Jump to content


  • Posts

  • Joined

  • Last visited

Everything posted by Ufoto

  1. Hello, We have a ESET Protect Cloud tenant where I initially set the EDTD to be activated in the following way: A dynamic group with criteria 'Functionality/Protection problems . Problem is one of {ESET Dynamic Threat Defense is not activated or license is invalid.}' was supposed to capture any devices where EDTD is not activated as we have it enabled in all relevant policies. This was working during our tests so I left it to do its job. However, upon checking now, only 1/3 of the devices are activated. And going through some of the unlicensed ones, I no longer see this error code on any of them. Were these error codes removed? If not, do they have any other prerequisite apart from applied policy with EDTD enabled and installed Endpoint Security? Another question I am struggling with is how to identify systems missing EDTD now? In the reports builder I can easily create a report with systems which have EDTD license applied, however I can't find a way to get as a result only the systems which don't have this license applied. Apologies for the long post, many thanks.
  2. Hello, Apologies if this question was already answered, but I couldn't find any solid explanation. Is the Mobile Device connector available for all business bundles? Is is safe to assume that if you have a ESET Protect Server managing business product you are automatically eligible for Mobile Device Management, or does it require a specific license? According to the documentation the Mobile Device Connector should be licensed with a licensing task, but there is no mention for the license type. Additionally, how does licensing for the mobile devices work? Are they sharing the same license count as other products? For example under license management I can see separate licenses for ESET Endpoint Security + File Security and ESET Full Disk Encryption, but I don't see any for mobile devices. Thank you in advance!
  3. Hello Martin, Thank you for your prompt response. If the functionality is not affected I would prefer staying with the current version as we have a lot of users which can't connect to the ESET Protect server directly and I don't want to risk messing up the HTTP proxy and losing visibility over them. What I find really difficult is to check whether my proxy is up to date. With the old ERA proxy you were able to see it as installed product and you can see what's the version of your proxy and what's the latest one available. But with the HTTP proxy, I can't find anywhere in the documentation which proxy version should be used with ESMC/ESET Protect and how I can check it.
  4. Hello, We have an ESMC Server in our internal network and public facing HTTP proxy for roaming clients. I just finished the upgrade of the ESMC server to ESET PROTECT using the all-in-one installer. I wanted to do the same for the HTTP Proxy following this guide: https://help.eset.com/esmc_install/70/en-US/apache_http_proxy_upgrade.html?upgrade_apache_http_proxy_windows_instructions_allinone.html However, when I run the installer it does not detect that there is a HTTP Proxy installed therefore I can't proceed. I am aware that there is manual upgrade process, but I just wanted to check with you guys whether an upgrade is necessary at all. I can see that roaming clients already started to communicate through the proxy. Looking at the Apache service details, the version is 2.4.43, is this version supported with ESET PROTECT? Would you expect any issues if I leave it as it is? Your advice will be much appreciated.
  5. Hello, Any updates on this? Is there an ETA when EDTD will be supported on macOS? I tried to find a list of supported operating systems, but couldn't find anything here: https://help.eset.com/edtd/en-US/req_and_supported.html
  6. Thank you for the prompt reply I will monitor the submitted files for few days. Indeed removing the 'Enable' button, or replacing it with 'Enabled' state would be great.
  7. Hello, We recently added ESET EDTD and I am not sure how to verify whether it is working, or not from the ESET Protect console. The EDTD license is visible in the list of activated products for the systems, and the policy is set to have ESET Live Grid Feedback system and EDTD to be enabled. However, when I go to the endpoints details, the attached screen is not changing. Should this screen change to something else? How can I verify that EDTD is actually working on endpoints? Thank you in advance!
  8. That sounds great! I hope you implement this soon, it will make managing different instances much easier.
  9. Hello, We have two customers who want to grant me access to their ESET Protect Cloud instances. We created a new account with my email address for the first one and I was able to access their instance, however when the second customer tries to grant me access it says that the email address is already in use. Is there any way around this apart from creating dummy emails for each new login? Are there any plans to add multi-instance access? For example another vendor we work with allows you to log in with your account at their cloud portal, and then if you have access to multiple customers you simply have a drop-down menu with all tenants you have access to (even for non-MSP customers).
  10. Thank you, indeed locking the settings is something I didn't think of. We can implement it like this, the only downside I see is that when you have the password protected setup, if an administrator needs to change something locally, he can provide the password and do it, while locking the setting makes changes possible only through ESET Protect. Still this is much better than leaving the settings editable.
  11. Hello, We have a number of macOS devices managed by ESET Protect and I was wondering if there is a way to prevent users from changing settings (similar to the password protection in Endpoint Security for Windows) as I don't see similar option in the macOS client policy? Is there any other way to prevent users from simply stopping all product functionalities? Additionally, could you confirm whether the ESET Agent password protection against uninstall work on macOS? Thank you in advance!
  12. Hello, Thank you, that's exactly the information I was looking for
  13. Hello, We are currently running ESMC 7.2 server with a HTTP Proxy in DMZ serving external clients. I would like to upgrade to ESET Protect 8.0 and according to the documentation there are two ways - manual, and via component upgrade task (https://support.eset.com/en/kb7701-upgrade-eset-security-management-center-72-to-the-latest-eset-protect-8-via-web-console and https://support.eset.com/en/kb7702-manually). I just wanted your expert opinion whether there are any benefits in doing the manual upgrade over the automatic one? The server was initially installed using the all-in-one installer. Are there any additional post upgrade steps in order to ensure everything is up to date? Additionally, regarding the HTTP Proxy, I suppose it should be upgraded manually as I don't see it as installed application from the console? Thank you in advance!
  14. Thank you for the prompt response!
  15. Hello, Since Full Disk encryption for Mac utilizes the built-in encryption provider FileVault, I was wondering if there is similar option for Windows. If we have a number of systems already managed by BitLocker, is there a way to take over the management using Full Disk Encryption, instead of decrypting all devices and then encrypting them with FDE? I am posting here because I was not able to find information about such option online. Thank you in advance!
  16. Thank you, just one last question - Are Macs supposed to report blocked connections in the 'detection and quarantine' section like Windows devices do? Yes, interactive mode is an option, but I can't really rely on users to understand what they are allowing. I guess they will just allow everything.
  17. Thank you for the prompt reply. I understand. In your opinion, what would be the best way to troubleshoot firewall related issues on my own then? Is there a way for me to look at the firewall activity for a specific system using the ESMC? We are just starting the deployment and I believe that this issue with MS Teams is just the beginning so I am looking for a way to quickly identify what exactly was blocked on an endpoint in order to start building firewall rules.
  18. Hello, I am troubleshooting Mac users who reported that some Office functionalities are not working when the ES personal firewall is enabled. Since there is no events under 'Detections and quarantine' (although 'Log all blocked connections' is enabled), I ran the Log collector remotely through the ESMC interface. I tried to review the 'Firewalllog' found in the 'esets_logs' folder, however the log file seems to be a binary file. Is there a tool I need to have installed in order to open the .dat file and check the firewall activity? Thank you in advance!
  19. We are experiencing the same issue, update to 11.2.1 can't install when ESET is present. Is there any official statement from ESET about this?
  20. Hello, This is just something I needed at the moment because it is very useful information for a person administrating the devices. Now I suppose I will have to create two separate reports - system name/last communication, and another one system name/logged on user. This isn't such a big issue, but it brings out another problem I have with the ESMC reporting - why scheduled reports can't be combined into a single file? For example, I am often interested in more than one set of data, but with the existing reporting, if I want to check different types of reports, the ESMC is only capable of sending them as separate attachments. So for example if I am interested in 10 different reports, I will have to review 10 attachments one by one. Isn't it possible for the ESMC to combine these reports into a single pdf file? The order of the reports in the file can be the same as configured in the task. If there is product idea forum, is this worth raising, or are the product limitations not allowing this at all?
  21. Hello, I am trying to create a very simple report - a table which shows the system name, last connection and logged on user. However every time I add the last connected column, logged on user disappears as possible selection for a new column and vice versa. Is this some sort of limitation? Is there a way to avoid it and create such report? Thank you in advance!
  22. Hello JPritchard, Thank you for the detailed explanation. I understand how the communication works now. Is there any limitations for systems which are only able to connect to the EEE server via the 'cloud proxy' in terms of policies, licensing and user enrollment? I am asking because while reading through the guide I noted the following section: https://help.eset.com/eees/en-US/system_requirements.html?enable-esdirect.html. According to the message on the screenshot, self-enrolment requires clients to communicate directly with the EEE server. Regarding the remote deployment, indeed I might have read about the 'ESET Full Disk Encryption' product which is managed directly by ESMC. It would have been very convenient to be able to deploy the EEE client as well, and somehow pointing it to your own EEE server - either with a configuration in the client task itself, or via policy. Thank you in advance!
  23. Hello Michal, Thank you for the prompt response. Yes, I am referring to ESET Endpoint Encryption. As far as I understand it uses an ESET proxy, therefore no proxy is required on our end, Roaming clients should be able to communicate with our internal EEE server via the ESET proxy? And just one more question, if we use our existing ESMC server to deploy the EEE client, how are we going to point the installed EEE client to our EEE server? Thank you in advance!
  24. Hello, We have an ESMC server in our internal network which uses a HTTP proxy located in DMZ to manage roaming users. We would like to implement ESET Endpoint Encryption in our environment and the question which immediately popped up is: are we able to manage the roaming encryption clients through the same HTTP proxy? I didn't find any official statement about this setup and I am hoping you guys could shed some light? These users never connect to our internal network so this is very important for us.
  • Create New...