[ Закрыто ] Шестое поколение продуктов ESET(Бизнес версия), Обсуждение новых функций, настройки, и исправлений 6-й версии продукта.

RSS
Прошу обратить внимание.

При создании сообщения с вопросом, просим убедится что установлена актуальная версия антивирусного продукта.

ESET Remote Administrator 6 (6.5.34.0)
https://www.eset.com/int/business/remote-management/remote-administrator/#download

ESET Remote Administrator 6, Agent (6.5.522.0)
https://www.eset.com/int/business/remote-management/remote-administrator/#standalone

ESET Endpoint Security 6 (6.6.2078.5)
https://www.eset.com/int/business/endpoint-security/windows-security/#download

ESET Endpoint Antivirus 6 (6.6.2078.5)
https://www.eset.com/int/business/endpoint-security/windows-antivirus/#download

Онлайн справка
http://help.eset.com/
Изменено: Дмитрий - 26.05.2018 08:57:21

Ответы

Здравствуйте. Подскажите, пожалуйста, как разблокировать создание зеркала в ESET Endpoint Antivirus 6.4?
Сразу после активации все настройки обновлений блокируются.
Активировать пробовал как лицензионным ключом, так и файлом оффлайн-лицензии.  
Вероятнее всего, у Вам необходимо изменить политику, где Вы можете изменить все необходимые параметры.

Цитата
Дмитрий написал:
Вероятнее всего, у Вам необходимо изменить политику, где Вы можете изменить все необходимые параметры.
Прошу прощения, если вопрос глупый, но какую политику? И где ее менять?
Промучился с этим уже 3 дня. Никакой информации найти не смог. Только не совсем официальные способы с редактированием реестра. Но такой вариант применять не хочу.  
Если в антивирусе напротив изменения параметров стоят замочки, значит что на ПК стоит агент, и антивирус связан с сервером администрирования ERA.
http://help.eset.com/era_admin/64/ru-RU/index.html

Цитата
Дмитрий написал:
Если в антивирусе напротив изменения параметров стоят замочки, значит что на ПК стоит агент, и антивирус связан с сервером администрирования ERA.
http://help.eset.com/era_admin/64/ru-RU/index.html
Спасибо! Разобрался.  
Обновленные версии корпоративных продуктов подтянулись...

Filename: eea_nt32_rus.msi | File size: 98 M | Version: 6.5.2094.1    
Filename: ees_nt32_rus.msi | File size: 108 M | Version: 6.5.2094.1

Цитата
Version 6.5.2094.0
Added: “Protection Features” (individual feature switches) in Setup are locked when the feature is enabled / disabled by policy and it is not possible to change them, even for a user with Administrator rights
   Added: Support for subscription licenses
   Added: Local “Override Mode” (fr om ESET Remote Administrator) allows administrators with password or specific active directory users to unlock the endpoint fr om a managed state for a configured period of time (“Override Mode” is reported to ESET Remote Administrator)
   Added: Ability to enable / disable protection features from the command line by running “Run Command” task from ESET Remote Administrator (for example, to allow “advanced CMD commands” such as command line export / import of configuration)
   Changed: New “ESET Package Installer” for the .exe installation that does not launch individual MSI installers
   Changed: “Autoselect” in Upd ate Server was renamed to “Choose Automatically”
   Changed: ESET Live Grid setup screen changed, with the ESET Live Grid enabled by default, and only feedback system (submitting of files) se t to opt-out
   Changed: Currently used modules are now displayed within “Installed components” (removed from the table under the “About” section)
   Changed: New application statuses for disabled HIPS, ESET Live Grid, Botnet / IDS / Firewall, Web Control, Antispam, Anti-Phishing, Anti-Stealth, Device Control and Real time protection
   Improved: Ability to exclude threat by threat name and to exclude a particular signature from detection
   Improved: Update profile can be linked to firewall profile (for instance, every network can have its own update profile)
   Improved: New values for HASH and First Time Seen Here added to the threats log
   Improved: Firewall is able to evaluate “Allow” rules configured in Windows Firewall
   Improved: More granular configuration for what statuses will be displayed locally
   Improved: It is possible to use “windows configuration” for new networks
   Fixed: Problem with BSOD that could happen when Device Control is enabled on Windows 10 with Hyper-V enabled
   Fixed: Installation with AVRemover no longer removes ESET Products and Mozilla Firefox
   Fixed: Installation with AVRemover detects Microsoft Edge while scanning applications
   Fixed: Installation with AVRemover crashes while removing SUPERAntiSpyware Professional on Windows 10 x64
   Fixed: Same scheduled scans runs multiple times
   Fixed: Issue when exported configuration contained license info and it activated the endpoint with the license included in the configuration
   Fixed: Other bug-fixes and optimizations

Filename: x64.zip | File size: 609 M | Version: 6.5.31.0

Цитата
Version 6.5.31.0

   Added: New Access Rights Management (Security Model) allowing multi-tenancy in ESET Remote Administrator (isolation of data), and more granular control over access to objects and tasks (ability to grant specific access to task types and new “use” access right)
   Added: Apple Device Enrollment Program support & expansion of Apple Mobile Device management settings (including application control)
   Added: New installers section, under “Admin” which contains all available installation packages. Live installers and SCCM/GPO deployment scripts are stored here for easy access
   Added: Whatґs new page for upgraded users informing them about major changes in ESET Remote Administrator 6.5
   Added: Paging functionality for main web console screens (computers / threats) & reports
   Added: “Quick links” & “Help” menus in the top bar of ESET Remote Administrator web console that feature relevant content
   Added: “Last Used Tasks” context menu option, showing the last 10 executed tasks
   Added: “Connect” context menu option, which allows the user to open a RDP to a target computer
   Added: New Status Overview section with information about “invalid objects” (not configured notifications, invalid client tasks & server tasks)
   Added: New filtering options to the “License Management” Screen (filter by license types & license flags)
   Added: Option to enter custom logo to Web console and reports, by the means of co-branding and white-labeling (for MSP users)
   Added: HASH of infected file with “first seen here” value (informs the user of when the file was present on the computer, even if it was prior to detection) added to threat details
   Added: Option to download generated reports (as PDF, PS, CSV) directly from the web console
   Added: Quarantine section with all aggregated quarantined files added to the “admin” section of the main menu
   Added: Merging of lists in policies (all lists can now be merged based on the list type, actions to “append”, “prepend” and “replace” are available)
   Added: Ability to import exclusions in policy editor for ESET Endpoint for Windows
   Added: Ability to granularly configure which statuses will be displayed locally or reported to ESET Remote Administrator
   Added: New standalone deployment tool that allows remote / silent push of all in one packages to the network
   Added: Support for IBM qRadar (logs can now be natively exported in LEEF Format, which is recognized by IBM qRadar SIEM)
   Added: Ability to generate an “offline repository” using the mirror tool (a full dump of all installers in the ESET Repository is performed)
   Added: Limited support for “subscription licenses” (it is possible to add subscription licenses, add them into created installers and use them in product activation task & software installation task)
   Changed: It is now possible to create an all-in-one installer for Windows Endpoint, File Security for Windows Server, Mail Security for Exchange & Domino and SharePoint products (6.x variants)
   Changed: Generated all-in-one installer packages now use the new product installer which is branded and clearly shows license, remote administrator server name and target group, included products and their initial configurations
   Changed: New policy flags more clearly denote not applied, applied and forced settings
   Changed: Renamed product-specific policies for better understanding (ESET Security product for Windows is now ESET Endpoint for Windows, ESET Security product for OS X & Linux is now ESET Endpoint for macOS (OS X) & Linux, ESET Security product for Android is now ESET Endpoint for Android
   Changed: Enhanced reporting / report & notifications filtering options (ability to filter reports / threats by scanner, or event type)
   Changed: Updated post-installation wizard
   Changed: Main (left) menu expands / collapses on click and icons are updated for improved recognition
   Changed: Virus Signature Database Update / Rollback task has been renamed to Module update task (together with the corresponding dynamic groups and context menu items)
   Changed: Redesigned “Client Details” screen, for better readability and easier navigation including information badges for threats / alerts & installed applications
   Changed: Client details / task executions shows the last execution time for each task on a selected client
   Changed: Deploy Agent Screen now features the option to download a standalone deployment tool and sel ect an existing (task / or various installer options)
   Changed: Client tasks executions display the last execution / modification time for each task
   Changed: It is possible to filter by “last status” in task executions or show only computers wh ere the task is planned
   Improved: Database redesign with increased performance (one server capable of hosting more than 200 000 computers on one physical machine, with installed webserver / web console, database server & ERA server). This generally improves product responsiveness for all customers
   Improved: Automatic deletion of computers / manual computer removal from ERA can now trigger product deactivation (license seat removal)
   Improved: It is possible to specify more report templates in the generate report task
   Improved: Inherited policies are shown when the user clicks “manage policies” on individual client computers
   Improved: Endpoint Scheduler configuration now includes all of the options from the local scheduler instance (actions after scan, ignoring exclusions…)
   Improved: It is possible to trigger “shutdown after scan” for the on-demand scan client task in ERA web console
   Improved: Ability to sel ect security groups, for Web Control / Device Control configuration. Also, when values are saved, human readable name of the object, instead of SID is displayed (on Windows-based ERA installations only)
   Improved: Changed behavior of removing a mobile device from management, wh ere it is possible to stop managing a task without having the mobile application installed to be able to remove it (it still does not report “success”, however it is able to delete the machine without reappearing)
   Fixed: An issue that made it impossible to install ESET Mobile Device Connector using MySQL ODBC driver version 5.1.5
   Fixed: An issue that made it impossible to upgrade Agent on OS X 10.10 using a component upgrade task
   Fixed: An issue that made it impossible to install ERA on Windows Server 2003, when a license key is added during installation
   Fixed: Inability to upgrade fr om EFSW 4.5 to EFSW 6.x using the ERA “software install task” because the upgrade will fail due to a necessary restart
   Fixed: When manually upgrading ESET Mobile Device Connector fr om version 6.1 to newer version on Windows, an error dialog is displayed
   Fixed: You cannot enroll the same device that has been previously enrolled and un-enrolled using the task "Stop managing / Uninstall ERA agent"
   Fixed: Other bug-fixes and optimizations
 
Изменено: Мартынов Николай - 21.03.2017 21:43:04
Подскажите пожалуйста:
- есть ли ESET Endpoint Antivirus 6 проверка почтовых вложений в Outlook?
- не совсем понятна разница между ESET Endpoint Antivirus 6 Standard и Advanced. Правильно ли я полнял, что у Advanced добавлен FireWall?
- можно ли с Remote Admin управлять клиентами Windows и MAC OS X ?

Спасибо!
Доброго времени суток,

1. http://support.eset.com/kb2138/ (В продукте ESET Endpoint antivirus нет модуля для интеграции, но проверки идет по протоколам)
2. Файервол и модуль антиспама.
3. Да, можно http://help.eset.com/era_install/65/ru-RU/supported_products.htm
Изменено: Дмитрий - 18.04.2017 13:26:13

Решил поменять антивирус, попался ESET Endpoint Security v6.5.2107.1 (комп старый, система Windows XP, 4Gb ОЗУ)
Потом мне захотелось защититься от блокировщиков, для чего надо прописать кое-какие правила в HIPS.

Для защиты от блокеров:  
Система предотвращения вторжения на узел. Далее - Конфигурировать правила - Создать.
Необходимо поочерёдно создать следующие правила (Конечный реестр - Операции - Использовать для всех операций,  
галочка уведомить пользователя, правило активно, Действие - блокировать)  
для этих записей реестра:  
НKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit  
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell  
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\userinit.exe\*  
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\explorer.exe\*  
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe\*

Правила сохраняются. Но после попытки выйти из дополнительных настроек (нажимая кнопку ОК) появляется сообщение:
"Во время сохранения настроек произошла ошибка. Проверьте, что у вас есть разрешение на изменение настроек."
Специально проверил, вводил по одной (любой) строке в правило - без разницы, ошибка...
Пробовал через редактор реестра эти строки вводить - ошибка...

Что не так? На компе я единственный пользователь - администратор.


Разобрался сам. Оказывается все правила надо вводить при режиме фильтрации HIPS: "Автоматический режим"! Случайно выяснил.
Изменено: Александр Смирнов - 28.07.2017 22:09:40
Цитата
Обновленные версии корпоративных продуктов подтянулись...

Цитата
Version 6.6.2046.X
  • Added: Native 64-bit scanning core for faster, more efficient scans
  • Added: Command-line management interface allows for direct management of Endpoint without ESET Remote Administrator (RMM interface)
  • Added: Users can now export scan logs to text format
  • Added: Ability to select logging severity for Firewall rules, HIPS rules, and protocol filtering URL lists for use reporting events to ESET Remote Administrator
  • Added: A notification is displayed when connecting to an unprotected WIFI network
  • Changed: Enhancements of GUI including a new Update pane that lists the current product version. Removal of Virus signature database info (virus signature database has been renamed "detection engine"), updated Help & Support section, new Setup pane design, new Logs layout, new layout for warning and blocked web pages alert messages.
  • Changed: Product initializes full protection including driver installation after activation
  • Changed: Firewall uses the Windows network settings as a default (no user prompt after installation)
  • Changed: Initial scan, which runs as idle scan, does not scan network drives
  • Improved: Increased protection through support for AMSI (Windows 10+)
  • Improved: Increased protection through Advanced scanning of browser scripts
  • Improved: Various graphical enhancements
  • Improved: Various wording changes in UI to improve user experience
  • Fixed: Initial scan will not start when a laptop is on battery power
  • Fixed: Other bug-fixes and optimizations
Читают тему (гостей: 1)