CMS

Hi folks, I have been quite happily using a command line step in MEMCM to install ESET Endpoint Antivirus. Example as follows: PROTECT_v9.0.2046.0_Installer_x64_en_US.exe --silent --accepteula This no longer seems to be working, as ESET does not get installed as part of the task sequence. If I run the command from an administrator level DOS prompt it doesn't do anything, so it suggests something has changed with the options needed. Should the above command still work, or if not are there still command line options I can use to silently install the endpoint? Thanks

Thanks. What is the "File Security" version, is that no longer supported? There are some other version for Windows Server but I can see they are specific e.g. Mail Security and SharePoint.

Thanks. Is there a reason that the dashboard shows it as out-of-date? Where can I check to see which versions are genuinely out-of-date?

Hi folks, I've spotted that there seem to be two general versions of the endpoint for servers, File Security and Server Security. Which version should I be using for servers like DCs, file, and print? To-date I've been using File Security. Thanks

Hi folks, I have an auto-update policy which is on and set to apply to all clients. I just spotted on my dashboard that all endpoints are out-of-date, most are on an older version of 9 e.g. 9.0.2032.6 rather than 9.0.2046.0. Why are they not updating? Also, should auto-update update the agent as well? Thanks

Thanks Marcos. I just found it on Feedly's RSS search as well.

I don't suppose there's an RSS feed for these announcements?

Thanks Marcos. I don't seem to get any sort of news update from ESET via email. Is there a place where I can get news updates that these product changes have taken place? Thanks.

Hi folks, As per subject, has ESET PROTECT replaced ESMC? I noticed a pending update in ESMC and saw this was listed as a product to update to. (If it has replaced ESMC, where can I get news/information that these changes are taking place?!) Thanks

Hi folks, I've got a few machines that were joined to the domain and then ESET was installed, but subsequently their computer names have been changed. They are still showing in ESMC with the old name. How do I get ESET to update this? Thanks

Thanks. Where do I find the "deactivate seats" setting? Can't spot it in server settings.

I've double checked and no PCs are muted. The offset always seems to be two, as the number of PCs with alerts has increased to 5, but EMSC now shows "7" on the left. I'll log a support ticket.

Yes, subgroups is ticked, and no filters are set.

Thanks. Yes, definitely deactivating as well. I had to reboot the server for Windows Updates, and subsequent to that the numbers have updated. What's odd though is that the number of computers listed is around 10 less than the number of licenses used. Should these not be equal, or the number of licenses lower if some PCs are not managed?

Hi folks, Our license usage in ESMC is showing as slightly over, so I have done some tidying up and removed some ex-PCs (ensured no policy was applying, used "Stop Managing", and "Remove Device"). I have verified they are no longer in the Computers listing. Our license count is still exactly the same though. Does it takes some minutes/hours for the license count to catch up? Thanks

So the dashboard also shows 6 as "security risks". if I click the panel it takes me to the computer list for machines with "Alert" status which is back to 4 machines again. Any ideas?

Yes, from Feb and Jan. The filter had been set to a time range, so I've removed that and see threats going back for many months. These are all previous though and have been resolved. I suspect there must have been a filter on the group to hide resolved threats, which I may have removed. If I add back a "threat resolved" filter then the "Computers with active threats" group is now empty.

Thanks. So a mix of things, mostly unsafe applications e.g. Win32/Bundled.Toolbar.Google.D, but in some of these cases at least the threat has been "cleaned by deletion" and everything in this list is marked as resolved. I'm not sure why all these items are still showing in "active threats".

I had a look at all the machines with threats, and they were all false positives due to what it thought were problem applications in a driver install package. So I've marked them as resolved. I've gone back to the "Computers with active threats" group and looked through all the machines via their details. Not sure what you mean by "Cause column in the Threat panel", how do I get to that? All I can see in details, under Threats and Quarantine, is that some but not all PCs have a quarantined item. None of them have active alerts. Is the quarantined item classified as an active threat?

For example the number in the main menu is still "6" - same as it was yesterday - yet still only 4 computers show with alerts. Am I right in thinking that this number *is* for computers with alerts? Just in case I'm comparing it with the wrong thing.

Hi folks, In ESMC the Computers icon on the left appears with a red number, which I'm assuming shows the number of machines that have an error. When I filter the computers with errors the number never matches the list, which leads me to one of two conclusions: 1. The number on the left is wrong. 2. This number relates to something else. I have asked ESET support about this, and they said it's a known bug. But the previous ESET Remote Administrator did exactly the same thing, so I just want to check with other users whether this sounds correct? If so, I can't believe that such a vital bug has not been fixed. Thanks

Hi folks, I received a "Malware Outbreak Alert" email, which is triggered when > 5% of machines have an active threat. I checked the "Computers with active threats" dynamic group, and it has 5.5% of our total PCs there, so it must have just tipped over, rather than being an actual mass outbreak. I have rung ESET support, but got a somewhat wishy-washy response about what to do, which was essentially taken from what I was going to do anyway, listed below. The steps I thought to follow were as below: 1. Open the ESMC console 2. Go to Computers > Computers with active threats (Dynamic group) 3. Look at the list of computers, and look at each computer in detail (left click computer, select “Show Details”) 4. When looking at the computer details, look at the Threats & Quarantines section. Is anything listed there? 5. Worst case, it might be necessary to go the ESET client on the PC itself and look at those same sections to see what is shown. Firstly, does this sound like the right approach? Secondly, I have some computers in the "Computers with active threats" dynamic group that don't have any threats - the threat column has "0" in it, and nothing shows when I look at the detail. Anyone know why they are showing in this group? Thanks

It hadn't been clear to me in the guide that I should have changed the server type to what would have likely installed by default, which then just uses Windows auth. That worked.

I can't install ESMC as it's asking for a database administrator username and password, which I have no record of. The admin username and password don't work. Not sure if the issue is this, or the connection credentials, but have logged a support ticket.

Ah, I hadn't realised the name had changed. Is the functionality massively different? i.e. as big a jump as v5 to v6