just not working right on our installation, or there is another option i'm not using? 5. Active Infection/Threats - It seems VERY silly to have a system that scans for an infection, determines the infection exists, Cleans it off -- but then relies on human intervention to 'mark as resolved' -- I have an application so i do not HAVE to trust that some staff member has properly determined an infection has been cleaned. 6. Unblocking threats/PUP's - for instance there is an application one of our Admins is downloading, it has something within that is detected as a PUP so the download is canceled. How to unblock? Will this unblock when he attempts to install it? Will this unblock that particular PUP for all applications? There does not seem to be an easy way to manage this? 7. Security - In RA it seems i'm not able to limit a users ability to preform much in the application. If i give a user the access to scan a machine for viruses, i've also given them the ability to run tasks that could wipe the drives of every machine on the network (Run command 'Format C: /y' for example). Am i missing more granularity in the security setup or is this really as good as it will get? I'm personally hopeful that these are issues that are specific to me and not anyone else, including the OP, and that a support ticket can solve most of it (or even a link to some instructions would be helpful!).. but from what i can tell.. this just might be the new ESET. (Applocker applied judiciously really stopped all of our Cryptolocker issues, and most other viruses dead, eset has really been for PUPs lately on our end(fingers crossed)) and it's either get used to it or ?? Jdashn
×
×
  • Create New...