Rook

Yes, for ERA6 I recommend using the HTTP proxy. Put one on each site, and modify your policies in ERA so that clients on site1 go to proxy on site1. Site2 --> site2 proxy. Etc.. Apache HTTP Proxy (or Squid) can be installed on either Windows or Linux. You can refer to this article for instructions on installing HTTP Proxy on Windows: hxxp://support.eset.com/kb5950 And you can refer to this help guide for Linux: hxxp://help.eset.com/era_install/64/en-US/http_proxy_installation_linux.htm Best, Rook

Hello WarrenIITS, You can perform a component based install using ERA Software Install client task. Either by using the parameter 'ADDLOCAL' or 'ADDEXCLUDE'. ADDLOCAL will only install components you define - Example: ADDLOCAL=WebAndEmail,WebAccessProtection,ProtocolFiltering,WebControl,DeviceControl,EmailClientProtection,MailPlugins,Antispam,DocumentProtection ADDEXCLUDE will exclude defined components - Example: ADDEXCLUDE=Network,Firewall I can confirm both these parameters work via ERA. In the 'Software Install' client task settings, you just need to specify the parameter: ADDEXCLUDE=Network,Firewall You can view the full list of Feature Names (and other instructions) from here: hxxp://help.eset.com/ees/6/en-US/installation_via_era_command.htm However, the ESET File Security user guide is more up to date and includes the 'ADDEXLUDE' parameter: hxxp://help.eset.com/efsw/6.4/en-US/installation_cmd.htm Let me know if you need any other help! Best, Rook **edited to fix a misspelled word and formatting

@shmtsb and mstroud_pfi GPO is your best bet, it was designed for that purpose. ERA6 is not ADDS. If you add a new computer to your domain, you would need to resync ERA with AD and then create a new server task (or edit an old task) for deployment. My recommendation for an 'automatic' install of ESET would be as follows: -Create GPO for software install of the ERA Agent: hxxp://support.eset.com/kb3677 -Setup dynamic grouping for automatic Security Product Installation: hxxp://support.eset.com/kb3702(step 9 you could just use 'contains - ESET Endpoint') -I would also recommend adding 'contains - server' that way any server OS will not get added to the group, as you do not want Endpoint products installed on a server. -I also set this group as a child to the built-in 'Windows computer'dynamic group. That way this group will only pull in Windows OS computers. This should ensure that when new computers are added to the domain, they should complete the software install of the Agent upon next reboot (or gpupdate /force). The ERA Agent on those new computers will then be able to check-in with ERA server, and get sorted appropriately into Dynamic groups for the automatic Security product installation. The 'Software Install' task for the Security product should both install and activate ESET Security products. @NWDreamer Groups populated in ERA after sync with AD are Static groups. Dynamic groups are specifically created in ERA and can only pull in entries that shows as 'managed' (have the ERA Agent install). Regards, Rook

Hello See182, What version of ESET Remote Administrator are you using? If you're using ERA5 you could technically set up a 'subserver' (with update mirror) on each site and set up upper server replication so that child ERA servers report information to the "Upper Server". This is described in this KB article: hxxp://support.eset.com/kb950 Though, I would recommend going to the HTTP Proxy route. You could easily install an HTTP Proxy server on each site (I like Apache HTTP Proxy) and have clients on each site configured to update through the caching http proxy. Method 2 of this KB describes how to manually install: hxxp://support.eset.com/kb5950 If going the proxy route, you'll need to change your "update server" address back to the default 'Autoselect' for ESET servers. Then configure your http proxy settings in the 'Tools > Proxy Server' section. ***If you're already using ERA6 you should use the the proxy option, as ERA6 does not include an update mirror directly on the server component. Best, Rook

Calling querying about hashes sniffing is way too strong word for that operation. Lets say im happy with LiveGrid disabled But I would love to disable the alert. Is there any way around it now or maybe in future V9 updates? I still cant update to latest signature database. Stuck with 12383. You shouldn't be, you can literally disable the anonymous file submissions in the advanced setup menu. Live grid is insanely important for "Maximum Protection".

I think you're confusing the issue here @OneBulkyGuy. There is no way an antivirus program can protect/patch an exploit or vulnerability, this is a big reason why operating systems get updated. But it would likely add a layer of protection to a malware-related payload on the phone.

Yes it is a legit message from ESET. You, another user on your computer, or an actual thief , logged into your phantom account which triggers this automated email. Just follow the steps in this email and it should resolve your issues.