Jump to content

MichalJ

ESET Staff
  • Content Count

    1,607
  • Joined

  • Last visited

  • Days Won

    51

Kudos

  1. Upvote
    MichalJ gave kudos to tmuster2k in Need of AV for Business use   
    The previous response is not valid. ESET ENDPOINT Security has Web Control which has category blocking. This can be enabled and managed via policy using ERA/ESMC or locally for smaller environments. 
  2. Upvote
    MichalJ gave kudos to karlisi in ERA reporting some clients need Win updates and not others   
    I upgraded the 6.5 to 7, the template was the old one and I edited it manually.
  3. Upvote
    MichalJ gave kudos to MartinK in Errors after moving from ESMC to ECA   
    This is the most probable reason. ECA does not enable user to create policy with connection hostname, but policy imported from ESMC will retain this setting. So in case you imported policy that had some connection host specified, ECA agents will start to us it instead of their original ECA hostname. If this is the case, only solution is to unassigned/remove such policy (unfortunately you won't be able to see which one it is as this setting are hidden in ECA console) and repair AGENT by re-deployment of installer.
    Regarding proxy, I am not sure whether I do understand scenario, but in case you used HTTP proxy for ESMC, and you do not with to use this proxy for ECA, you have to create new policy in ECA, where you explicitly disable use of HTTP proxy. In case you do not do that, AGENTs will be still using previous settings, i.e. they won't revert to settings used before policy was applied. This can be fore example done by creating policy:

    where crutial parts are highlighted. Not visible "Proxy configuration type" should be set to Global proxy.
  4. Upvote
    MichalJ received kudos from CMS in License Usage. How Long to Update?   
    In general, the number shown in the "license tab" of ESMC is not coming from ESMC itself, it´s coming from our licensing server infrastructure. You can always update the number by clicking "synchronize licenses" in your license tab. You can do a license cleanup, by accessing eset license administrator / eset business account (depending on which you are using). If you never setup an account, you can go to ela.eset.com, and use your license key for login. Over there, you can see all of the devices activated with your license. 
    Our licensing has one issue, where it creates duplicated entries for machines that are often using multiple network adapters  (like switching often between LAN / WIFI). Then they are orphaned, however still consuming the license. You can cleanup those by lowering the setting "deactivate seats not connected for XYZ" days (by default, it´s set to 365 days). 
  5. Upvote
    MichalJ received kudos from karlisi in Agent Live Installer Configuration - port missing   
    Hello @karlisi this will be resolved in the upcoming ESMC 7.1. 
  6. Upvote
    MichalJ gave kudos to Rendekovic in EEE 5.0 Opal / SED Drives?   
    Hi N1Md4,
    I appologize for my late reply.
    Yes we are working on finishing the missing pieces of communication/ documentation.
    Sorry for this incovenience.
    Best regards,
  7. Upvote
    MichalJ received kudos from Peter Randziak in EMA error: "This operation is not permitted on migrated company"   
    @Alexey Ponomarev As of yesterday, we have commenced migration from EMA 1 (ema.eset.com) to EMA 2 (msp.eset.com). This procedure had to be approved by the admin / primary contact for your MSP / company. You should have received an e-mail with this information. Your customers are now migrated to msp.eset.com. If you will have any issues, please contact your distributor, or colleagues that are listed as primary contacts. 
  8. Upvote
    MichalJ received kudos from Peter Randziak in Agent Live Installer Configuration - port missing   
    Q3-Q4/2019
  9. Upvote
    MichalJ received kudos from Peter Randziak in Agent Live Installer Configuration - port missing   
    Hello @karlisi this will be resolved in the upcoming ESMC 7.1. 
  10. Upvote
    MichalJ gave kudos to MartinK in ESMC computer name mismatch (hostname vs FQDN)   
    Yes please verify that hostname of macOS machine is correctly set. Otherwise AGENT won't be able to report FQDN name to ESMC, and thus ESMC won't be able to pair device with FQDN entries in domain.
    Recently we were solving similar issue as support ticket, and customer used command:
    sudo scutil --set HostName devicename.example.com to correctly set FQDN name on macOS device.
  11. Upvote
    MichalJ received kudos from veehexx in What is correct way to delete duplicate endpoints?   
    For the future versions, we are planning to handle also "merge computer instance records", however it was not planned into the next version In general, what I would recommend is maybe to remove duplicates by "delete not connecting computers task", that you would set to a shorted number. It might delete also legitimate entries. But the agent is not considered as "duplicate" as it reports with a different UUID, as UUID is created upon first connection. But we are aware of this, and plan to handle it in the future. 
  12. Upvote
    MichalJ gave kudos to MartinK in two licenses issue   
    Number as you see in License management view is provided by ESET licensing servers, i.e. should be more precise. In oppose to that, ESMC reports shows only devices that are managed by ESMC, or more precise are reporting license usage to ESMC.
    In you case, there are few possibilities:
    there might be devices that are not managed by ESMC, but are activated using license there has been hardware changes on clients, or clients were reinstalled, which resulted in duplication on license servers. In both cases I would recommend to visit ESET licensing portals (EBA or ELA) and check list of activated devices as listed there. In case of duplicates, it should be clear from "seat name". This portal can be also used to manually deactivate or remove device that is no longer active.
  13. Upvote
    MichalJ gave kudos to MartinK in KB6666 Computers with less than 1,000 MB free disk space   
    Problem is that group as you defined it will be matching devices, where at least one devices has capacity less than 1GB -> so for example devices with connected USB key or even devices with CD/DVD ROM, which mostly reports capacity 0MB.
    I would recommend to add another condition, either explicitly specifying id of storage, or possibly requiring that reported capacity is >0. For example:

    where only one of additional conditions should be required, byt it depends on your environment. I would recommend to use "Storage Id", especially in case you are interested only in system disks and devices are using default "C:".
  14. Upvote
    MichalJ received kudos from Peter Randziak in ESET Endpoint Antivirus or File Security - Windows Server   
    @Entropy The best thing to verify whether your license is entitled to activate ESET File Security for Microsoft Windows Server (which is indeed recommended to be run on server OS), you can check the license in ELA / EBA (ESET License Administrator / ESET Business Account). If it says "ESET Endpoint Security + File Security", it would work for sure. Otherwise, if your license is above 25 seats, unilicense concept should apply to it, so ESET UK should be able to convert it into eligible license at no extra cost. 
  15. Upvote
    MichalJ received kudos from katycomputersystems in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @SysEPr Thank you for your feedback: 
    With regards to the first case, we will investigate this behavior. It looks to me more like a bug in the implementation. We will check this internally.  We are planning to introduce more advanced IFTTT (If this then that)  logic, into ESMC, however it will not happen in ESMC 7.1 for sure. But it´s on the roadmap for the future versions, that will allow you to achieve better automation, and such advanced conditions. 
  16. Upvote
    MichalJ gave kudos to MartinK in two licenses issue   
    I would try to create new report with following data set configuration:

    which should provide you list of devices with public ID of used licenses. It is possible multiple entries per device will be reported in case multiple activated products or multiple licenses are used.
  17. Upvote
    MichalJ received kudos from sajer_ in Smart Scan scheduled via ERA/ESMC   
    Hello @sajer_ Witch regards to "smart optimization", this is meant to work in a way, that it does skip files which are whitelisted / marked as safe. As the file you are referring to is a an actual detection (I assume it´s some PUA), it will come up every time you run a scan. If you want to have it "not detected" the right way is to create exclusion for that particular file, ideally either by hash, or by combination of a file path and detection name. You can do it from ESMC "threats" tab, by clicking left click - add exclusion to policy - select a policy, you want to have exclusion applied to. You can do it other way around, to start from "policies", new policy, search for "exclusions" and then upon adding a new one click on "exclude detected threats" and search for that particular detection. 
    That should make it gone away from repetitive scans, unless the scan is run with parameter "ignore exclusions". 
  18. Upvote
    MichalJ gave kudos to Marcos in Upgrade from ERA 5 To ESMC7 in Offline Environment   
    1, Generate an offline license file through eba.eset.com (https://help.eset.com/eba/en-US/downloading-offline_legacy-licenses.html) and use it to activate Endpoints from ESMC (https://help.eset.com/esmc_admin/70/en-US/offline_license.html).
    2, You can download an installation file, share it withing the offline network and use the URI in a software installation task (https://help.eset.com/esmc_admin/70/en-US/client_tasks_software_install.html)
    3, To update modules in a completely offline network, you have two possibilities:
    i. Use the command-line Mirror tool to create an offline mirror
    ii. Use an ESET security product to create an offline mirror
    If there's at least one computer with Internet connection in the network, you can use HTTP Proxy to update the offline clients through it.
    For general instructions on migrating from ERA v5 to ESMC, please read https://help.eset.com/esmc_install/70/en-US/migration_from_era5.html.
  19. Upvote
    MichalJ received kudos from Peter Randziak in Minor annoyance/room for improvement with ESMC 7   
    This is considered as a bug, and we will work on resolving it in the upcoming release of the product. 
  20. Upvote
    MichalJ received kudos from Peter Randziak in Sient upgrade from 7.0.66.1 to 7.0.72.2   
    I have checked with the devs, and it looks that the upgrade procedure works in the way, that it modifies the actual content of the apache http proxy, but does not modify installer entries / registry entries. Therefore i´s not changed in there. 
  21. Upvote
    MichalJ gave kudos to Rendekovic in DESlock+ Reader.app for Mac not signed? Mac App Store version?   
    Hello ET_31,
    The issue is known to us and we will work on it at the beginning of March 2019, thanks for heads-up!
     
  22. Upvote
    MichalJ received kudos from Peter Randziak in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @tbsky We are not planning to add mariaDB support. Due to our journey to the cloud and also multi-platform compatibility, we will most likely work on the support of MySQL 8 for next major release of ESMC 
  23. Upvote
    MichalJ received kudos from Peter Randziak in Dual Update profile setup problem   
    That´s weird. I will report it to our QA to check the behavior. Would it look differently, if you use "replace" instead of append? It should then replace the list, with the one from your policy. All the other entries, will be basically kept.
  24. Upvote
    MichalJ received kudos from Peter Randziak in ESMC / ERA - questions   
    In this matter, answer to your direct question is : NO, ESMC / ERA is not serving as repository for update modules / installation files.
    You have however following options:
    If you have selected the option to setup Apache HTTP Proxy during the installation it will configure all ESMC components and security products to communicate via the HTTP Proxy which is set up on the ESMC server. You can use whatever proxy you have, and just configure ESMC server / agents / security products, to communicate via the proxy. It should be by default caching installers. If you have completely offline environment, as Marcos suggested you can use mirror tool for creating a update mirror, and then host it either using a web server (like IIS) or let the clients update from a folder that is accessible by them. You will have to configure their policies. In this setup, also activation via offline file is needed + you won´t be able to use ESET Live Grid as it´s a cloud based reputation system. In your setup, the option 1 would be the one I would recommend.
  25. Upvote
    MichalJ received kudos from rpnc in No policy selected... unable to find policies after upgrade fro ERA to ESMC   
    Access groups are configuring user-access context.
    When you create a new user, you define "home group", which is also home access group for a selected user. If you create user with home group "Tvaika" all of his objects (policies / tasks, etc ...) will be located in this group. By default, it´s set to "all", therefore the reason why you need to remove the filter.
    In permission sets, you define access to objects (object is in fact anything inside ESMC, including computers, tasks, policies). If you grant read only access for a user to group "Tvaika" and set "policies", they will be able to see them. In your case, you just misunderstood the filter. It´s not "assignment filter" (to which group it is assigned to) but "access rights filter".
×
×
  • Create New...