Jump to content

MichalJ

ESET Staff
  • Content Count

    2,059
  • Joined

  • Last visited

  • Days Won

    60

Kudos

  1. Upvote
    MichalJ gave kudos to MurrayCarte in Eset Antivirus turned off and Windows Defender turned on   
    And it worked

  2. Upvote
    MichalJ gave kudos to MartinK in Reports and permission sets   
    Problem is, that report templates are actually also objects, that are "tied" to specific static group (= access group) and thus have limited visibility. In case of default report templates created during installation, they are configured with access group set to group "All", which means that only user which have access to "Reports & Dashboards" on group "All" will see those reports. The same applies also for other managing objects in console (policies, dynamic groups, notifications, ...).
    Unfortunately I cannot verify now, but there might be two solutions, where both do require some redesign of security model you are using:
    Users might be assigned special permission set, that will give them permission to "Use" Reports from group All - but I would recommend to double check it does not give user access to devices Move/Change access group of required Report templates so that user can see it. We have seen that especially MSPs were creating specific "Shared" static group just to share such objects between users.
  3. Upvote
    MichalJ gave kudos to MartinK in Use of "Run command line" task   
    Yes, in case of multiple commands, one have to enter delimited one-liner, as it would be done in one-line BAT file.
    Just a note, this will be improved in upcoming released, where multi-line commands will be possible, which should simplify such scenarios.
  4. Upvote
    MichalJ gave kudos to jimwillsher in Use of "Run command line" task   
    Great to hear this this is going to be improved, I have some fairly complex PowerScript commands that I execute via the run command.
    For example I have commands which will:
    Download TeamViewer Download a config file Install TeamViewer using msiexec Email me the TeamViewer ID from the registry.  
    Getting this to work took time, and seeing all this on a single line script is horrible to maintain :) So seeing an improved experience will be fantastic.
     
  5. Upvote
    MichalJ gave kudos to Marcos in ESET Enterprise Inspector version 1.5 has been released   
    Release date: November 6, 2020
    ESET Enterprise Inspector 1.5 has been released.
    The build 1.5 is now available for download from the download page.
    Changelog:
    Added: Ability to work with rules via Public REST API (list, create, edit and delete) Added: Ability to trigger Network Isolation via Rules (only for Windows endpoints)  Added: Support for full Unicode characters Added: Ability to add multiple comments to Detection, Executables, Computers, and Processes Added: Various performance improvements (e.g. faster search, purge, rules engine and others) Fixed: Multiple issues related to internal server errors and exclusions New detection capabilities:
    Added: Improved detection capability for advanced code injection methods  Added: Ability to invalidate trust attributes of compromised processes Added: Information related to execution of files via shortcuts (LNK files) Added: Visibility into file reading operations for specific scenarios (e.g. reading of passwords) Added: Visibility into WMI Query behavior Added: Information about named pipes (to detect e.g. Cobalt Strike) Added: Visibility into MS Office VBA macros (if enabled in MS Office) Added: Ability to detect suspicious protocols (e.g. TOR, VNC, and BitTorrent)  
    Known Issues:
    When upgrading to v1.5 from previous versions installer doesn't remove obsolete rules. You can delete obsolete rule 'Network communication through port typical for TOR [B0503]' manually.
     
    Support Resources:
    Online Help (user guide): ESET Enterprise Inspector
  6. Upvote
    MichalJ gave kudos to Stormrage in Windows 10 Update broke ESET Security Management Center   
    Thx. That is. Tomcat service doesn't even exist after the update.

    What i did...
    Just go to tomcat bin folder (in my case C:\Program Files\Apache Software Foundation\apache-tomcat-7.0.92\bin)
    open cmd with admin privileges
    and type
     
    after that  win+r
    type services.msc
    and start tomcat service. (set it to automatically)
    And voalá...

    Thank you very much!
  7. Upvote
    MichalJ gave kudos to Marcos in hostnames for ESET LiveGrid and ESET License servers   
    Please refer to https://support.eset.com/en/kb332 for a list of addresses used by ESET products.
  8. Upvote
    MichalJ received kudos from khairulaizat92 in How to manage customer Console using our own account   
    Hello, unfortunately, this is currently not possible in a way you are seeking for. If customer adds his license to EBA account, the only way for you is to have a dedicated login (email address) to every one of such EBA accounts. We are currently analyzing / designing a solution, that will allow reseller management / visibility into the customer´s EBA accounts, and also connected ECA instances, however it will take some time till this is developed. 
    Internal reference: IDEA-1355
  9. Upvote
    MichalJ received kudos from LesRMed in Activated License Count Off   
    Hello, I will recommend you two solutions, that are in my mind: 
    Forcibly deactivate all of the servers, and then try to reactivate them manually. If there is a glitch, it might correct itself (if your servers are managed by ESMC, you should be able to reactivate them easily by the product activation task from there) If you do not want to do what is in the step 1, create a support ticket, so our teams will check it in the database / backend of EBA, to check, why it shows +1 activate seat Units column indicates the number of concurrent terminal sessions on that partcular server, per my level of knowledge. 
  10. Upvote
    MichalJ gave kudos to igi008 in Windows MSP Agent installer only providing .exe download, not .bat   
    Thanks, quite a good idea. We will try to bring it in a service release next year.
  11. Upvote
    MichalJ received kudos from LesRMed in Future changes to ESET Cloud Administrator   
    Hello @damtechmatt I have good news for you. Towards the end of the year, we will be releasing an update to ESET Cloud Administrator (It will come with adjusted naming) that will remove the "size limitation" of 250 seats, and will also be available for our MSP partners to order / provision cloud instance from the ESET MSP Administrator (msp.eset.com).  So stay tuned for upcoming news in the following months. 
  12. Upvote
    MichalJ received kudos from damtechmatt in Future changes to ESET Cloud Administrator   
    Hello @damtechmatt I have good news for you. Towards the end of the year, we will be releasing an update to ESET Cloud Administrator (It will come with adjusted naming) that will remove the "size limitation" of 250 seats, and will also be available for our MSP partners to order / provision cloud instance from the ESET MSP Administrator (msp.eset.com).  So stay tuned for upcoming news in the following months. 
  13. Upvote
    MichalJ gave kudos to Marcos in Upgrading ESMC 7.0.553.0   
    Yes, even machines with agent 6.x would connect to the ESMC server. However, in order to take advantage of all new features, such as the network isolation task, agent needs to be updated to v.7.2.
  14. Upvote
    MichalJ gave kudos to emilota in EBA 2Factor Security with different Authenticator Apps   
    Hello Martin,
    no yet, however, this is currently in development and we expect to release this option in the turn of the year. 
    Best regards.
  15. Upvote
    MichalJ gave kudos to Marcos in Cloud Administrator slow login and getting chunk errors when accessing elements   
    We are closely monitoring the situation 24/7. Recent issues were not on the backend, ie. ECA instances were working alright, reports were being generated by ECA, etc., the problem was with login. One of the things that might have contributed to the issues was as twice as high load in last 2 days than usual. It should be ok now after up-scaling the consoles and we continue with the investigation. If you've had a problem to log in recently, please try again and let us know about your findings.
    We apologize for the inconvenience. We are committed to providing you with high service availability (https://help.eset.com/preview/esmcc/en-US/esmcc_availability.html) which is also why we continue with further investigation to prevent future outages.
  16. Upvote
    MichalJ gave kudos to Marcos in ESMC shows incorrect version in web ui   
    You won't see the version of release in the ESMC console. According to https://support.eset.com/en/kb3690, the release 7.2.11.3 consists of the following components:
    Component Operation System Component Version Agent Linux 7.2.2233.0 macOS 7.2.3261.0 Windows 7.2.1266.0 Migration Tool Windows 7.2.18.0 Migration Assistant Windows 7.2.22.0 Mirror Tool Linux 1.0.2109.0 Windows 1.0.1149.0 Mobile Device Connector Linux 7.2.5216.0 Windows 7.2.4206.0 Rogue Detection Sensor Linux 1.1.615.1 Windows 1.1.693.1 Server Linux 7.2.2236.0 Windows 7.2.1278.0 Apache HTTP Server with HTTP Proxy Windows 2.4.43.0 Apache Tomcat Windows 9.0.35 WinPcap Windows 4.1.3 Web Console Platform-independent 7.2.230.0 Remote Deployment Tool Windows 7.2.7.0
  17. Upvote
    MichalJ gave kudos to LesRMed in Server showing up under AV license in MSP   
    Thanks! That did the trick! Now I can sleep at night.
  18. Upvote
    MichalJ received kudos from LesRMed in Server showing up under AV license in MSP   
    Hello @LesRMed Techncally, EFSW and EEA share the same "activation matrix" , meaning it is technically possible to activate EFSW with the EEA (ESET Endpoint Antivirus) or EEPS (ESET Endpoint Protection Standard) license.
    You can easily "move" the EFSW under the right license by simply sending an product activation task to the computer where the EFSW is running, including the "File Security" license. 
  19. Upvote
    MichalJ gave kudos to Kvako in ESMC MSP API Problem   
    Hi,
    You're almost there, just need to put a single word Bearer in front of the access token (separated by a space)
    When using swagger - after you receive an access token, you can Authorize by clicking Authorize button on the top with Bearer {{----token----}} written into text field
    Using API directly, your call should look like this
    curl -X GET "https://mspapi.eset.com/api/User/Current" -H "accept: application/json" -H "Authorization: Bearer eyJgbGciOiJSUzI1NiIsImtpZCI6ImU1WTdkMGJEUGtORmFDV094VWlBaUU5MDBDbyIsInR5cCI6IkpXVCIsIng1dCI6ImU1WTdkMGJEUGtORmFDV094VWlBaUU5MDBDbyJ9.eyJuYmYiOjE1OTg4NTk1NDUsImV4cCI6MTU5ODg1OTYwNSwiaXNzIjoiaHR0cHM6Ly9pZGVudGl0eS5lc2V0LmNvbSIsImF1ZCI6WyJodHRwczovL2lkZW50aXR5LmVzZXQuY29tL3Jlc291cmNlcyIsImVtYTJfYXBpIl0sImNsaWVudF9pZCI6IkVzZXQuRU1BLkFQSSIsInN1YiI6IjFjZmFkZTliLggiODUtNGU5Mi04Zjc0LTZhMTY4ZGEzYjdhNyIsImF1dGhfdGltZSI6MTU5ODg1OTU0NSwiaWRwIjoibG9jYWwiLCJzY29wZSI6WyJlbWEyX2FwaSIsIm9mZmxpbmVfYWNjZXNzIl0sImFtciI6WyJjdXN0b20iXX0.sG65OnNxQsstp5Su_Da-i9b25Q3SO_dU4va3IvdRU4m2s7jQ6zm6MqR_JV8d2E4B23HTKuwTl6XJvsVNMtL6KrggrJVmbPkgmR64XodNOtnrfnHtL_dPUy6cmbTMgjdeMGhUMZLKCauj60uK2nLyJbQKVU_VTj5E1eew0G4q3tIAnFtgNlJ3SHD_YAhNoet4Wu7b-dXLKlpFlmvjav1sXp-iSjUxDLS2rjcmNfMqRdW3C1lXL58daKZx3xGkoPSSMXAK7tPJEreFOepPeon-u5JuPqy5fIc1XJ7VDX60arqa7Ejq3z34tbj2vABJ6Qx3M7e1jRZF7v-7Bye0J-jSjVF"
    Thank you,
    Martin
  20. Upvote
    MichalJ received kudos from kapela86 in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Hello, this option is already available in ESET Cloud Administrator console. Currently, as agents are updated via "Components upgrade task", which does not differentiate between agents, and other components of the ESMC infrastructure (server / webconsole) this option was disabled. However, in Cloud the server is fully hosted / maintained by ESET, so "one click agent updates" are possible. 
    Please note, that for the future releases we work on "automatic agent upgrades", meaning agents would automatically upgrade themselves to the version compatible / matching with the server. 
  21. Upvote
    MichalJ gave kudos to Marcos in How to turn off Splash Screen, ESET Notification, Initial Scan on Windows Client Workstations   
    Splash screen:

    Initial scan notification:


    The last notification comes from the OS. You should check what problem is reported on the main Protection status screen first.
  22. Upvote
    MichalJ gave kudos to igi008 in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Hello @Zen11t, thank you very much for your explanation again. It helps us to understand your needs better.
    I hope this trick will help you

    You can filter the computers with an outdated version of agents and then click on any item in the table and select "In computer page (all)". It will navigate you to the computers section, where you will have only computers with outdated agents, and here you can also check the last connection status.
  23. Upvote
    MichalJ received kudos from Peter Randziak in General Question while evaluating   
    Cloud MDM for management of Android devices is planned for December 2020
  24. Upvote
    MichalJ received kudos from Zen11t in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Hello, this option is already available in ESET Cloud Administrator console. Currently, as agents are updated via "Components upgrade task", which does not differentiate between agents, and other components of the ESMC infrastructure (server / webconsole) this option was disabled. However, in Cloud the server is fully hosted / maintained by ESET, so "one click agent updates" are possible. 
    Please note, that for the future releases we work on "automatic agent upgrades", meaning agents would automatically upgrade themselves to the version compatible / matching with the server. 
  25. Upvote
    MichalJ gave kudos to Rendekovic in EFDE Monitoring   
    Hi @Mr.Gains
    you are right, reports are in the works currently.
    we are panning to offer reporting (more or less) in this scope:
    Computers not eligible for encryption Computers eligible for encryption  EFDE not installed Computers eligible for encryption. EFDE installed AND disk not encrypted Computers with encryption in progress Computers encrypted  Computers encrypted using TPM chip Computers encrypted using OPAL 2.0 Computers encrypted via FileVault2 (future) Computers with boot disk only encrypted Computers with all disks encrypted Computers recovered in past month... What exactly would you like to see in the reports? Except for "password uses left" you mentioned above...
    Thank you for your inputs
    Ervin Rendek
    PM for Encryption solutions
×
×
  • Create New...