dgtlsparks

Not sure if you found your answer or not, but i thought I'd throw my 2 cents in. You can monitor all web traffic by creating a rule for each category and add which logging level (severity column) should be attached to those rule actions. You'll need to scroll the window to the right to see the log level selection or increase the window size. I've attached an image of what I use - Web Rules Editor.png. This way, all web browsing done by a user is logged, with blocked sites showing as a Warning and allowed sites as Informational. Now, from the ERA, set the Web Control Log to collect logs at Level 3 or Normal log entries and above. I've attached an image of that as well - Web Log Level.png. This will display all web traffic passing through each client and the category rule that affected that traffic. BE WARNED!!!! This will create a HUGE load on your database and will slow the ERA down if you try browsing for a large number of events. What I recommend is filtering at the ERAC level for warnings only so you can see blocked content without bogging the console itself down, but the data is there if you need a report. With this configuration, I was able to replace a Websense Content Proxy for a 250 client organization and save the company a bundle.

Description: Hierarchical User control within ESET Remote Administrator Details: Creating users with different read\write permissions exists at a global level, but I'd like to see adding specific users to specific groups to limit the scope of systems they can see within the ERA Console. This would then dove-tail into what data they can see from the web dashboard by limiting the information to the groups that particular user has permissions to access. Likewise, adding some contact information for these users to create an internal address book would be useful as well. Thanks!

THanks for the response, Jeremy. The MSP program is very intriguing to me and I have reached out to my ESET sales rep about joining. I'd love to see the Mac version of ESET come in line feature-wise with the Windows version. Remote deployment is one thing, Web Content Filtering would be a huge plus too! The deployment method you mentioned in ERA 6 sounds really slick. It would save a lot of headaches for rolling out product in the MSP space where local ERA servers might not be feasible. I'd be happy to beta test it when it becomes available ( ). Thanks again fro your help!

I've read the KB @ hxxp://kb.eset.com/esetkb/index?page=content&id=SOLN2524 and can create a remote install package, but it requires Apple Remote Desktop to install. If you try to double-click the created .pkg file it runs a normal install, not the scripted one. What about situations where ARD won't work because the clients are behind a firewall at another site? For that to work you'd need to modify the client's firewall with some port forwarding and a pinhole in their NAT...not very secure and a ton of work. Are there any ARD-like services that can deploy the .pkg while using port 80 or 443? I'd say something like join.me, but you can only transfer the files and double-click the .pkg. Which, as I stated before, runs a normal install and not a scripted one. I thought about a push installation, but that has the same limitation as Apple Remote Desktop when the client and the ERA server are not on the same physical network. Can you create an invitation-based install package? Meaning you'd send an email from the ERA server to the client with a link. The user clicks the link and the install process can begin through the tunnel established when the link is clicked...kind of like Microsoft's Remote Assistance application. This could be device agnostic and would work for all the currently ESET-supported devices\OSes, providing a compatible package is created on the ERA server. Is any of this possible now or am I left with manually setting up Mac clients? Thanks!