short_bus4

I'm not an ESET employee so don't quote me on any of this. Since they are potentially unwanted they aren't exactly malware or malicious. You should be able to go to the ERA6 installed applications tab and choose to uninstall them if they support agent uninstall. Otherwise you could just remote in to the machine and uninstall the applications. It looks like it uninstalled the Conduit.Y, maybe it is just a matter of time or it hasn't updated the newest information and it will get the rest? Is there any menu that pops up when you left click the red ones? Or is there any buttons at the bottom of the page (got cut off in your image)? That being said I would probably choose to do a manual scan with malwarebytes because it will allow you to remove PUPs/PUAs. I would go through and remove as many as I can through the normal add/remove process (I use CCleaner, so I can uninstall the programs and also check out the computer startup entries, IE/Firefox/Chrome Addons, and scheduled tasks), then run malwarebytes to see if it finds any files or folders that didn't get removed by ccleaner, reboot, then run ccleaners registry cleaner to get rid of any orphaned registry entries or folders. And I backup the registry file when it asks just in case. I also will go through the users appdata folder and program files folders just to look for anything else that doesn't belong, but that might be overkill. That's just my 2 cents. If you are in an enterprise environment it might be faster to just re-image the machine. And tell your user to stop installing software if they aren't going to pay attention to what gets installed along with it. Good luck!

I thought I did that. But I'm not strong with Linux so maybe it didn't overwrite the existing era.war or something. I'm trying again, but this time I'll delete the existing war file... And that did the trick. Maybe I forgot to transfer it, I definitely downloaded it. Thanks for the tip!

It's the same field, that's why I mentioned they should add another field for the SMTP TO: for the test. I have it setup and I receive mail from eset@mydomain.com, and eset is a non-existent email address.

It would be so awesome if you could update the ESET server software from ERA6. It pops up in yellow when the version is older than the newest available, I wish ESET would make it so you could just click the new version number and it would download/install the newer version and any prerequisites. Or even better, just auto update itself. Think of the saved bandwidth by only updating the changes and not the whole package every time!

Since the other topic seems to be pretty specific to Windows, I figured I would add a new one here. I'm running Ubuntu 14.04 Server. I downloaded the new Agent/Server.sh installer files and the new web console.war. I ran both Agent and Server sh files without any arguments and it upgraded the software. Copied the new .war file to the tomcat7 folder. My web console is loading, but I can't create a server task. "Failed to load trigger types compatible with task types." Also when trying to create a client task to do "Remote Administrator Components Update" when it gets to the point to pick the ERA server it doesn't list any servers. I have rebooted the server a couple times and it didn't help. So my server software is up to date, but I can't upgrade the Agents on my clients. I'm not sure if I can update the Antivirus software with the old agent or not, I just figured I'd wait until I could update the agent through ERA before I worry about the Antivirus software. Seems like the virus defs are still updating so that is the important bit.

For me it was just inserting a license key under admin, so I figure you can just reinsert the key maybe? The certifications are going to be important to export/import though.

I am running ERA6 Linux version and I see "Sender Address" right above "test smtp connection" my issue is it's sends the test to the sender address, but we are using eset@mydomain.com which is a non-working email address. So I had to test with a working email address and then change the sender address to our non-working email address. There should be another field under test smtp connection for a to: address just for the test.

I'll start by saying I don't know, but this is a database driven application so I'm thinking you can just copy the databse from Windows to Linux. Now I'm guessing you are using some version of Microsoft SQL Server on Windows and Probably MySQL on Linux, so you need to find out where the database is stored on both operating systems, convert the MS SQL database to MySQL, and then copy it over. You can google the process to convert a MS SQL database to MySQL. Seems like a good place to start while you wait on a real ESET rep to get back to you. Good luck and post here if you find anything out, I'd be interested to know if this is possible.

I'm running Ubuntu and I just re-ran the Server and Agent installs with no arguments and it upgraded them. Also copied over the new .war for web console. But...some things are acting funky. Can't start a server task probably the biggest issue. Getting: Failed to load trigger types compatible with task types. Also can't do "upgrade remote admin components" because it doesn't see my server. Although I'm guessing thats more for failover servers? I've only got the single server running.

Here ya go: hxxp://help.eset.com/era/6/en-US/index.html?component_installation_linux.htm

I'm trying to configure a Domain security group. I'm the only IT person, but I've got a slow day so I figured I'd try and get this security group thing working, well it was just giving me a connection error, so I ran the diagnostic tool and I'm getting this: 2015-02-12 13:54:38 Error: ConsoleApiModule [Thread 7fc9ea7d4700]: Untranslatable CInterModuleException: boost::process::find_executable_in_path: file not found: No such file or directory: "wbinfo" I love how Ubuntu helps idiots like me. I typed in wbinfo and it told be to install "winbind" apt-get install winbind So I'm not getting an error any more. It doesn't find anything though, there is nowhere to specify a domain or authentication or anything. Do I need to track down the LDAP connection string and manually type it in there? What is the select button even for?

Just wondering what it would take to enable SSL for my Web Console? The help file mentions this: NOTE: When you install the Web Console using the Installer, the default Web Console address is: https://localhost/era/ But there was no installer on the AIO ISO disk, or one for download that I can see. So can I just google a generic "Ubuntu Tomcat 7 enable SSL" document? Has anyone made this happen? It's not a big deal really, as I'm only accessing the web console locally, and I'll just be using a self-signed certificate, but hey, why not?

Agent and Client deployments went pretty smooth. Kind of slow though. Tasks don't trigger very fast, see my other topic. Still can't figure out how to force a policy/sync between RA and an Agent. The web console is pretty fast though. Definitely an improvement over the Symantec Endpoint Manager piece of junk I have been using for years.

I'm trying to get a report about "Client tasks execution" to display the "Time of completion" so I can see how long the tasks are taking to complete, but when I add that column the report no longer has any data, and in the process I also managed to delete some of the default columns so now my whole report is screwed up. Is there any way to default the report or download the default one for import? Lesson learned, make a copy before you edit a report.

.

Can you make it so when you check the ALL checkbox to select all of something that you can then uncheck an individual item? For example I want to select all of my clients except one. It would be much easier if I could hit the CHECK ALL button and then deslect the one I don't want. As of now if you CHECK ALL then the individual checkboxes are greyed out. Thanks

I'm just wondering how to get the Tasks to start faster. For example I sent a command to one client. shutdown -r, sent 11 minutes ago. Why is it taking so long? There's no other deployments happening as far as I can tell. It's kind of hard to tell really, maybe I just don't know where to look. Is there a place to see what the server is currently working on? And as I am typing this it finally completed, 12 minutes after it was sent. I tried a test message task as well and it took about as long. Triggers were both set for ASAP. Also, is there a way to get RA6 and the Agent to sync up on demand? I have a policy in place for it to check every 5 minutes, but I don't know how to get a client to update when I want it to. Probably the same question really, but specifically policies. I started by setting the group policy for my Windows clients to the 60 minute interval and then switched to the 5 minute interval, but will my clients not get the new policy until the 60 minute interval is up? How do I get them to refresh their policy on demand? I'm probably overloading a single topic here, but I also have one singular client that is reporting that Windows Security Center is reporting "the feature is not installed or working properly", but when I go to the client the security center doesn't have any warnings. Maybe it is already cleared, I don't know, I can't get it to update on demand, I guess I have to wait for the 60 minute policy to check? EDIT: yep, this client is cleared now, and the policy was updated. I'm sure there's probably a way to force the agents to sync with RA6, I just can't figure it out.

Another issue I found, and this may not be specific to the linux version of RA6. The last run status of the AD sync for one of my static group syncs is displaying the wrong status. I have 3 ad sync groups, all have completed successfully if you go into the details, but one says last status "failed" for some reason. The other two haven't ever failed though.

More on my Ubuntu Server 14.04 install. Thanks to my troubles with CentOS things have gone a little more smoothly with Ubuntu. The Server, Agent, Web Console, and Rogue Detection Sensor installs all went fairly smoothly. A few things: Web console is a pre requisite for Agent install, why is Agent first in the Linux installation help file? Nitpicky, but it seemed like an odd choice. As mentioned above ODBC doesn't install the driver information into /etc/odbcinst.ini. Here is what mine looks like (Obviously this is 64 bit, don't try this on 32 bit): [MySQL] Description = ODBC for MySQL Driver = /usr/lib/x86_64-linux-gnu/odbc/libmyodbc.so Setup = /usr/lib/x86_64-linux-gnu/odbc/libodbcmyS.so FileUsage = 1 After that the server installation worked fine. The web console instructions say: sudo cp era.war /var/lib/tomcat/webapps/ but on Ubuntu 14.04 with Tomcat 7 the Tomcat folder has a 7. sudo cp era.war /var/lib/tomcat7/webapps/ The agent install requires a password for the agent certification, but the server install creates an agent cert. So I assume the first step after installing the server is to revoke the default agent license? Kind of confusing. I have left the server and CA certs alone, but created a new agent cert so I knew what the password was for the Agent installer. Post install AD sync would not work at all and I had to take several steps to enable Kerberos authentication. Here's what I sent in to ESET support. Let me tell you it would be nice to know where trace.log is stored, if it is stored somewhere. Having to run the Diagnostic Tool and then unzip and open the log file every time I wanted to see what errors I was getting was a pain in the ######! klist wasn’t part of default install or any of the prerequisites from the install instructions, so I added krb5-user (ubuntu said klist is also part of the heimdal-clients package) apt-get install krb5-user Then it needed ldapsearch so I added apt-get install ldap-utils Now I’m getting: ldap_sasl_interactive_bind_s: Unknown authentication method (-6) additional info: SASL(-4): no mechanism available: No worthy mechs found So I ran: apt-get install libsasl2-modules-gssapi-heimdal And I finally got a successful AD Sync. So that is where I am now, I'll work on agent and endpoint deployment this weekend. Still gotta deal with Symantec uninstalls on all my clients too

It turned out that there is a SELinux devel package I had to install. Then I had to install the GNOME gui to install QT5 because it isn't in the CentOS Repositories and I didn't want to have to build it. I guess I could have tried QT4, which is in the repositories, but I gave up before I thought of that. I had everything working but AD sync, so I rebooted the server and never got the web console to load again, so I said screw it and switched to Ubuntu Server 14.04 which had its own share of problems, but i think I have everything working now. Thanks! Oh I almost forgot, it doesn't look like Tomcat is set to start automatically on CentOS and when I googled how to do that it looked like a huge pain. Just FYI.

Yesterday I tried installing Remote Admin on CentOS 7, it was like pulling teeth every step of the way. I'm using Hyper-V so I couldn't use the available virtual appliance. First I started off with the minimal install, but that didn't install the developer package for SELinux which blocked the installation. Then when I got to the web console installation I couldn't install QT5-Webkit because it isn't in the repository and it turns out the only way I could figure out how to install it was with a .run file which required me to install GNOME. I didn't want to have to install a bunch of libraries and compiler and build it from scratch and I didn't want to have to install the GUI, but the GUI ended up being the easier option. Near the end of the day I finally got things up and running, although I never got an AD scan to run. So I rebooted to try to get the scan to trigger and it never would load up again after that, all services were running but I would get a "Not connected" on the web console login screen. So this morning I wiped out the VHD and started from scratch with Ubuntu 14.04 server. Well it turns out the mysql and libmyodbc don't install any MySQL driver in /etc/odbcinst.ini So after manually configuring that file I finally have the server installed. Just wanted to vent a bit, I'm not very strong with Linux, so this is taking forever.

I'm trying to get Remote Administrator 6 running on CentOS 7. I'm cheap and I don't want to have to pay for another Windows Licencse, so I'd much rather get this working on Linux. I've got all the dependencies installed per THIS LINK, MySQL is running. I've copied the Standalone Installers folder to the hard drive and set it to +x When I run the installation script it gets to : Storing ports into configuration ... done Creating 'config' directory path: /etc/opt/eset/RemoteAdministrator/Server Creating 'libs' directory path: /opt/eset/RemoteAdministrator/Server Creating 'data' directory path: /var/opt/eset/RemoteAdministrator/Server Creating 'logs' directory path: /var/log/eset/RemoteAdministrator/Server Moving LangData.dat to /var/opt/eset/RemoteAdministrator/Server/Localization/LangData.dat... done Extracting ReportPrinter files... done Creating startup configuration file /etc/opt/eset/RemoteAdministrator/Server/StartupConfiguration.ini ... done Creating config file /etc/opt/eset/RemoteAdministrator/Server/config.cfg ... done Backing up contents of /opt/eset/RemoteAdministrator/Server Copying files to target destination: /opt/eset/RemoteAdministrator/Server File ownership set to: root:root Setting auto-start service... Disabling eraserver.service rm '/etc/systemd/system/multi-user.target.wants/eraserver.service' ln -s '/etc/systemd/system/eraserver.service' '/etc/systemd/system/multi-user.target.wants/eraserver.service' Installing SELinux policy.... failure Error: Failed to install SELinux policy due to missing dependencies. I'm using CentOS 7 minimal install, so it may just be that I need to install a package or something, I'm not real strong with Linux so I'm not sure what to try next. Thanks