Orascu Vlad 1 Posted December 3, 2018 Share Posted December 3, 2018 Hello all Recently we had some issues with ESET. We have Eset Endpoint Protection in our environment. We are also using sign Sign On for some applications. We have noticed that SSL/TLS Protocol filtering was blocking / altering https traffic to ADFS, related to sign in info, which was preventing users from logging in to the applications. After disabling the SSL/TLS filter (as atatched in the picture) the sign in process succeeded. Is this ok for this to happen? Thank you Link to comment Share on other sites More sharing options...
Administrators Marcos 5,250 Posted December 3, 2018 Administrators Share Posted December 3, 2018 Disabling SSL/TLS filtering is not recommended, otherwise HTTPS traffic won't be filtered at all. As a result, Web Control rules may not work, malicious or scam https websites will not be blocked and possible malware downloaded via https may not be detected. A secure solution would be excluding the particular url or certificate from filtering. Link to comment Share on other sites More sharing options...
Orascu Vlad 1 Posted December 3, 2018 Author Share Posted December 3, 2018 Hello Marcos Can you please show me how to exclude? Thank you Link to comment Share on other sites More sharing options...
Administrators Marcos 5,250 Posted December 3, 2018 Administrators Share Posted December 3, 2018 You can exclude the appropriate SSL/TLS communication here: Also you can switch the SSL/TLS filtering mode from automatic to interactive so that you are prompted for an action when a secure communication is detected. After excluding the communication based on the particular certificate you can switch back to automatic mode. Link to comment Share on other sites More sharing options...
Orascu Vlad 1 Posted December 7, 2018 Author Share Posted December 7, 2018 Hello Marcos Is it possible to exclude somehow all address for a domain? for example *company.com? Thank you Link to comment Share on other sites More sharing options...
TobiMG79 0 Posted December 7, 2018 Share Posted December 7, 2018 (edited) Hi, i have some customers with endpoint antivirus with this similar problem. some webites deploy banner-ad and their zert would block by eset...very ofter for the same zert/website. All browser, all os (7,10) Any Idea? Edited December 7, 2018 by TobiMG79 Adon: users with local admin rights, dont get this windows from ESET! Link to comment Share on other sites More sharing options...
TobiMG79 0 Posted December 7, 2018 Share Posted December 7, 2018 users with local admin rights, dont get this windows from ESET! Link to comment Share on other sites More sharing options...
Administrators Marcos 5,250 Posted December 7, 2018 Administrators Share Posted December 7, 2018 Expired certificates will be handled by the browser itself soon. This change has already been made in consumer products through a module update with Endpoint to follow soon. Link to comment Share on other sites More sharing options...
TobiMG79 0 Posted December 7, 2018 Share Posted December 7, 2018 TOP! Thank you for this Info! best regards Tobi Link to comment Share on other sites More sharing options...
Orascu Vlad 1 Posted December 7, 2018 Author Share Posted December 7, 2018 16 minutes ago, TobiMG79 said: users with local admin rights, dont get this windows from ESET! I avoid that generally due to security risks Link to comment Share on other sites More sharing options...
Recommended Posts