Jump to content

katycomputersystems

Members
  • Content Count

    64
  • Joined

  • Last visited

Kudos

  1. Upvote
    katycomputersystems received kudos from MartinK in KB6666 Computers with less than 1,000 MB free disk space   
    You did it! Thanks.
    Using custom headers, I am able to specify who gets my reply message Wednesday morning.
    Here is the report:

     
    And the group that identifies the computers in need of attention:

     
    RMM, I don't need no stinking RMM, I have ESMC!
     
  2. Upvote
    katycomputersystems gave kudos to MartinK in KB6666 Computers with less than 1,000 MB free disk space   
    I think there are two possibilities (but had not confirmed it is actually enabled):
    configure notification over this dynamic group. Unfortunately you will be receiving notification without list, and most probably for each device separately. use scheduled reports. It should be possible to prepare report which shows devices in specific group (or maybe dynamic groups can be completely bypassed here). Once reports is prepared, it is possible to schedule it to be sent to email, and there should be possibility to not send empty data.
  3. Upvote
    katycomputersystems gave kudos to MartinK in KB6666 Computers with less than 1,000 MB free disk space   
    Problem is that group as you defined it will be matching devices, where at least one devices has capacity less than 1GB -> so for example devices with connected USB key or even devices with CD/DVD ROM, which mostly reports capacity 0MB.
    I would recommend to add another condition, either explicitly specifying id of storage, or possibly requiring that reported capacity is >0. For example:

    where only one of additional conditions should be required, byt it depends on your environment. I would recommend to use "Storage Id", especially in case you are interested only in system disks and devices are using default "C:".
  4. Upvote
    katycomputersystems gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @SysEPr Thank you for your feedback: 
    With regards to the first case, we will investigate this behavior. It looks to me more like a bug in the implementation. We will check this internally.  We are planning to introduce more advanced IFTTT (If this then that)  logic, into ESMC, however it will not happen in ESMC 7.1 for sure. But it´s on the roadmap for the future versions, that will allow you to achieve better automation, and such advanced conditions. 
  5. Upvote
    katycomputersystems gave kudos to Zen11t in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: anti-phishing Ignore button disable option
    Detail: when user open a phishing website user can ignore the warning and open the site. We need a function where we can disable "Ignore threat" button. I did't find any option under Anti-phishing protection settings. Please add it to ESMC policy's too.
     


  6. Upvote
    katycomputersystems gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @katycomputersystems Functionality to change the group in the computer details is coming back. It was accidentally removed during the redesign.
    @Zen11t We have a project/ feature tracked to globally control all of the interactive windows for the future. I will add your comment to there.
  7. Upvote
    katycomputersystems gave kudos to Kieran Barry in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: A "Reset to Default" option for different parts of the ERA.
    Detail: This one has mainly been discovered due to my own fault. There are many things that can be played with within ERA which is great, however I think there are some of us that might play a little too much and then get to a point where we've changed so much of something that it doesn't work or doesn't give you what you want. 
    For areas such as reports and policies, it might be a good idea to have a button that you can click while editing that restores the default values. That way, if you play around too much and feel like you just want it back to how it was before, you have a reset button as a saviour.
  8. Upvote
    katycomputersystems gave kudos to AStevens.SHG in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: Export list of firewall rules (zones, exclusions and any other configurable lists)
    Detail: IT Security would like to regularly review the list of firewall rules, zones, exclusions, basically any configurable list within ESET on a regular basis.
    There doesn't appear to be an easy way of doing this, from an ESET client you can export settings to an XML file, but this isn't readable for management staff.
  9. Upvote
    katycomputersystems gave kudos to AStevens.SHG in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: See Endpoint client logs within ERA.
    Detail: We would like to be able to see the logs from a client (Detected threats, Events, Computer scan, Blocked files, HIPS, Firewall, Filtered websites, Antispam protection, Web control and Device control) within the client entry in ESET Remote Administrator. While some threats and problems are highlighted in ERA, not everything is. A Filtered website blocked by Anti-Phising blacklist for example doesn't seem to appear in ERA, can only view it on the client's log.
  10. Upvote
    katycomputersystems gave kudos to AStevens.SHG in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: Individual firewall rule hit count.
    Detail: Similar to hardware firewalls, it would be nice to see a hit count, packets matched, kind of information per individual firewall rule in Endpoint protection, also for that information (similar to above requests) to be visible in ERA, and total of the hits across all clients with the same rule. So we can generate reports, this makes it easier to find rules no longer being used and can be removed safely.
  11. Upvote
    katycomputersystems gave kudos to AStevens.SHG in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @MichalJ Thank you.
    Point 1 - The most urgent requirement is to print Firewall rules in a readable format (CSV / TSV / XLSX / DOCX / PDF) to review, or record for auditing, really need something ASAP for this.
    However, I expect this will extend to all "Lists" within ESET, zones, IDS exceptions, app modification web and device control, and other exclusion lists, anything similar. I do see an "Import" option on Exclusions popup, but only when viewing the top level Antivirus, Files and folders to be excluded from scanning, not on real-time, on-demand, etc. file extensions exclusions popup.
    Secondly, I would say more for an ERA Administrator, it would also be very useful to be able to export the rules, zones and other "lists" in ESET to CSV / TSV and then be able to import them.
    While we are able to Duplicate a whole policy, this would give more flexibility to create and import a previous list, while quickly removing/adding lines in the CSV file before.
    Point 2 - Excellent, is there a rough ETA on ESMC V7 yet?
    Point 3 - Great, thank you.
  12. Upvote
    katycomputersystems gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @katycomputersystems Thank you for the feedback. We are already tracking improvement for that, it was requested by several MSPs in the past, who are using different tools for having access to the machine, but also by some customers, doing the same. 
  13. Upvote
    katycomputersystems gave kudos to Marcos in Future changes to ESET Security Management Center / ESET Remote Administrator   
    The problem with this is that there's no unified location for storing information about license expiration dates of installed software.
  14. Upvote
    katycomputersystems gave kudos to LCS in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Personally, I think this would allow us to sell a lot more ESET. Going a bit further, I wonder if it is possible to get the expiration date of the installed product? Then a month or two before the competing product is due for renewal, we as MSP's can go in and quote for the renewal.
     
    Andy
  15. Upvote
    katycomputersystems gave kudos to LCS in Future changes to ESET Security Management Center / ESET Remote Administrator   
    I agree with this.
    Typical example yesterday, in which I was attempting to install ESET EAV on a machine. The report said "try installing the product locally." Did this and then realised that I was trying to install EAV when I should have been installing ESET File Security for Microsoft Windows Server. 
    In this case, I would like to see the report come back and say something along the lines of "Detected O/S: Windows Server 2016. Compatible products are ESET File Security for Microsoft Windows Server." Like wise, if it were a linux system, then "Detected O/S: Ubuntu Server 16.04.4. Compatible products are ESET File Security for Linux / FreeBSD." etc. 
    The agent has all the info about the O/S, so why not use that information and parse back some meaningful information?
     
    Andy
  16. Upvote
    katycomputersystems gave kudos to ewong in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description:  Able to determine the "reason" why the task failed in the Task Execution History.
    Detail:
    Right now, suppose a task failed for a particular system.  In ERA, you go to that system, go to "TASK EXECUTIONS", select the task entry,  and then right click and select "History", it would show something like:
    2018   Mar 22 16:06:58           Security product       Failed       Task failed              Task failed in the security product
    There's no way to find out "why it failed" until I go directly to that system and do a manual check.
    Having some sort of reason why it failed helps the sysadmin to figure out how to get it updated, if it is at all possible.
     
  17. Upvote
    katycomputersystems gave kudos to SysEPr in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: More advanced search function
    Detail: It would nice if we were able to search other parameters as well, like serial number, or MAC address
    -----------
    Description: Assign computers from usermanagement
    Detail: I think there should be a feature where I can assign or remove multiple computers from a user's details page - right now you can only do it from the computer's details page
    -----------
    Description: Jump to computer from usermanagement
    Detail: I think it would be nice if I could easily jump from a user's details page to the computer's details page easily, and I wouldn't have to look it up separately.
  18. Upvote
    katycomputersystems gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @SysEPr
    Advanced search is planned for the future version. We are continuously improving the "search via filters", but that´s not a generic search bar you might have in mind. Assign computers from user management  - This is coming in V7 Jump to computer from user management - This is coming in V7
  19. Upvote
    katycomputersystems gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @fchelp Default trigger expiration is set for "one month" , not one day. I have attempted to create a new trigger now, and it sets expiration day for 19th February 2018.

  20. Upvote
    katycomputersystems gave kudos to Zoltan Endresz in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: 
    Trigger tasks based a definied activity time frame 
    Details:
    Maybe it would be useful a possibilities to create tasks for a group of computers wich were active in a specifield time frame. For example "if they were not active during on the last two weeks" or "if they are active at the moment".
     
    Description: 
    Delete the duplicated computers automatically 
    Details:
    Day by day I find "duplicated" computers on the system. I created a report to find these computers (Group by: Computer name and Count: Computer), then time to time I delete the older entryes. It is a bit confusing.
     
    Description:
    Make a task chain
    Details:
    It would be wonderful a new possibility to make a task chain. For example:
    Task 1: Update the EES
    Task 2: Trigger a pop-up window on the affected client (Please restart your computer or Your computer will restart in 60 minutes) 
    Task 3: Wait 60 minutes
    Task 4: Restart the client
      
  21. Upvote
    katycomputersystems gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @Zoltan Endresz Thank you for your feedback. Points 1 & 3 are in the backlog, and we are working on a new "orchestration" framework, which should enhance the server side automation. It should enable "task chaining", and also more sophisticated triggering options based on tagging and IFTTT (If This Then That) principle. We anticipate this functionality to be introduced in future evolution of V7.
    Concerning the point 2, in the upcoming version 7, we are greatly enhancing the system to detect cloning / re-imaging of machines, which should prevent creation of duplicates. Also, you can automatically remove them, by the means of "delete not connecting computers" task (if all of your other clients are connecting regularly).
  22. Upvote
    katycomputersystems gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @fchelp This has been already requested, and a corresponding backlog item is created. It will not be implemented in the next release, but we will evaluate it for 7.1
  23. Upvote
    katycomputersystems gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @fchelp
    You can open the individual task entry in Admin / Client tasks, by the little "+" expand button, and then toggle a context menu for individual entry. You can remove individual triggers, or eventually even edit targets. Screenshot attached.
    In the next version (7.0) we will be adding possibility to save a filter set, for a various conditions (un-managed computers, computers without security product installed, computers with a specific security product version ...). You will then get the filtered view on top of all computers by few clicks. However, you won´t be able to automate like you do for Dynamic Groups. However, for the future, we are working on more in-depth server side automation, where defined conditions will result in "tagging" a computer, and automation framework will check "assigned tags" and trigger actions based on them. This won´t be done to 7.0, as the feature is a bit complex, but it´s being worked on. Filter sets are below, on the screenshot.


  24. Upvote
    katycomputersystems gave kudos to MichalJ in Future changes to ESET Security Management Center / ESET Remote Administrator   
    @fchelp For the version 7.1 we are planning improvement related to asset tagging (assigning tags to computers based on meeting criteria) and then using those for filtering / automation. Also, in the upcoming version of 7.0, it will be possible to to save "filter sets", with kept values, that will allow to quickly filter relevant web console sections, with those.  I do understand the use-case, and you can be assured, it´s in our plans. 
    Also, you can drill-down from the report results, choose the computers into the "computers pane" and then do an action / task. Isn´t this sufficient? 
    The same is valid for the "import computers from reports to task" (7.1). 
  25. Upvote
    katycomputersystems gave kudos to fchelp in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: Cancel scheduled task
    Detail: Currently once a task has been scheduled you can do nothing to stop it, please add the ability to be able to cancel a scheduled task.
    ============================================
    Description: Dynamic Group without agent
    Detail: I should be able to create a Dynamic group without the need of an agent installed on the clients computer, this is extremely useful for example when i want to  create a server task to install agent on all agent less computers, also once a computer was already connected through an agent ERA anyway has all info from the computers so why do we have to wait until all computers actually connect again that the dynamic group should update? so many times i want to run a task on all computers that are named a specific way, so i create a dynamic rule then i have to wait i don't know how long until all computers connect to era so my dynamic group updates and only then i'm able to run my task.
    ============================================
    Description: Exclude computers located in AD group from dynamic group.
    Detail: The ability to filter out in dynamic group computer that are located in a AD group group, for example i currently have a dynamic group nested under "All" that filters computers that are named a specific way and are specific OS, i want to exclude computers that even if they are named and have the correct OS they still be excluded because they are located in a specific AD group.
     
    Thanks
×
×
  • Create New...