Jump to content

roga

Members
  • Posts

    98
  • Joined

  • Last visited

Everything posted by roga

  1. Yes finally got there. This is really not the most friendly piece of software. Would be so much easier if we could select the addresses from the RD report and mark them as safe.
  2. OK I have moved the ip address I want excluded to the "blacklist", however 12 hours later and the dash board still shows my cisco firewall etc. as a rouge computer. I have stopped the service, renamed the "dectectedmachines.log" and restarted. I have forced a refresh on the console and I still have the false +ve "rouge" hosts showing. What do I do now?
  3. I found the correct section, but not sure about the tooltip. Usually a "whitelist" are for hosts that are OK, but given the tooltip I'm not sure if I should put the false positives into the whitelist or the blacklist. Is it me or does the tooltip (attached) read almost opposite to how you would expect it to work? No doubt next time I'm at the server I'll see if my whitelisting is helpful.
  4. I want to create a daily scheduled task to scan particular directories (including sub directories), but I can't seem to find any documentation on this. I have had a guess (see image attached). So what I want to do is scan both "c:\users" and "d:\users" including subdirectories. Is what I have put in the screen shot correct? regards Roga
  5. Is it possible to mark mac addresses as "safe" if they show up in rogue detector. It seems network switches and hardware routers are identified as "rogue" as they have mac and ip addresses on the network, but of course for AV purposes they are safe. regards Roger
  6. Yes that worked for IE 11, thanks for the quick and helpful response
  7. I've just installed ERA 6 on a 2008r2 domain controller. When I open the web interface in IE 11 i get a "cerificate error". When I try and import the certificate the usual button to install are greyed-out, see attached. How can I import the certificate to stop me getting an "unsafe website" when I start the web managment console? regards roga
  8. Is the client details popup something on the ERA server? if so please give me idiot instructions on how to find it. (I had a good look but couldn't find it). Or are you saying that I need to log into the client machine to see this?
  9. I have created a number of static and dynamic groups in ERA v6 for both ESET Endpoint Antivirus and Eset File Security. I have applied polices to the groups. When I go to the "details" for an individual endpoint, it tell me that "Applied Policies Count: 7", however it doesn't tell me what those policies are. If I then go to "manage polices" for that endpoint, there is no information about the applied policies. So how do I find out what policies (and their settings) are applied to a particular client in ERA?
  10. I just posted at the end of this thread the result of my rollout
  11. I have now finished my deployment to a main central office and 4 branch offices connected by slowish VPN, this is my first install of V6 (have been working with ESET ERA previous versions for a number of years). In this case there was a migration from Symantec Endpoint Protection (clients and servers) to eset endpoint and eset file security. We have about 60 endpoints. Once I understood that deployment of endpoint protection was from an internet resource (rather than ERA server) I decided to try and use the ERA to uninstall the old SEP, and then install eset. Agent install worked in over 95% of all cases, not perfect but good enough, I had to do a couple of manual installs, which was quite easy. SEP uninstall worked in about 90% of cases, there were a few I had to manually install. Eset endpoint and File Security install was not quite as successful, worked in about 80% of cases, and not really easy to find out why it had failed. I ended up manually installing on the failed 20% In my case I think it might have been better to have installed via group policy on the remote sites (as previous SEP was via group policy and I might have had an easier time using group policy to migrate), but there is not enough clear documentation for this. I would like to see more helpful troubleshooting when rollouts via ERA have failed.
  12. Actually this assumption is not correct. Package to be installed by software installation task is downloaded on client machine, by AGENT itself directly from internet ESET repositories. Thanks for that, looks like I don't need to think about setting a mirror or proxy on the remote sub-net as they do have decent internet download capability.
  13. The purpose behind my question is trying to workout the best way to do a push install of EAV & EFSW to remote sites which have a limited bandwidth vpn connection to the central site, however they do have a reasonable general internet connection. If I was to set up a proxy ERA server would that also act as a proxy for push install, i.e. would the software also reside on the proxy server so that e.g. the subnet that the proxy was serving would receive its packages from the local machine? (I am assuming that the main era server holds a copy of the packages and then pushes these to the clients) Alternatively I see that there are policy settings for "Install by direct package URL" could this point to repository either in the cloud or a machine in the local subnet? regards roga
  14. Thanks for your help Palps, I have managed to get the agent on all of the machines, so perhaps I will try out the dynamic group at one of the sites and see how that goes. It would be good if the all of the task can be done by ERA. regards roga
  15. Hi Palps Thanks for your reply. 1) Could you give me a link for the dynamic group & assigned task? Would it be possible e.g. to differentiate between windows servers and win 7 machines? 2) I did a test to try and install EFSW to a remote machine over a vpn. The task failed (twice) although the agent installed OK over the VPN. I thought most likely the agent is a smaller payload than the AV. I ended up installing EFSW manually which the agent then picked up. I have some branches with each with a win server and a number of win 7 clients which are linked over a slow VPN. I thought it would be easier to install the av locally by GP and then manage from agent. How succesful do you think it would be trying to install say 25 win7 clients over a slow VPN? 3) Another thought is to have proxy servers at the remote sites, but would a deployment via ERA come from the proxy server on the local subnet or the main server at the central office?
  16. Thanks ESET Staff for you advice about the agent. Can you tell me if installing the products (Endpoint Anti-Virus v6 and File Security v6) by msi and group policy will work? i.e. is all I need do to roll out the msi via group policy to the clients? Do I need to any xml or transform files? regards Roga
  17. I have some remote offices and would like to install EEAV & EFSW v6 to windows clients & servers, and have them managed by ver 6 ERA. The remote offices are on different subnets and connected by VPN, but are linked by standard copper wire internet, so not a very fast connection. I have created a bat file to install the agent locally and then link to the central office ERA, but I don't think there is enough bandwidth to install EEAV & EFSW to the clients. However I can get the msi files locally. If I was to use group policy to install the msi files, would the agent then automatically turn them into managed machines? If I was to try and install the v6 msi files via group policy, would they run OK without any extras? (I don't think you use xml any more on v6) regards Roga
  18. I have a windows 2008 remote desktop server (terminal server). Currently it has NOD32 AV 4.2.76.0 Given its role, and that it is running ms office etc, is there any reason for me to change to ESET File Security for Microsoft Windows Server, which looks like it mostly deals with file server, dc etc. I suspect that EFSMWS won't be so good with email filtering (outlook as exchange client) and similar. Any thoughts? regards roga
  19. I've given that a try, but I haven't had enough data yet to see if that has solved the problem
  20. I have just installed Eset Endpoint Security 5.0.2237.0 in windows 7 with outlook 2013. If anti-spam is running, some outlook rules fail on incoming mail. If I run the rules on the inbox they work OK. If I disable eset anti-spam they work OK. Any idea how to overcome the problem? regards Roga
  21. Should I use "ESET File Security for Microsoft Windows Server" or "ESET Endpoint Antivirus" on a 2008r2 Remote Desktop (terminal) Server? I ask as it seems that EFSMWS is optimised for file server and domain controller. Would it also be best for a terminal server?
×
×
  • Create New...