Jump to content

endpoints refusing to be activated


Recommended Posts

i have eset protect on prem server and 10s of windows computers

they are around 15 computers refusing to be activated with the product activation task , connected , pingable , accessable , etc but not getting activated

license still have enough seats and expiry is in 2024

what to check ?! 

Link to comment
Share on other sites

  • Administrators

Please carry on as follows:

  1. Enable advanced logging under Help and support -> Technical support
  2. Attempt to activate the product
  3. Stop logging
  4. Collect logs with ESET Log Collector and upload the generated archive here.
Link to comment
Share on other sites

  • Administrators

The logs were taken from a machine without ESET installed. Please provide ELC logs from a machine where ESET is installed but activation is failing.

Link to comment
Share on other sites

31 minutes ago, Marcos said:

The logs were taken from a machine without ESET installed. Please provide ESET Log Collector logs from a machine where ESET is installed but activation is failing.

the logs were taken from the protect server ..do you want the logs from tbe endpoint?

Link to comment
Share on other sites

  • Administrators

Yes, the logs were supposed to be taken from an Endpoint with ESET installed where activation was failing. Please provide such logs.

Link to comment
Share on other sites

13 hours ago, Marcos said:

Yes, the logs were supposed to be taken from an Endpoint with ESET installed where activation was failing. Please provide such logs.

here you go

ees_logs.zip

Link to comment
Share on other sites

  • Administrators

Unfortunately a SysInspector log which is selected by default was not selected and therefore was missing in the generated zip file.

image.png

Link to comment
Share on other sites

2 minutes ago, Marcos said:

Unfortunately a SysInspector log which is selected by default was not selected and therefore was missing in the generated zip file.

there is no sysinspector installed on the endpoints
i opened a ticket , this is taking too much time

Link to comment
Share on other sites

  • Administrators

There's obviously a problem establishing SSL communication with ESET's servers. Please check if you have applied this workaround in the past and undo the changes if an update addressing the security vulnerability is installed:

https://learn.microsoft.com/en-us/security-updates/SecurityBulletins/2015/ms15-031?redirectedfrom=MSDN#ID0EUNAE

How to undo the workaround. Follow these steps to disable the SSL Cipher Suite Order policy setting:

  1. At a command prompt, type gpedit.msc and press Enter to start the Group Policy Object Editor.
  2. Expand Computer Configuration, Administrative Templates, Network, and then click SSL Configuration Settings.
  3. Under SSL Configuration Settings, double-click SSL Cipher Suite Order.
  4. In the SSL Cipher Suite Order window, click Disabled and then click OK.
  5. Close the Group Policy Object Editor and then restart your system.

If that's not the case, provide a Wireshark pcap log from an unsuccessful activation attempt.

Link to comment
Share on other sites

7 minutes ago, Marcos said:

There's obviously a problem establishing SSL communication with ESET's servers. Please check if you have applied this workaround in the past and undo the changes if an update addressing the security vulnerability is installed:

https://learn.microsoft.com/en-us/security-updates/SecurityBulletins/2015/ms15-031?redirectedfrom=MSDN#ID0EUNAE

How to undo the workaround. Follow these steps to disable the SSL Cipher Suite Order policy setting:

  1. At a command prompt, type gpedit.msc and press Enter to start the Group Policy Object Editor.
  2. Expand Computer Configuration, Administrative Templates, Network, and then click SSL Configuration Settings.
  3. Under SSL Configuration Settings, double-click SSL Cipher Suite Order.
  4. In the SSL Cipher Suite Order window, click Disabled and then click OK.
  5. Close the Group Policy Object Editor and then restart your system.

If that's not the case, provide a Wireshark pcap log from an unsuccessful activation attempt.

nothing like this was done 

 

Link to comment
Share on other sites

4 minutes ago, Marcos said:

Ok but you can prepare the pcap logs cause technical support will request them.

they can do them themselves - i will not lose time over a broken software 

Link to comment
Share on other sites

  • Administrators

There's likely a problem with the OS itself and the underlying SSL implementation may not work properly, otherwise there would be no problem to establish SSL communication. Let's wait and see what technical support will find out from the pcap log.

In the logs I've seen frequent issues recently:

image.png

image.png

Also more than 40 certificate errors like this on May 31:

image.png

Link to comment
Share on other sites

i think even your support contact has issue 

i received this after filling a support request online 

 

<support@esetme.com>: host mail.midisglobaluae.com[94.200.27.254] said: 550

    5.7.0 Local Policy Violation (in reply to end of DATA command)

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...