Jump to content

AStevens.SHG

Members
  • Content Count

    24
  • Joined

  • Last visited


Kudos

  1. Upvote
    AStevens.SHG gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @AStevens.SHG I do agree with the need for nested conditions. We have it tracked as a backlog request, but as it requires a bit bigger changes it was not put "high enough". But it was evaluated in the past, so I will link your request to that post, and increase the priority a bit. 
  2. Upvote
    AStevens.SHG gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @AStevens.SHG Understood. You can currently use "is one of" instead of multiple "AND" conditions in the upcoming ESMC. We anticipate the release next month (although, it might be a subject of a change eventually). 
    @pps  I have understood your request in the way, that you want to be able to better see who paused which protection after authenticating using the username / password. Having multiple passwords is a workaround, proper solution would be to track the user, who paused / disables the protection. Is this assumption correct? 
  3. Upvote
    AStevens.SHG received kudos from pps in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: Nested OR and AND in Dynamic Groups / Virtual Machines
    Detail: Nested OR and AND in Dynamic Groups creation, so you can have two or more sets of OR under an AND, or two or more sets of OR under an AND, or any combination.
    Example Virtual Machine or not (Physical) so we can split these two types apart, some advice here for how to determine it, will likely require nested criteria:
    https://blogs.technet.microsoft.com/kevinholman/2014/10/16/faq-how-can-i-tell-which-servers-are-physical-or-virtual-in-scom/
    PS. What's the rough expected release date for ESMC V7 at the moment?
  4. Upvote
    AStevens.SHG gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @AStevens.SHG This functionality is implemented in the upcoming ESMC V7.

  5. Upvote
    AStevens.SHG received kudos from katycomputersystems in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: Export list of firewall rules (zones, exclusions and any other configurable lists)
    Detail: IT Security would like to regularly review the list of firewall rules, zones, exclusions, basically any configurable list within ESET on a regular basis.
    There doesn't appear to be an easy way of doing this, from an ESET client you can export settings to an XML file, but this isn't readable for management staff.
  6. Upvote
    AStevens.SHG received kudos from katycomputersystems in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: See Endpoint client logs within ERA.
    Detail: We would like to be able to see the logs from a client (Detected threats, Events, Computer scan, Blocked files, HIPS, Firewall, Filtered websites, Antispam protection, Web control and Device control) within the client entry in ESET Remote Administrator. While some threats and problems are highlighted in ERA, not everything is. A Filtered website blocked by Anti-Phising blacklist for example doesn't seem to appear in ERA, can only view it on the client's log.
  7. Upvote
    AStevens.SHG received kudos from katycomputersystems in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: Individual firewall rule hit count.
    Detail: Similar to hardware firewalls, it would be nice to see a hit count, packets matched, kind of information per individual firewall rule in Endpoint protection, also for that information (similar to above requests) to be visible in ERA, and total of the hits across all clients with the same rule. So we can generate reports, this makes it easier to find rules no longer being used and can be removed safely.
  8. Upvote
    AStevens.SHG received kudos from katycomputersystems in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @MichalJ Thank you.
    Point 1 - The most urgent requirement is to print Firewall rules in a readable format (CSV / TSV / XLSX / DOCX / PDF) to review, or record for auditing, really need something ASAP for this.
    However, I expect this will extend to all "Lists" within ESET, zones, IDS exceptions, app modification web and device control, and other exclusion lists, anything similar. I do see an "Import" option on Exclusions popup, but only when viewing the top level Antivirus, Files and folders to be excluded from scanning, not on real-time, on-demand, etc. file extensions exclusions popup.
    Secondly, I would say more for an ERA Administrator, it would also be very useful to be able to export the rules, zones and other "lists" in ESET to CSV / TSV and then be able to import them.
    While we are able to Duplicate a whole policy, this would give more flexibility to create and import a previous list, while quickly removing/adding lines in the CSV file before.
    Point 2 - Excellent, is there a rough ETA on ESMC V7 yet?
    Point 3 - Great, thank you.
  9. Upvote
    AStevens.SHG received kudos from bbahes in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: Individual firewall rule hit count.
    Detail: Similar to hardware firewalls, it would be nice to see a hit count, packets matched, kind of information per individual firewall rule in Endpoint protection, also for that information (similar to above requests) to be visible in ERA, and total of the hits across all clients with the same rule. So we can generate reports, this makes it easier to find rules no longer being used and can be removed safely.
  10. Upvote
    AStevens.SHG gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    I have checked this with the developers, and we are going to change the behavior in V7. If you select "only computers", all of the computers under "DN" will be synced, not only direct parent ones. So it should behave according to your expectations.
    With regards to the "users", what is the usecase for you? For what do you use the? Do you manually create linking between users & devices, or use the user variables in policies for Endpoint or MDM?
  11. Upvote
    AStevens.SHG gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @AStevens.SHG Hello,
    Concerning the more options in the reports, some of the changes are going to be introduced, but not all of them. However, we are planning a bigger redesign for the future version, which might make it simpler. 
    Other requests are tracked in the feature backlog (authentication screen changes, AD sync changes, and export of data from "computers screen") and I believe that some of them will be done in the future versions (not in the 7.0, but into the future releases). I can´t comment now about details, as we are still scoping, and setting up the road-map plans. But your votes will be added to already tracked backlog items. 
  12. Upvote
    AStevens.SHG gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Hello, thank you for the feedback.  I have positive news for you - we are continuously improving the ways how reports are built & are adding further filtering options in the soon to be released version.
    So the filter by action is added in the upcoming version & you are also able to filter out some entries from the "installed applications" report, by choosing condition "is not one of" (screenshots attached).
     


×
×
  • Create New...