Jump to content

Failing to update Client Agent v6 to v7

davidpitt
 Share

Recommended Posts

davidpitt

davidpitt 4

Posted
Posted

Hi,

I've recently upgraded our ERA to v7 (From 6.6) and now trying to get the agents on the clients updated, however I'm running into issues!

 

I am trying to update Eset Agent from v6.4.283.0 to v7.0.577.0 using the "Security Management Center Components Upgrade"

However on several devices it is failing with the errors below....

 

Windows event logs show 

---------------------------------------------------------------

The description for Event ID 0 from source era-updater cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer.

If the event originated on another computer, the display information had to be saved with the event.

The following information was included with the event: 

era-updater
Execution finished with 0x643: (0x643), Fatal error during installation

---------------------------------------------------------------

 

 

Eset Trace log shows

---------------------------------------------------------------

2019-01-21 16:01:16 Error: CSystemConnectorModule [Thread 1c7c]: ReadUpgradeStatus: Upgrade of Agent from version '6.4.283.0' to '7.0.577.0' failed. Unexpected updater service Win32ExitCode 0x435

---------------------------------------------------------------

 

Any ideas?

 

Thanks

Link to comment
Share on other sites
  • ESET Staff
MartinK

MartinK 378

Posted
  • ESET Staff
Posted

Could you please search client machine for log named ra-upgrade-infrastructure.log? It will be most probably located in one of system temporary directories, or in standard AGENTs logs directory. It should contain full msiexec log which should help us to diagnose this issue: according your previous post upgrade fails with generic error 1603 ( 0x643).

Link to comment
Share on other sites
  • ESET Staff
MartinK

MartinK 378

Posted
  • ESET Staff
Posted
2 hours ago, davidpitt said:

Have you had chance to look at the log yet?

Thanks

I have forwarded it to colleagues as I was not able to find you what is reason.

Now it seems that problem might be with self-defense, resp. HIPS module that might be blocking AGENT service stop. Is there any special HIPS configuration applied on ESET security product installed on those machines? It is possible to test upgrade on client machine with disabled HIPS (disabled in security product on the same client machine?) - unfortunately it will require reboot between disabling HIPS and upgrading AGENT.

Link to comment
Share on other sites
davidpitt

davidpitt 4

Posted
  • Author
Posted

Hi,

Disabling HIPS has worked and Agent got updated.

Checking the policy, there are no special rules in place, other than 2 custom 'Allow' rules for LogMeIn and Hamachi.

All HIPS options are enabled and Filtering Mode is set to Automatic.

I'd prefer not to have to disable HIPS, wait for a restart, push out new agent, enable HIPS again on all devices if there is a fix for this issue?!?

 

Thanks

 

Link to comment
Share on other sites
  • ESET Staff
MartinK

MartinK 378

Posted
  • ESET Staff
Posted
On 1/25/2019 at 10:11 AM, davidpitt said:

Hi,

Would I be better logging this direct with support rather here on the forums?

I would recommend to open support ticket in the meantime to be sure this issue is properly handled.

It seems that HIPS module is protection AGENT service in way not even upgrade is possible, which is not proper behavior. Maybe @Marcos will know what and how to collect logs from security product so that it can be diagnosed.

Link to comment
Share on other sites
  • 1 month later...
davidpitt

davidpitt 4

Posted
  • Author
Posted

So after speaking with support they told me to try HIPS in training mode. When that didn't work, they told me to just disable HIPS, which I've tested and does work.

I've tried disabling every option under HIPS but the only thing that works is the disable the entire HIPS module. I even tried creating a HIPS rule that allows 'agent_x64.msi' full access to everything.

Also for my test machine, I created brand new blank Eset policies, did a clean install of windows 10, no config changes, installed v6.6 of the agent and then v7 of the Endpoint and still had the problem upgrading agent to v7 with HIPS enabled.

Very annoyed now, It baffles me how your own product can block it's own update, ridiculous! i'm really going off Eset and it doesn't help I'm getting pressured from my new bosses (With have recently merged) to ditch Eset and go with their BitDefender. To be honest the thought of having to update 1418 agents now to v7 and the problems I will face is making BitDefender very tempting possibility. Frustrating because I think the core AV of Eset is better and it's faster than BitDefender.

Ever since the product was re-written and introduced the agent mechanism for v6, we've had nothing but problems with updating Agents. Any calls to Eset support has always ended up the same way, with the support agent not being able to fix it and having to run the Eset uninstall tool in safe mode.

Apologies for the rant, just hoped by v7 these Agent issues would've been fixed :(

 

Link to comment
Share on other sites
  • ESET Staff
TomPark

TomPark 4

Posted
  • ESET Staff
Posted (edited)

@davidpitt if you do the upgrade in the following order this should work:

  1. Client with Endpoint 6.X Installed and Agent 6.5
  2. Upgrade the Agent to v7.0 (from ESMC Server)
  3. Upgrade the Endpoint to v7

This should work perfectly fine. In your situation could you confirm what V7 Version number you are running (this can be found under Help and Support > Product and License Information).

Edited by TomPark
Link to comment
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...