Jump to content

MichalJ

ESET Staff
  • Posts

    2,377
  • Joined

  • Days Won

    70

Kudos

  1. Upvote
    MichalJ gave kudos to Marcos in "Brute-force attack protection against password guessing for RDP nad SMB services"   
    The feature will be included in ESET Server Security v9 next year.
  2. Upvote
    MichalJ gave kudos to igi008 in Future changes to ESET PROTECT (formerly ESET Security Management Center / ESET Remote Administrator)   
    Hello, thank you very much for reminding those things. Yes, we are also tracking these various smaller improvements. Unfortunately, capacity is limited, and we need to solve a lot of things with higher priority with broader business impact. However, do not worry. We have it in the backlog, and I hope that some of them will be able to address in the upcoming release.
    # 1 Uptime
    There was a tricky part how often to synchronize. We are considering adding it, but not sure if directly to the main computer table, maybe under details and sync it in some time intervals.
    # 2 Service pack / OS version
    It is problematic because it is impossible to guarantee that MS won't bring some ServicePack for Win 10. Now is possible to parse this information from the "OS version" in ESET PROTECT (that is technically the OS build). However, is good to consider creating a new field "OS build" and report version (e.g., 20H2) to "OS version", but it needs to be analyzed cross-platform.
    # 3 Network adapters
    Now we are reporting more physical adapters also wireless.
    Yes, the problem with duplicity (IPv4 and IPv6) is not fixed yet, but it is planned.
    Many thanks for your patience, I hope you have found other interesting improvements in ESET PROTECT 9.0.
    And of course, we will also try to move forward the smaller improvements suggested in this forum thread, but in some cases, we need more time due to other priorities.
     
  3. Upvote
    MichalJ gave kudos to avielc in Question | Watching EEI information inside ESET Protect 9 console   
    I'm doing a second update here just to make it clear. 
    This has been resolved. my missing step was the following missing information from the suggested KB above:
    You need to trigger new detections that will contain the link to the new hostname configured in the applied EEI configurations. 
     
    in other words, this is something that only occurs on new detections after applying changes to the eei-server configurations, not on older detections. (kind of important info) 
     
    Thanks Damian!
  4. Upvote
    MichalJ received kudos from avielc in Question| How to migrate from MSSQL to MYSQL   
    Concerning this issue, you have a response in the dedicated thread by my colleague from EEI team.  Here is the link: https://support.eset.com/en/kb7683-change-the-hostname-redirect-to-eset-enterprise-inspector-server-from-eset-security-management-center
  5. Upvote
    MichalJ gave kudos to Damian K in Question | Watching EEI information inside ESET Protect 9 console   
    This is described here: https://support.eset.com/en/kb7683-change-the-hostname-redirect-to-eset-enterprise-inspector-server-from-eset-security-management-center
  6. Upvote
    MichalJ gave kudos to Marek G in ESET Mirror Tool 1.0.1258.0 (incorrect product filtration)   
    Hi labynko,
    the products com.eset.tools.installers.bootstrapper_era and com.eset.apps.business.era.agent must be always downloaded because without them it would not be able to create All-in-one Installer in ESET Protect. That is main reason why mentioned products are not affected by filter parameters.
  7. Upvote
    MichalJ gave kudos to MartinK in ESET Console Owner/License   
    From description you provided it seems, that the same license was added into console using two methods:
    Added license by it's key, either manually in the console or even during deployment of console itself (indicated by key icon) Added license by EBA accounts (indicated by EBA account and person icon in the list) Solution to this might be to consolidate this list. I would recommend to first:
    Add the same license using your EBA account, just to verify it will work Remove original copies of the same license, i.e. the one tied to old/unused EBA account and the one entered by key Correct existing activation, deployment and installer tasks, ad they are most probably referencing licenses that you just removed - tasks and installer will be marked as invalid and won't work until they are updated with proper licenses Removing and re-adding licenses won't have any impact on products functionality (they will remain activated) but new deployments and activation might fails from the console in case tasks won't be updated after license re-adding.
  8. Upvote
    MichalJ received kudos from Trooper in ESET Dynamic Threat Defense   
    Hello @Trooper can you please let me know in a private message details about how you reached to them, and your public license ID? I Will try to search details of your case closer, and check, whether it was correctly received. And I will make sure, that you will hear back soon. Thank you. 
  9. Upvote
    MichalJ gave kudos to BrianMorris in CLOUD 3.0 improvements   
    Thanks everyone at ESET for all of the improvements. I've just been playing some this morning and I see some things that were added/changed that I've been asking for and that have been needed for years.
    1 - I can add the file path/name of the detected malware to email alerts
    2 - The UI of the customizing of the alert is MASSIVELY improved.
    3 - I can UPGRADE a license without needing to suspend, activate, wait for computers to come online, etc. THIS IS HUGE!!!!!!!
    4 - EDTD submissions now show on the Computer Detail page
    What else will I notice?
     
  10. Upvote
    MichalJ received kudos from Levi in Mail Security EOL   
    Hello @Joshi - I will be interested in hearing more about the particular deployments of this product in your / your customers environment. For what they were using it? What kind of mail servers they have been using? We are discussing internally a potential successor, but no decision has been made yet. Your insights might be very helpful. You can message me directly over here, if you do not want to disclose details publicly. 
  11. Upvote
    MichalJ received kudos from Ufoto in Unable to identify EDTD unlicensed devices   
    Hello, it´s possible that your instance has not yet been upgraded to the latest version (upgrades are pending now as we speak). In that case, you can find this "ESET Solutions" tab within "preview features", which is located in the "quick links" menu in the top bar of ESET PROTECT Cloud Instance. 
  12. Upvote
    MichalJ gave kudos to BradAtkins in Attempt to install ESET Server Security fails with "An internal error occurred. Please try again to start installation again."   
    OK, that works!
    I created a Live Installer package that only included the Management Agent.  And that installed on the Azure VM with no problems and checked into our Cloud Manager.
    Then I ran the efsw_nt64.msi installer.
    I was able to apply the license from the cloud.  
    All is well, thanks!
  13. Upvote
    MichalJ gave kudos to igi008 in Future changes to ESET PROTECT (formerly ESET Security Management Center / ESET Remote Administrator)   
    Hello, Many thanks for your suggestion.
    We will add it also to ESET PROTECT Cloud.
    We have it already in the on-prem version. I apologize. It was forgotten in the cloud version.

  14. Upvote
    MichalJ received kudos from redhot4400 in Endpoint Protection products should have release date   
    Hello. I have forwarded this info to our release manager, as I do agree, that every release post / info / metadata should include also the release date, for simpler orientation. 
  15. Upvote
    MichalJ received kudos from Ufoto in Unable to identify EDTD unlicensed devices   
    Hello. Currently, it is a bit difficult, to determine, which computer has EDTD activated and working. Your are right, that in the past, it worked in the following way: 
    You enabled EDTD via policy If the EDTD was "not activated" on a particular machine, it reported an error  Based on this error, you can group such machines in a dynamic group  You can have set "activated EDTD" task on top of such dynamic group that will enable it Currently, the "error" state was removed, and EDTD does not report that type of error it is not activated. Per my knowledge, this was due to some architectural changes, and moving towards "more proper" reporting of feature states. Last update I got from the developers was, that we are working on a better way, that will be most likely implemented in next releases. 
    One IDEA is use "ESET Solutions" tab, and over there you will see, how many have EDTD active, and how many does not have it active. You can click "Deploy", which should do both the enabling, and activation in one step. 
    Sorry for the inconvenience, and stay tuned for the updates, when the proper solution gets implemented. 
     
  16. Upvote
    MichalJ received kudos from JozefCh in Mail Security EOL   
    Hello @Joshi - I will be interested in hearing more about the particular deployments of this product in your / your customers environment. For what they were using it? What kind of mail servers they have been using? We are discussing internally a potential successor, but no decision has been made yet. Your insights might be very helpful. You can message me directly over here, if you do not want to disclose details publicly. 
  17. Upvote
    MichalJ received kudos from j-gray in Dynamic group for Computers requiring restart broke   
    That´s indeed a good question. My assumption is, that the product is functional, however older version of modules are loaded, meaning the highest level of protection, that will be achieved with newer modules is not ensured. As in some cases we bring new detection functionality along the way. But I will double check with the teams responsible. 
  18. Upvote
    MichalJ received kudos from j-gray in Dynamic group for Computers requiring restart broke   
    Hello. This is a new / adjusted status. As Dynamic group automation works on a concept of Agent being explicitly aware of the status types, following the change on the Endpoint side, we will reflect the change in the upcoming release of ESET PROTECT coming later this year. Please note, that for proper operations, both server / agents will have to be updated to the latest version. We are sorry for the inconvenience. 
  19. Upvote
    MichalJ gave kudos to JRV in Migrate EP on-prem to EP Cloud   
    Thanks, Martin; have now upgraded to ESET Complete.
  20. Upvote
    MichalJ gave kudos to rekun in ESET Endpoint Security v8.1.2037.2 Release   
    When using the auto update feature, the upgrade is first applied at reboot, so it will continue to be fully protected by the old version until you eventually reboot the device which is then upgraded
  21. Upvote
    MichalJ received kudos from Mattis Brumm in Configure period for warning: Last connected   
    As of now, this is not possible. Those "color coded statuses" are hardcoded in the webconsole. I will consult with our product management, if this is something that can be adjusted in the future product releases. 
  22. Upvote
    MichalJ received kudos from fish in Sort By Management Agent Version   
    Hello, recommended approach would be to use the dashboard / reporting functionality for it.
    You can navigate to the tab "ESET applications", where you can see which are outdated and even list count of all outdated versions. Then you can initiate upgrade by "one click" from there, for a particular version, you seek to upgrade to a newest version.
  23. Upvote
    MichalJ gave kudos to Marcos in Detections Actions Error   
    The issue is caused by an older version of the Translation support module. On Monday we should start with upgrade, however, it will require a restart of the ESET PROTECT Cloud instance.
  24. Upvote
    MichalJ gave kudos to dmaasland in How to detect which process changes background desktop   
    Try something like this:
     
    <?xml version="1.0" encoding="utf-8"?> <rule> <definition> <operations> <operation type="WriteFile"> <operator type="or"> <condition component="FileItem" property="Path" condition="starts" value="%APPDATA%\microsoft\windows\themes\cachedfiles\" /> <condition component="FileItem" property="FullPath" condition="is" value="%APPDATA%\microsoft\windows\themes\transcodedwallpaper" /> </operator> </operation> <operation type="RegSetValue"> <condition component="RegistryItem" property="Key" condition="starts" value="HKCU\software\microsoft\windows\currentversion\explorer\wallpapers\backgroundhistorypath" /> </operation> <operation type="RegDeleteValue"> <condition component="RegistryItem" property="Key" condition="starts" value="HKCU\software\microsoft\windows\currentversion\explorer\wallpapers\backgroundhistorypath" /> </operation> </operations> </definition> <description> <name>Wallpaper was altered</name> <explanation> The wallpaper was altered </explanation> <category> Default </category> </description> </rule>  
  25. Upvote
    MichalJ gave kudos to Marcos in Documentation on PROGRAM COMPONENT UPDATE - Auto Update   
    On August 25 we are starting to roll out the very first uPCU update to v8.0.2039 version for those with older Endpoint v8.0 versions. The rollout will be staggered and we expect it will take about 2 weeks to get downloaded by all users with an older version of Endpoint v8.0.
×
×
  • Create New...