Jump to content

WebGreg

Members
  • Posts

    12
  • Joined

  • Last visited

About WebGreg

  • Rank
    Newbie
    Newbie

Profile Information

  • Location
    Poland

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Hello. I am currently using Protect version 10 on CentOS. I came up with the idea of combining the Protect update to version 11 with changing the server to Windows Server 2022. I had an idea that I would export the certification authority from the old one. I will import this certificate on the new server. I will export the agent certificate from the old server. I will create a new policy on the old server addressed to the new server and attach the agent certificate to it. I linked the policy to the test station. Unfortunately, it doesn't work - the logs show an error in communication with the new server - the certificate is invalid. It works if I export the certification authority and the agent certificate from the new server > I import the certification authority on the old one > create a new policy on the old one and attach the agent certificate of the new server to it. The only thing is that I need to have both servers online for some time to give all stations time to download the new policy and contact the new server. If it works for me in the first variant - I could turn off the old server, set the new one to the IP address of the old server and if the certificates were OK - workstations should report as if it were the old server. Am I wrong? Any tips?
  2. Thank you but that's probably not the point, or I don't understand this setting. The above will send me a notification to the email address I provide if the detection is not handled, right? What I want is not to receive notifications about those that have been handled. How would this setting turn this off?
  3. Hello. It's about this place: https://help.eset.com/ees/10.1/en-US/idh_config_notice.html I receive a lot of notifications that a threat has been detected on my workstation. But they were blocked. Is it possible to set it so that I only receive notifications about threats that have not been blocked, disinfected or removed? Basically, I wonder if there is any point in receiving notifications here - unresolved ones are automatically signaled in red in the Protect console. But I don't know how to turn off this type of notifications, since I can only specify the level of detail. What is your approach to this? What is good practice in this regard?
  4. Hi @emilota It is indeed in Eset PROTECT but I wrote about Eset BUSINESS ACCOUNT. Today I have another example of why I need it. In the EBA i see a device named for example: "ST-2020-XX-1". However, I do not see such a computer in my Eset PROTECT. At the moment I do not even know if it is a computer connecting from my network, but under a wrong name, or if someone has activated the license outside the organization. I have nothing to identify the device. The name is not enough. Second example from EBA - I see duplicate device (both make connections). However, I only see one device in Eset PROTECT. I don't know if it's a bug or again - someone is impersonating one of the devices and using the license illegally. I don't have a MAC address (I still mean EBA) so I don't know if both entries refer to the same device. I can't see the connection addresses so I don't know if they are in the same location.
  5. OK thank you. Maybe I will come back to the topic with updating to 10 and then something will be settled.
  6. Hi @MartinK I have no problem updating e.g. from version 8.0 to 8.1 - it works. The problem is with the jump from e.g. 7 to 8 and now - 8 to 9. Nobody replied for several days, so yes - I deployed a new machine and migrated the data. But it's a bit annoying that with each such update I have to install a new machine. Thank you.
  7. Hi @emilota. Thank you for your answer. I need this at EBA. Devices with an external IP address do not have access to the management server with Eset Protect - company security policy. As a result, I have some unmanaged devices. They connect to EBA to activate the license, but here I can only see the connection date. I can see the IP address in the audit section, but here just one fixed address shows up for obvious reasons.
  8. Well then... Description: ESET Business Account - column with last connection IP.Detail: In the event that computers frequently change their location or the environment is highly dispersed, the information from where the last connection was made is as valuable as the date of the last connection.
  9. Hello. After logging in, I click on: Help > Update product > Update button. After that I'm logged out and ... that's it. The file EraServerInstaller.log ends with records: 2021-11-28 16:13:38 Information: Installer: Copying installer to target destination: /opt/eset/RemoteAdministrator/Server/setup/installer_backup.sh 2021-11-28 16:13:38 Information: Installer: File ownership set to: root:root 2021-11-28 16:13:38 Information: Installer: Setting auto-start service. 2021-11-28 16:13:38 Information: Installer: Generating Xauthority token. From that date I cannot log in and no new entries have appeared. My support recommended starting with a new virtual machine, but I would not really like to update products this way. Any hints? ESET PROTECT (Server), Version 8.1 (8.1.2209.0)ESET PROTECT (Web Console), Version 8.1 (8.1.221.0) CentOS (64-bit), Version 7.9.200 Database info: DB Name: era_db DB Version: MySQL 5.6.50 DB Size: 252MB
  10. Hello. ESET Business Account > Activated devices > Here is column Last connection date. But there is no last IP address. Such information would be very useful as it would allow you to determine where the license is used.
×
×
  • Create New...