FrankM
-
Posts
20 -
Joined
-
Last visited
Posts posted by FrankM
-
-
-
Hello,
I've updated our company wildcard certificate "*.company" within the MDC policy, because the old one will be invalid next week.
(See attachement)
The MDM shows two alerts:
QuoteHTTPS certificate change still in progress.
The old certificate is still being used
The "Force certificate change on" has not yet been reached
I checked two iPhones with this alert:
QuoteDevice hasn't updated its HTTPS certificate yet.
but, if I check the profile on the phone I can see both "*.company" certificates, the new one and the old one. So for me it looks like, that the certificate is updated..
(Android phones also show the warning, but I didn't check the phones)
So I'm really confused!
What's running wrong here?
Thanks
Frank
-
Hello,
how can I get the information about OS Build Number and Security patch on Android devices?
ESET Protect 8.1Frank
-
Hello,
I've renewed the the "Enrollment profile signing certificate" and created a new profile which is pushed to the MDM.
Is there anything else to do to e.g. on mobile client site?
Thanks
-
Hi,
is iOS 15 already compatible with ESET?
I've one client who has updates to 15 and the iPhone seems to not connect to the MDM (Last connected time few days ago)
Thanks
Frank
-
Hello,
I' ve renewed an expiering APN certificate.
I created a policy with the new cert an assigned the new policy beside the old one to the MDM.
Now the iOS clients not connecting to the MDM(which isn't really true, because the do, but the GUI says, the not...)
What have I to do, that the iPhones accept the new APN cert?
Thanks for help
Frank
-
Hello,
if i'm looking in the Android section of ESC I can find OS Information, but e.g. OS Build Number and OS Security Patch are "n/a". If there the possibility to read these infos also out?
Thnaks
Frank
-
Hello,
since the last update to ESET Endpoint Security 6.10.900.0, user with timemachine on NAS get every few minutes an windows like "New device detected Backups of xxxxx Mounted on /Volumes/.timemachine..."
* Media scan of network devices is disabled * Folder "/Volumes/.timemachine/*.*" is excluded.
*macOS 11.2 64-bit
*ESET Endpoint Security 6.10.900.0
Any clue to stop that?
Thanks
Frank
-
Thanks.
It would be a nice feature
-
Hello,
is it possible to set a kind of one time password for configuration config and policy by the user itself?
I want to send the user a password, which is 2 hours valid an the user can disable e.g. the firewall for debugging (or temporary needs).
Yes, I can create a new policy with override creds, but there is only one password and I have to disable the policy manually after 2 hours.
Thanks
Frank
-
Hello,
after update MDMcore for linux and ESMC, and downgrade the mysql database to version 8.0.17 I can't register iOS device (iOS 14.2)
iOS device:
"Product not activated"
The Overview says, that the last connection time was some time ago(I guess, the first contact)
MDM Server:
APNS service certificate validation failed
The tracelog of MDM:
HTTP/2: AsioTcpClient(0x0x7ff9642055e0): HandshakeHandlerInner error: 'Certificate verification did not pass'
2020-12-15 07:38:03 W [140711116293888] APN: Failed to send PN to device: xxxxx. HTTP/2 error: 2
2020-12-15 07:38:05 E [140711091115776] HTTP/2: AsioTcpClient(0x0x7ff964104fc0): HandshakeHandlerInner error: 'Certificate verification did not pass'
2020-12-15 07:38:05 W [140711091115776] APN: Failed to send PN to device: xxxx. HTTP/2 error: 2
2020-12-15 07:38:33 E [140711091115776] HTTP/2: AsioTcpClient(0x0x7ff9642055e0): HandshakeHandlerInner error: 'Certificate verification did not pass'
2020-12-15 07:38:33 W [140711116293888] APN: Failed to send PN to device: xxxx. HTTP/2 error: 2
2020-12-15 07:38:34 E [140709906609920] DeviceLicenseManager: Device 'xxxxx': Client license activation error: CEcpCommunicatorV2: ECPAssociateManagedProductSeatRequest request failed, error=0x20103004.
2020-12-15 07:39:04 E [140711107901184] HTTP/2: AsioTcpClient(0x0x7ff964104fc0): HandshakeHandlerInner error: 'Certificate verification did not pass'
2020-12-15 07:39:04 W [140711107901184] APN: Failed to send PN to device: xxxxE. HTTP/2 error: 2Opend firewall ports:
2195-2197, 5223, 9980-9981
MDM Server policy:
HTTPS certificate is an valid wildcars certificate from DigiCert
Enrollment profile signing certificate, self signed certificate with FQDN of the mdm-server as CM
ESET PROTECT (Server), Version 8.0 (8.0.2216.0)
ESET PROTECT (Web-Konsole), Version 8.0 (8.0.170.0)Thanks for help -
Hi,
I'm using Endpoint Security for Android. I've enrolled it via ESMC, which uses the playstore for downloading the App.
Now ver 2.8.12.0 is installed as latest version found in playstore.
But ESMC give me a warning about outdated version (2.9.7.0).
If I try to update via ESMC task, the task never ends and the user has to update manually but don't get any notification about that update, How is the right way to update it automatically without user action?
When will the playstore version be updated?
Thanks
-
Its really confusing.
if I use the parameters intermediateRepositoryDirectory and outputRepositoryDirectory, as decribed above, I get the path .."/com/eset/apps/business/ees/windows/v7;", but without any file named "update.ver" and it don't work.
If I use --intermediateUpdateDirectory and --outputDirectory, I get a path like "mirror/eset_upd/ep7/" and a file named update,ver. This way is working.
-
Hello Marcos,
yes the name of the mirror server is eses. to use IP address didn' make a change
I get the error "File not found on server" If I try to use http
-
Hm, but where I have to configure the path?
What I did:
Install a Apache virthost on port 2221, DocumentRoot /var/www/html/mirror/ an the eset server
the path structure the mirrortool creates: /var/www/html/mirror/mirror/com/eset/apps/business/ees/windows/v7
In the police I configure:
Update -> Updates -> Module Updates -> Custom Server: hxxp:\\eset:22221
Program component update -> Custom Server: hxxp:\\eset:22221
Update Mirror -A enable HTTP server
http server -> port 2221
-
I also try to map the to z: in windows and set z: as path in the policy. Same error
-
after the suggested changes, same error
-
Hi,
I want to update a Windows Server without internet via mirror tool and shraed folder
But I get the error "Module update failed" Product update failed" Could not connect to server.
I installed the mirror tool under linux:
MirrorTool --repositoryServer AUTOSELECT --intermediateRepositoryDirectory /tmp/repoTemp --outputRepositoryDirectory /opt/eset/mirror/RepoMirror --languageFilterForRepository de_DE en_US DE en_US --downloadLegacyForRepository --productFilterForRepository Security --offlineLicenseFilename .....
My smb.cfg:
[mirror]
path = /opt/eset/mirror/RepoMirror/
public = yes
writable = no
printable = no
guest ok = yes
browseable = yesFolder on the mirror server:
/opt/eset/mirror/RepoMirror/com/eset/apps/business/efs/windows/v7/
total 44K
drwxr-xr-x 11 root root 4.0K Oct 13 09:58 .
drwxr-xr-x 4 root root 4.0K Oct 13 10:15 ..
drwxr-xr-x 4 root root 4.0K Oct 13 09:58 7.0.12016.1I configured an new policy with:
Create update mirror
storage folder: \\ESET_Server\mirror\com\eset\apps\business\efs\windows\v7
disabled "Enable HTTP server"
Username DOMAIN\Administrator
Via Windows explorer the share is accessible
ESET Security Management Center (Server), Version 7.2 (7.2.2236.0)
ESET Security Management Center (Web Console), Version 7.2 (7.2.230.0)Anny clue?
Thanks
-
Hello,
I want to allow Apple user to manage there Apple build-if firewall. For that, I disable the Firewall in the ESMC policy.
But if the user has the Mac firewall activated, he get the warning "Another firewall is detected"
How can I do that?
Thanks
Frank
"Device hasn't updated its HTTPS certificate yet. "
in ESET Products for Mobile Devices
Posted
Hello,
thanks for the detailed explanation of the process.
After the old certificate had expired, everything was as expected again.
The indication is just confusing
Frank