Jump to content

ESET Secure Authentication: Backtracing attempted connections into our company network


Recommended Posts

Hello there,

 

our company uses ESA to secure our whole network from unauthericed access. We noticed alot of failed tries to connect into our company network from outside. I gues its a normal thing with all those hackers out there. Inside our webconsole we were able to see from which IP's those rouge access attempts came from. 

Our question now is: Is there also a way to find out in which way they tried to connect to our Network via ESA. Like if they tried to go over certain ports, accounts or other ways? Are there accessable logs from which we can get those informations?

Edited by MKTMichael
Link to comment
Share on other sites

  • ESET Staff
Posted (edited)

Hi @MKTMichael,

Not sure if you are just using the Mobile App or the product. In case of product what you can do for the beginning is to access the Reports where you should see the failed attempts.

My reccommendation here is go to Reports and follow similar filter as I have below:

  • Go to Reports
  • Select Presets - Denied Authentications
  • In results select - Failure or Warning (investigate both)

Please see my screenshots below:

image.png

image.png

In case of any other questions please feel free to ask more.

Hope it helps.

Ingemar

Edited by IggyPop
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...