Quantcast
Channel: ESET Security Forum (Business)
Viewing all 5486 articles
Browse latest View live

Email protection by client plugins is non-functional after update to 7.1.12006.0

October 10, 2019, 7:08 am
$
0
0
Hello, I have 9 servers with error "Email protection by client plugins is non-functional" in ERA after I setup version 7.1.12006.0 of File Security. I rebooted two of the servers but I get the same error. Is there a setting in ERA ESET that causes the above error? PS: the above error cannot be dismissed when even If I press Dismiss. Thanks, Peter
Search

Clients not showing in ESMC

October 10, 2019, 8:28 am
$
0
0
Hi, I am using ESMC 7x, ESET file security and agent both are installed on Servers but on ESMC web console its showing as unmanaged computers.. i need solution for this

Questions about Unhandled Threats & Resolved Threats

October 10, 2019, 11:38 am
$
0
0
Hello! Please bare with me as this is my first post on these forums. I have some questions about ESMC v7 and its displaying of Unhandled Threats and dealing with "Resolved" threats. So for the Unhandled Threats I have setup a Dynamic Group thats using the following experssion: Active threats . Threat handled = no (I also attached a screenshot as well) This should the way I understand it show any Threats that are outstanding that have not had any "action" done to them correct? By action I mean clean, delete, block etc... The reason I ask this is that I see that if I look at my threats tab I have several more devices listed there with threats that have no Action done to them and are unresolved that do not show up in my Unhandled Threats group. As for the "Resolved" Threats question - I read that in v7 it should be possible to have the system auto resolve and clear out the threat listing by performing a scan? Is this correct? If so what type of scans qualify for this? Has anyone successfully automated this to clear out the low hanging fruit leaving only the issues that need actual attention left in the Threats tab? Any advise you guys and gals can provide would be greatly appreciated.

ESET Business account connexion Error

October 11, 2019, 12:38 am
$
0
0
Hi, I don't know if I'm in the right section, but I can't really find the right one. I almost always have a connection error when I try to connect to my professional account (EBA) with the following error: Application error Something went wrong, please try again later or contact support. ID: 88b287c8-7db2-439e-bbfa-68a986fd01ce am I the only one in this case? is there a problem on the platform or is it a known browser problem? (Google Chrome & Safari same result) thanks.

Cannot delete tasks in security management center

October 11, 2019, 5:56 am
$
0
0
Hi I am having this problem with a lot of diferent tasks. When i try to delete them a error message states:"Error deleting task." If i try do edit task the error states: " Failed to modify task: No access" What can i do do delete or edit the tasks ? Thanks

Update servers down?!

October 14, 2019, 8:04 am
$
0
0
All our servers and clients are failing to update via ESMC. The ESMC logs are displaying a lot of HTTP 401 and HTTP 502 errors, but only since around 13:00 today. Is this a global issue that you're aware of? ESMC has been rebooted and the proxy cache cleared but to no avail. 10.1.1.51 - - [14/Oct/2019:16:00:24 +0100] "HEAD hxxp://update.eset.com/eset_upd/ep7/dll/update.ver.signed HTTP/1.1" 502 - "-" "EEA Update (**SNIP**)" 10.1.1.51 - - [14/Oct/2019:16:00:24 +0100] "HEAD hxxp://um09.eset.com/eset_upd/ep7/dll/update.ver.signed HTTP/1.1" 502 - "-" "EEA Update (**SNIP**)" 10.1.1.51 - - [14/Oct/2019:16:00:24 +0100] "HEAD hxxp://um11.eset.com/eset_upd/ep7/dll/update.ver.signed HTTP/1.1" 502 - "-" "EEA Update (**SNIP**)" 10.1.1.85 - - [14/Oct/2019:16:00:25 +0100] "CONNECT edf.eset.com:443 HTTP/1.1" 200 - "-" "-" 10.1.1.51 - - [14/Oct/2019:16:00:25 +0100] "HEAD hxxp://91.228.166.13/eset_upd/ep7/dll/update.ver.signed HTTP/1.1" 502 - "-" "EEA Update (**SNIP**)" 10.1.1.51 - - [14/Oct/2019:16:00:26 +0100] "HEAD hxxp://um02.eset.com/eset_upd/ep7/dll/update.ver.signed HTTP/1.1" 502 - "-" "EEA Update (**SNIP**)" 10.1.1.51 - - [14/Oct/2019:16:00:27 +0100] "HEAD hxxp://um07.eset.com/eset_upd/ep7/dll/update.ver.signed HTTP/1.1" 401 - "-" "EEA Update (**SNIP**)" 10.1.1.51 - - [14/Oct/2019:16:00:28 +0100] "GET hxxp://um07.eset.com/eset_upd/ep7/dll/update.ver.signed HTTP/1.1" 502 487 "-" "EEA Update (**SNIP**)" 10.1.1.51 - - [14/Oct/2019:16:00:30 +0100] "GET hxxp://um07.eset.com/eset_upd/ep7/dll/update.ver.signed HTTP/1.1" 502 487 "-" "EEA Update (**SNIP**)" 10.1.1.51 - - [14/Oct/2019:16:00:31 +0100] "HEAD hxxp://um05.eset.com/eset_upd/ep7/dll/update.ver.signed HTTP/1.1" 502 - "-" "EEA Update (**SNIP**)" 10.1.1.51 - - [14/Oct/2019:16:00:31 +0100] "HEAD hxxp://38.90.226.39/eset_upd/ep7/dll/update.ver.signed HTTP/1.1" 502 - "-" "EEA Update (**SNIP**)" 10.1.1.51 - - [14/Oct/2019:16:00:33 +0100] "HEAD hxxp://um03.eset.com/eset_upd/ep7/dll/update.ver.signed HTTP/1.1" 502 - "-" "EEA Update (**SNIP**)"

Eset Mail Security for Exchange V6 - Cleaned Files Options

October 14, 2019, 4:28 pm
$
0
0
Hi there Is it possible to quarantine emails with attachments that have been cleaned rather than have them delivered to the users Outlook? We are experiencing high levels of attachments that are detected with virus', they are successfully being cleaned but I do not want them delivered to the user as they are effectively spam emails anyway. Thanks

EMSX integration with O365

October 15, 2019, 3:33 am
$
0
0
Dear All, Email spoofing integration with office 365 how does ESET handles it ? Regards
Search

Firewall and Mail Security

October 15, 2019, 10:28 am
$
0
0
Does the Mail Security have a firewall built in? I have it installed on a Small Business Server 2011 with Exchange 2010 and it has the windows firewall turned off. I inherited this server so I am trying to understand if the windows firewall should be on or off with Mail Security. Or should I have something else (ESET software) installed?

ESET 2FA

October 15, 2019, 12:30 pm
$
0
0
I am using 2FA with RDP. I have a user who has the app installed on his phone, he gets pass code numbers, but authentication with those pass code numbers fail. Any ideas what is going on?

ESMC blocked by ESET Endpoint

October 16, 2019, 6:06 am
$
0
0
Windows 10 Pro, ESET Endpoint Security, ESMC, all latest versions. I have some computers that have all websites blocked except for some necessary Windows update and ESET update sites whitelisted. They connect to the local ESMC server called simply "esmc". A few days ago I noticed they stopped connecting to ESMC and upon checking the logs I discover that https://esmc is blocked. Has there been a change to how ESET communicates with ESMC? Should I whitelist the local ESMC server?

Problems with deploying Endpoint Security via ERA

October 16, 2019, 8:16 am
$
0
0
Hi, I´ve got some Problems while deploying my ESET Endpoint Security via the ERA Console. First I deployed the Remote Agent successfully but the Installation of the Software Fails. Following Facts: ERA Server Standalone Linux Based Clients: Win 10 Pro Looking into the log files the ERA Agent Shows the following Problem CReplicationManager: Replication (network) connection to 'host: "xxxxx" port: 2222' failed with: (0x274d), Es konnte keine Verbindung hergestellt werden, da der Zielcomputer die Verbindung verweigerte. File and Print Sharing is enabled. Any ideas if this error where this error might come from ?

Windows Defender weird behaviour after EFS installation

October 16, 2019, 9:08 am
$
0
0
Every restart for the server , Windows Defender detects that ESET has turned Windows Defender off and detects the changes as viruses and asks for reversing them. Win32\I don't remember what , server is secure and clear for sure , it's clean installation , scanned by ESET also. Windows Server 2019 1809

Mapped Domain Security Group - Not recognizing user change

October 17, 2019, 9:19 am
$
0
0
Hello, I'm currently running ESMC 7.0.471.0 and I have two mapped domain security groups that I use in order to apply different permission sets dependent upon the persons role. The current two groups are eset admins and eset users. I have one employee who currently exists in the users group. I'm now trying to give him admin permissions. I have removed him from our eset users group in AD, and then added him to the eset admins group. I then ran users sync task in ESMC, to make sure it had the current groups (I didn't know if this step should be involved or not? since I'm looking for AD Group Membership and not at an OU change). However, when the employee logs into ESMC, they still have the user permission set. I then tried removing the employee from both the eset user and eset admins groups in AD, re-ran the user sync task, and the employee can still login to the console. The only way I can prevent them from logging in is by disabling their account in AD, or removing the eset users mapped security domain group from ESMC. Does anyone have any insight into where to look when diagnosing this issue? I'm kind of at a loss here. My ESMC sync tasks look ok, and they are successful, but it seems like the console is not updating AD group membership status. Any help is appreciated. Thanks! Also, our ESMC console is a virtual appliance running on CentOS 6. My apologies for forgetting to mention that earlier.

MSIL/Webshell.C False Detection on Exchange 2010 Servers

October 17, 2019, 5:07 pm
$
0
0
We have been receiving false positives from a dynamic .dll generated by Exchange/ISS for OWA on detection engine 20199. It is occurring on different OSes, (2008 R2, SBS2011, 2012) with the common denominator being Exchange 2010 with OWA. Threat type: trojan Threat name: MSIL/Webshell.C Computer name: server.domain.local Logged user: Object: file:///C:/Windows/Microsoft.NET/Framework64/v2.0.50727/Temporary ASP.NET Files/owa/c60e4757/114626a/App_Web_yvgyrxbc.dll This file is generated on the fly when accessing OWA We rolled back to latest snapshot of detection engine until this is resolved. Is ESET aware of this issue? Any further info we can provide?
Search

Managing ESET File Security for Linux (v7) with ESMC not possible

October 18, 2019, 5:03 am
$
0
0
Hello, I am not able to create policies for product ESET File Security for Linux (v7) with ESMC. The Linux product in version 7 is not selectable (please see attached image 1 and 2). My version of ESMC is 7.0 (7.0.577.0) [please see image 5]. This version should be able to manage ESET File Security for Linux (v7): https://help.eset.com/esmc_admin/70/en-US/supported_products.html (please see attached image 3) https://support.eset.com/kb3690/ (please see attached image 4) Can you tell me what I am doing wrong? Thank you. Best Regards

Find specific installed software by device

October 18, 2019, 10:04 am
$
0
0
I need to find the device that has specific software that was reported on the Installed Software report. Thank you.

Not able to install EraAgentInstaller

October 18, 2019, 11:24 am
$
0
0
Hi All, I, Recently updated my MacOS with catalina update. Removed the already installed agent and when I installed it again it's giving error. Downloading installer image 'hxxp://repository.eset.com/v1/com/eset/apps/business/era/agent/v6/6.5.376.0/agent_macosx_x86_64.dmg': % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 28.7M 100 28.7M 0 0 511k 0 0:00:57 0:00:57 --:--:-- 765k Checking integrity of of downloaded package /tmp/EraAgentOnlineInstaller.dmg.BX9xeZx4: OK Mounting image '/tmp/EraAgentOnlineInstaller.dmg.BX9xeZx4': Checksumming Protective Master Boot Record (MBR : 0)… Protective Master Boot Record (MBR :: verified CRC32 $FACBEFF7 Checksumming GPT Header (Primary GPT Header : 1)… GPT Header (Primary GPT Header : 1): verified CRC32 $ABF9AB5A Checksumming GPT Partition Data (Primary GPT Table : 2)… GPT Partition Data (Primary GPT Tabl: verified CRC32 $0FF56751 Checksumming (Apple_Free : 3)… (Apple_Free : 3): verified CRC32 $00000000 Checksumming disk image (Apple_HFS : 4)… ........................................................................................................................................................................... disk image (Apple_HFS : 4): verified CRC32 $E5F3C96F Checksumming (Apple_Free : 5)… (Apple_Free : 5): verified CRC32 $00000000 Checksumming GPT Partition Data (Backup GPT Table : 6)… GPT Partition Data (Backup GPT Table: verified CRC32 $0FF56751 Checksumming GPT Header (Backup GPT Header : 7)… GPT Header (Backup GPT Header : 7): verified CRC32 $9FB5A9AE verified CRC32 $217CAE33 /dev/disk3 GUID_partition_scheme /dev/disk3s1 Apple_HFS /private/tmp/EraAgentOnlineInstaller.mount.t7KnxTnc Installing package '/tmp/EraAgentOnlineInstaller.mount.t7KnxTnc/Agent-MacOSX-i386-6_5_376_0.pkg': installer: Package name is ESET Remote Administrator Agent installer: Installing at base path / installer: The install failed. (The Installer encountered an error that caused the installation to fail. Contact the software manufacturer for assistance. An error occurred while running scripts from the package “Agent-MacOSX-i386-6_5_376_0.pkg”.) Cleaning up: "disk3" ejected. unlink: /tmp/postflight.plist: No such file or directory tafsir@tafsir-mbp Desktop % chmod +x EraAgentInstaller.sh tafsir@tafsir-mbp Desktop % sudo ./EraAgentInstaller.sh Downloading installer image 'hxxp://repository.eset.com/v1/com/eset/apps/business/era/agent/v6/6.5.376.0/agent_macosx_x86_64.dmg': % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 28.7M 100 28.7M 0 0 3480k 0 0:00:08 0:00:08 --:--:-- 3486k Checking integrity of of downloaded package /tmp/EraAgentOnlineInstaller.dmg.uFOkb8N9: OK Mounting image '/tmp/EraAgentOnlineInstaller.dmg.uFOkb8N9': Checksumming Protective Master Boot Record (MBR : 0)… Protective Master Boot Record (MBR :: verified CRC32 $FACBEFF7 Checksumming GPT Header (Primary GPT Header : 1)… GPT Header (Primary GPT Header : 1): verified CRC32 $ABF9AB5A Checksumming GPT Partition Data (Primary GPT Table : 2)… GPT Partition Data (Primary GPT Tabl: verified CRC32 $0FF56751 Checksumming (Apple_Free : 3)… (Apple_Free : 3): verified CRC32 $00000000 Checksumming disk image (Apple_HFS : 4)… ........................................................................................................................................................................... disk image (Apple_HFS : 4): verified CRC32 $E5F3C96F Checksumming (Apple_Free : 5)… (Apple_Free : 5): verified CRC32 $00000000 Checksumming GPT Partition Data (Backup GPT Table : 6)… GPT Partition Data (Backup GPT Table: verified CRC32 $0FF56751 Checksumming GPT Header (Backup GPT Header : 7)… GPT Header (Backup GPT Header : 7): verified CRC32 $9FB5A9AE verified CRC32 $217CAE33 /dev/disk3 GUID_partition_scheme /dev/disk3s1 Apple_HFS /private/tmp/EraAgentOnlineInstaller.mount.5X2ieicJ Installing package '/tmp/EraAgentOnlineInstaller.mount.5X2ieicJ/Agent-MacOSX-i386-6_5_376_0.pkg': installer: Package name is ESET Remote Administrator Agent installer: Installing at base path / installer: The install failed. (The Installer encountered an error that caused the installation to fail. Contact the software manufacturer for assistance. An error occurred while running scripts from the package “Agent-MacOSX-i386-6_5_376_0.pkg”.) Cleaning up: "disk3" ejected. unlink: /tmp/postflight.plist: No such file or directory Do I need another version of installer for catalina? Quick response will be appreciated. Thanks

EFS Questions

October 20, 2019, 3:54 am
$
0
0
Hello , I switch the GUI to Terminal for the RDS Server , So no normal users would have the GUI , but for Administrators , there used to be a bug , a good bug but it stopped for now , that when I am in the Administrator user and I do open ESET as Administrator , it adds the GUI on the taskbar , now it doesn't , GUI Icon in taskbar is hidden if the software is set in Terminal mode Is there an option to restore the icon in the Terminal Mode only for Administrator (after running the app as administrator to open the GUI while in terminal mode)? Threat notifications where you put the name of the username , could it be multiple usernames to take the notification , should I separate the names with something? Thanks.

ESET Dynamic Threat Defense: Reaction Time

October 20, 2019, 11:08 pm
$
0
0
Hi, i forwared a javascript file which came zipped and packed in a .vhd File by Mail to the ESET Threat Defense to let it be scanned. - Did not took that long to recognize it as crypto.trojan malware...the test client with ESET Endpoint Security and also activated Dynamic Defense License is not recognizing this file as malware. (scan result is still: clean). EDTD Scan: https://d.edtd.eset.com/details?hash=5A9DA791E9A2A1FF87A11C2F5E2862D0FE8719D9&key=3905694752422291548&lang=de_DE&era_ver=7.0 JS File: https://www.virustotal.com/gui/file/94450fb4e7d4e8a1c03e52d69081868de969f773a571334102e068375e58d3fd/detection I let download my clients signature updates every 60 Seconds. How long will it take to recognize this critical malware on the clients? would eset stop the file execution maybe on runtime? atm i setup a VM Environement to check this and for later files which are trying to crypto the company
Viewing all 5486 articles
Browse latest View live
Search