Zurd 4 Posted December 18, 2014 Share Posted December 18, 2014 Using ESET RAC 5.1.38.0, in Tools / Policy Manager, I've created a custom policy where there is an exclusion of files. It is saved, I can see it. In the Clients lists, I've right-click the client, choose Set Policy and used the custom policy I have created. However, on the client, in ESET Endpoint Security, I cannot see the exclusion that I have created in my custom policy. I've waited for 30 minutes now, still can't see it, what more can I do to make this work? Link to comment Share on other sites More sharing options...
Zurd 4 Posted December 18, 2014 Author Share Posted December 18, 2014 I saw in the documentation that [policy] "Rules are applied immediately after the client connects to the server" So I rebooted the computer but I still cannot see this new policy. Link to comment Share on other sites More sharing options...
Zurd 4 Posted December 19, 2014 Author Share Posted December 19, 2014 I tested the policy with another settings just for testing, the "Scan removable media", is now at No, I rebooted the client computer but this option is still checked. We only have one custom policy, we're modifying "Windows desktop v5" but I also tested with v3 and v4 but it's still not working. The client computer is using ESET Endpoint Security 5.0.2229.1 Link to comment Share on other sites More sharing options...
Solution Zurd 4 Posted December 19, 2014 Author Solution Share Posted December 19, 2014 After much testing everything's working! Here's some tricks that can help to troubleshoot this. In ESET RAC, in the Clients tab, there's a column for "Requested Policy Name" and "Actual Policy Name". This page helps in setting up ESET RAC: hxxp://kb.eset.com/esetkb/index?page=content&id=SOLN3453&locale=en_US In the client, this option is available in: Options > Antivirus & antispyware > Real-time file system protection > Setup... > Extensions and not in: Options > Antivirus & antispyware > Exclusions by path It takes forever for the client to receive the new configuration. Here's a list of things that seems to make a difference in pushing the new policy: - Wait 15 minutes for every changes you make, check the column Last Connected to know if the new policy has been pushed or not, seems like it's being reset every 15 minutes - Multiple reboots of the client computer - Setting the policy "Default system policy" then to the custom policy and back for the client in ESET RAC - Opening ESET on the client and going to Tools (it takes forever to show this page so maybe it's getting the new configuration) - Wearing a hat and singing seems to help too Link to comment Share on other sites More sharing options...
Arakasi 549 Posted December 24, 2014 Share Posted December 24, 2014 You can set the check in time of the endpoints from 10-15m down to even 3m check ins etc. Link to comment Share on other sites More sharing options...
Zurd 4 Posted December 24, 2014 Author Share Posted December 24, 2014 You can set the check in time of the endpoints from 10-15m down to even 3m check ins etc. Where would that option be? I can't find it. Will that use more bandwitdh to communicate with every clients? Link to comment Share on other sites More sharing options...
Arakasi 549 Posted December 24, 2014 Share Posted December 24, 2014 Not enough to make a noticeable problem. The endpoints communicate back to the ERA server using a session service on a tcp port 2222. I have attached pic with location inside Configuration Editor Link to comment Share on other sites More sharing options...
Recommended Posts