coch

V11 .msi silent install fails

Recommended Posts

Command line (from an administrator CMD window):

msiexec /i "eav_nt64.msi" /qn /log log.txt

Fails to complete install (progress bar rolls back changes and installer exits).

Following error found in log.txt:

Error 1406. Could not write value ProductACode to key \Software\ESET\ESET Security\CurrentVersion\Info.  System error .  Verify that you have sufficient access to that key, or contact your support personnel.

EDIT: Error still occurs after setting registry permission to Everyone = Full control for key "HKEY_LOCAL_MACHINE\SOFTWARE\ESET", and taking ownership of the key.

 

EDIT 2: Clarified that I am running CMD with Administrator rights, of course.

 

EDIT 3: Using /qb instead of /qn displays two errors (cannot write registry key) during install, which can be ignored and the install can complete. The registry key HKEY_LOCAL_MACHINE\SOFTWARE\ESET\ESET Security\CurrentVersion\Info does exist after installing this way. Looks like the installer throws an error about not being able to write to this registry key when in fact it can.

 

Edited by coch

Share this post


Link to post
Share on other sites

Aha! found a fix to my own issue, or workaround... or a hack actually:

I was able to fix by modifying the .msi installer with SuperOrca, as follows:
- Open SuperOrca.
- Search for ProductACode.
- Open section Registry.
- At the ProductACode line, replace #[PRODUCT_A_CODE] with [ProductACode]  --> this was only a guess from me, but I thought it was off that the string looked different from the one just above, so I made it look the same by typing [ProductACode] in there.
- In the line just below (line should be called ProductBase), replace #[PRODUCT_BASE] with [ProductBase]. This is the second registry error that appeared when using /qb
- Save the .msi.
- Silent install now works without errors, and didn't see anything wrong so far with the functioning of NOD32.

 

Still seems to me like the installer has bugs which should be fixed officially instead of using hacks like this.

Share this post


Link to post
Share on other sites

Consumer products are not distributed as msi installers but with a bootstrapper as an executable. Extracting msi and running it will not work properly, a bootstrapper is needed to accomplish all tasks required for a successful install.

Share this post


Link to post
Share on other sites

Thanks Marcos.

I understand consumer products aren't offered as .msi installers. However, the .msi installers are available straight from ESET servers, so surely they are meant for someone (non-consumers?), and that someone will likely run into the same problem I did if they try to silently install.

 

Personally, I don't need my installer to absolutely be a .msi, but I do need silent install and I didn't find a way to achieve that other than using the .msi installer.

Is there a way to achieve silent install with the regular .exe installer, including picking up the configuration file so that NOD32 is configured as desired after install? (the old ADMINCFG=cfg.xml trick, which I confirm still works with v11 .msi installers by the way). If this is possible I

Edited by coch

Share this post


Link to post
Share on other sites

Could you please elaborate more on the use-case scenario?

Share this post


Link to post
Share on other sites

Well, it's not a very elaborate use case, I just like installers of software that I use to have silent install switches, that's all.

This is what allows me to reformat, reinstall Windows, and run a batch file that I wrote which installs all drivers and software that I use silently and unattended. I like to reformat/reinstall Windows frequently (roughly every month or so), and this makes the difference between a 20 minute operation (silent, automated installs) and a few hours of manually installing and configuring all software.

Edited by coch

Share this post


Link to post
Share on other sites

So, anyone knows of silent install switches for installing using the regular .exe installer (not the .msi installer)?

Share this post


Link to post
Share on other sites

I to am having the issue with installing Version 11 Nod32 in unattended mode.

As a system builder we use ESET exclusively. Systems are prepped for shipment with a logon script that installs the apps into the end user profile at first login. The last being the ESET ready to accept the license key or start a trial

We have used the script method below for years, though in the last 4-5(??) years we had to grab the MSI from the temp folder after the MSI files were no longer downloadable.

::Installing Eset AntiVirus
msiexec.exe /i %windir%\Factory\Apps\ESET\ehs_nt64_enu.msi /qb! REBOOT="ReallySuppress" ADMINCFG="%windir%\Factory\Apps\ESET\Config.xml"

Starting with version 11 the following error occurs

Could not write value ProductACode to key \Software\ESET\ESET Security\CurrentVersion\Info.  System error .  Verify that you have sufficient access to that key, or contact your support personnel.

To test, installing from the EXE in interactive mode does not cause the issue and installs without an error.

So I'm guessing a value needs passed with the msiexec command but not sure at this point what that is.

ESET has never provided an OEM method of installing and though I have spoken to sales team about this I have always had to come up with a scripting method. It would be great to be provided official OEM preinstall tools but will definitely settle for the value that needs passed with the MSI install

Any input form admins or users that have worked this out would be greatly appreciated and I will look into method proposed by "Coch" 

 

Edited by NBPC

Share this post


Link to post
Share on other sites

Home version does not support installation using msi file; there are operations that can only be performed by the bootstrapped executable which is mainly the reason for not providing msi installers for consumer products.

Share this post


Link to post
Share on other sites
On ‎10‎/‎26‎/‎2017 at 9:48 AM, coch said:

I like to reformat/reinstall Windows frequently (roughly every month or so)

What about restoring an image , rather than reformat/reinstall? Restoring an image is a 7 min operation.

Share this post


Link to post
Share on other sites

Use the bootstrapped exe installer and the following parameters:

--silent --accepteula

Share this post


Link to post
Share on other sites

Marcos

will the  -  or /  ADMINCFG= %path%/config.xml arguments also pass as before?

Share this post


Link to post
Share on other sites

I tried to use the switches suggested by Marcos on the exe and on the msi just to be sure.

There was no effect on the exe and the msi just threw up the options windows for msiexec.

Here is a work around that works well for my needs - use this at your own risk

Create a registry file to inject the values needed BEFORE using the msi install method.

This was created using a sample exe installation in normal interactive mode,  and exporting HKLM\\Software\ESET\ESET Security\CurrentVersion\Info

It took a little testing to trim down the keys to the bare minimum that had to be in place to allow the install to work silently and without error.

One value of concern was the "ProductVersion"="xx.xx.xx" but I found this was not needed so this should work thru the 11.xx versions - 

Here is the final registry key. I named mine "eavsilent.reg", adjust to your file naming methods accordingly. 

------------------------------------------------------------------------------------------------------------------------------------
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\ESET\ESET Security\CurrentVersion\Info]
"ProductACode"=dword:0000006a
"ProductACodeStr"="com.eset.apps.home.security.windows"
"ProductBase"=dword:00000000
"ProductType"="eav"
"ProductName"="ESET NOD32 Antivirus"
------------------------------------------------------------------------------------------------------------------------------------
So now the heart of the final working script is like this

::Installing Eset AntiVirus
reg import %your_path%\eavsilent.reg
msiexec.exe /i %your_path%\ehs_nt64_enu.msi /qb! REBOOT="ReallySuppress" ADMINCFG="%your_path%\Config.xml"

Perhaps one day ESET will supply the OEM markets (hopefully with a "Provided by" branding insert) with a supported solution for the partner deployments

coch likes this

Share this post


Link to post
Share on other sites

@NBPC, thanks a lot, much better than my approach of hacking the .msi installer file using Orca, and I confirm this also works perfectly for me (it also seems to resolve a few minor issues I was having).

Share this post


Link to post
Share on other sites

Please do not use msi installers to install consumer products, otherwise you may encounter unforeseeable issues, e.g. with uninstallation. No technical support will be provided by customer care for issues with hacked msi installers.

Instead run the bootstrapped exe installer as follows:

eis_nt64_ENU.exe --silent --accepteula --language 1034

Share this post


Link to post
Share on other sites

@ Marcos

You are offering the switches for unattended installs using the EXE file but you have not responded to "coch's" question - Is there a switch to incorporate the preconfigured settings, similar to the /ADMINCFG=cfg.xml using the EXE method you posted.

Without the ability to preload settings the silent install I'm my case is of little value.

For me, the whole point is to script a preconfigured package that leaves the end user the ability to enter a license key or begin a trial with all recommended settings preset at first login

The MSI method does this. The MSI is extracted, not hacked, and ESET will uninstall or repair cleanly and without errors.

The method to achieve this can be EXE or MSI - we just need ALL the switches to be documented or posted if ESET prefers the EXE method as they did the MSI methods years ago

OR > If ESET would build an OEM installer with the ability to add a "Provided by %companyname%" and a small graphic spot for a company logo (Similar to Microsoft OEM) - That would be fantastic!!!  

 

Share this post


Link to post
Share on other sites
16 hours ago, NBPC said:

For me, the whole point is to script a preconfigured package that leaves the end user the ability to enter a license key or begin a trial with all recommended settings preset at first login

Just to add a voice, this is the precise reason I have to hack out the MSIs. If I had to configure Eset to my home clients manually each time I'd have to charge them more or go elsewhere :-(

Share this post


Link to post
Share on other sites

There's a solution for you; just run:

eis_nt64_ENU.exe --silent --accepteula --language 1034 --msi-property  ADMINCFG="%path_to_the_cfg_xml%"

Proactive Services likes this

Share this post


Link to post
Share on other sites

Thanks @Marcos this is very helpful and thanks @NBPC for following-up.

I will try those switches tonight and if it works as intended this resolves by issue on my end.

(And just to clarify, my initial workaround was to modify the .msi file, but later on based on NBPC's findings a registry method could be used without having to touch the .msi file and this was my preferred approach.

 

Looks like if everything works as described by Marcos I won't have to use the .msi anymore as the .exe installer will do everything I want (silent install and pre-configuration).

Proactive Services likes this

Share this post


Link to post
Share on other sites

Sorry it took me so long to test this, but

--silent --accepteula --language 1034 --msi-property  ADMINCFG="%path_to_the_cfg_xml%"

does not work for me when using the .exe installer.

The NOD32 install does start (as confirmed by seeing the process in Task Manager) and is silent, but appears to end prematurely and silently (without error message) adter about 10 seconds), and NOD32 does not get installed.

C:\Program Files\ESET\ESET Security only contains eula.rtf, eula.html and a "help" folder, but nothing else.

So, back to the .msi method for me, as this one works.

 

EDIT: and before someone asks, obviously yes I did replace the ""%path_to_the_cfg_xml%"" with my actual path

Edited by coch

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now


  • Recently Browsing   0 members

    No registered users viewing this page.