Jump to content
jinlei801011

Endpoint update failed on apache http proxy

Recommended Posts

Posted (edited)

ESMC was installed one mth ago without apache http proxy. Today, I installed apache http proxy use ESMC AIO installer, edited httpd.conf file and created polices for Agent and Endpoint to update using it (Refer to https://support.eset.com/en/kb6750-install-apache-http-proxy-esmc-7x). But endpoint update failed with error "Module update failed, Unauthorized access". I didn't configure username and password.

 

 

 

Edited by jinlei801011

Share this post


Link to post
Share on other sites

Could you please double check that HTTP proxy was not installed with enabled mandatory authorization? Asking because referenced tutorial mentions this optional step in section 8 If you want to configure a username and password as last step of manual installation. If so, HTTP proxy requires authentication and thus providing credentials to endpoint is required - or authentication can be disabled by removing specific proxy configuration part.

Share this post


Link to post
Share on other sites
18 hours ago, MartinK said:

Could you please double check that HTTP proxy was not installed with enabled mandatory authorization? Asking because referenced tutorial mentions this optional step in section 8 If you want to configure a username and password as last step of manual installation. If so, HTTP proxy requires authentication and thus providing credentials to endpoint is required - or authentication can be disabled by removing specific proxy configuration part.

Hi MartinK,

I didn't go to the section 8 to configure a username and password. I installed it using ESMC AIO installer. Added below ProxyMatch to httpd.conf file, and then configured policies for Agent and Endpoint.

<ProxyMatch (?i)^(172\.17\.253\.189(:[0-9]+)?(\/.*)?)$>
Allow from all
</ProxyMatch>

Share this post


Link to post
Share on other sites

One you mentioned ProxyMatch I realized that also this might be an issue, as it is not clearly communicated in referenced article.

Could you also check, that your httpd.conf contains lots of other ProxyMatch directives, enabling clients to access ESET servers? If not, I would recommend to check httpd.conf which is part of proxy package for windows. In case directives are matching, clients won't be able to access resources on ESET servers, including updates. Configuration file from windows version contains directives enabling communication with all ESET services that could be possibly accessed by ESET products via HTTP proxy + it just has to be extended with your internal hostnames or addresses in case proxy is to be used for accessing also other resources - this applies especially in proxy is expected to route also AGENT-to-ESMC communication.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...