6.5 new feature: enable / disable protection features from the command line

[V2TW 3]

Hi,

This is listed under new features for v6.5:

• Added: Ability to enable / disable protection features from the command line by running “Run Command” task from ESET Remote Administrator (for example, to allow “advanced CMD commands” such as command line export / import of configuration)

How is this done? I don't see any command-line references anywhere for ecmd.exe.

 

[Marcos 5,071]

Currently exporting and importing configuration using ecmd in a secure way is available only to a limited number of corporate users as it requires an xml file to be signed with an ESET tool for security reasons.

It's possible to select "None" as authorization method, but this is insecure and not recommended.

As for disabling / enabling protection features, from ERAS you can run the following "Run command" tasks:

[E-Concept Applications 0]

Hello,

Is it possible to enable/disable HIPS feature like the others ?

And "ecmd /setfeature antistealth pause" don't work for me...  

Thanks for the reply !

Edited March 29, 2017 by E-Concept Applications

[E-Concept Applications 0]

Rectification:
"ecmd /setfeature antistealth pause" works, but only from ERA. Not in Administrator Command Line.

[Marcos 5,071]

That is correct. Those commands can only be used with the "Run command" client task from ERA for security reasons. Ecmd supports only pausing protection features, it cannot permanently disable them. HIPS cannot be paused but can only be permanently disabled (not recommended as you'd lose proactive protection against majority of new malware).