• Content Count

  • Joined

  • Last visited

  • Days Won


Raynor last won the day on January 29 2018

Raynor had the most liked content!

Community Reputation

3 Neutral

About Raynor

  • Rank
    Forum Regular

Profile Information

  • Gender
    Not Telling

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Thanks a lot for your detailed reply. We have the permissions for normal users set to read-only acces (via EEC). Will the normal client PC users be able to confirm the dialog that appears before the switchover, or will we have to set user permissions to basic access/full access before making the switch?
  2. Right now, we are running EEC on Windows Server. I want to migrate step-by step (i.e. stress-free) to the Cloud Console without having to migrate/move all clients at once. 1) Can I create a workspace in my.emsisoft.com and start by only moving some clients to that workspace, while most other clients still remain connected to EEC? After creating the workspace, will the "legacy" clients that are still connected to EEC complain in any way, or will they just silently continue to work (and remain connected to EEC)? 2) What happens to the license key if I create a workspace? If I remember correctly, the key will be moved to the workspace as well. Will that create licensing issues for the "legacy" clients still connected to EEC, or will those clients still be able to use the now-workspace-assigned license key without any problem? 3) Is there a way to move the clients from EEC to Cloud Console without reinstalling the client software? (I don't have access to any client right now, so I can't check this myself.) Thanks for your help, Raynor
  3. Thank you. Everything looks good now on my workspace
  4. A small but persistent glitch that I can't seem to get rid off and that has been present pretty much since I started using the cloud console beta: The device count for the workspace top level constantly says "1", when in reality there is no device in this group. All my three devices are in subgroups... Please refer to the attached screenshot
  5. I have been beta testing the cloud console at home with three devices for some time now. Now I tried to remove one of the devices from the console, so that it won't be remotely managed any more. When I remove it from the workspace, at first it is correctly shown as "unmanaged" (red tag), and when I check the local EAM GUI on the device it does indeed say the device is no longer connected to the cloud. After I reboot windows, however, the device "automagically" returns to the cloud console (listed under new devices), and the local GUI shows that it is remotely managed. Do I have to uninstall EAM to really remove it from the cloud ? Is this a bug ? Right now, the cloud management seems to be a bit too overzealous/persistent/sticky πŸ˜„
  6. When I switch to downloading the installers with signatures, the download works OK. Has the download of the small packages without signatures been canceled/abandoned ? If so, can I safely manually delete the outdated "EmsisoftAntiMalwareSmallSetupXX.msi" files from "C:\ProgramData\Emsisoft Enterprise Console\Download\Server" and "C:\ProgramData\Emsisoft Enterprise Console\Share\Server" ?
  7. It seems like EEC currently fails to update the MSI installer packages for deployment. This seems to have been the case for quite some time now (didn't bother to look at the logs until now). The logs are full of errors (404) and manually clicking on the "Update" button in EEC's settings yields the same result. The deployable MSI packages are stuck at version 2019.3.1. Is there a server problem ? Thanks, raynor
  8. Dear Emsisoft Team, right now, using the behaviour blocker, you could locally add an application rule that blocks a certain exe file. However, the current implementation lacks flexibility: 1) The application blocking rules CAN NOT be set using the Enterprise Console or the Cloud Console. There is no option for that. Rules can only be set using the local client UI (Protection--> Behaviour Blocker --> Add Application Rule), which is not suitable for enterprise usage. 2) Wildcards CAN NOT be used, e.g. blocking file extensions such as "*.hta" or "*.scr" is not possible 3) Hash rules and blocking program execution in entire directories (path rules) is not possible either Please let me kindly suggest that you improve the behaviour blocker and turn it into a real application control solution that can be centrally managed using EEC or the Cloud Console. Similar to what e.g. F-Secure and Kaspersky already offer: --> https://community.f-secure.com/t5/Protection/Application-Control-2-0/td-p/105812 --> "In Kaspersky Endpoint Security for Business, administrators can configure startup blocking policies for applications, executable modules (PE-files, exe, scr, dll) and scripts executed via a variety of interpreters (com, bat, cmd, ps1, vbs, js, msi, msp, mst, ocx, appx, reg, jar, mmc, hta, sys). For this, the administrator inventories applications on user computers and receives their list with metadata (vendor, certificate, name, version, installation path etc.) If new applications appear on hosts later, these are also inventoried." My reasoning behind this request: Right now, we are using Software Restriction Policies (SRP) to control the startup of some unwanted applications and file types (e.g. mshta.exe, *.hta, etc.). However, SRP has been deprecated by Microsoft starting with Windows 10 v1803. It still works, but who knows when MS will finally remove it. So SRP obviously is not a future-proof solution. Its successor, AppLocker, can only be used with Windows 10 Enterprise and Education, and is more complicated to set up and administer. So it is not an option for small companies which use Windows 10 Professional. Certainly this is not an ultra-urgent feature request (as SRP is still working), but it would be much appreciated if you could put this on your middle- to tong-term roadmap. After all, I believe that much of the technology required is very likely already contained in the current behaviour blocker, it just is not exposed via any UI that allows for flexible configuration. Thanks and best regards, Raynor
  9. Thanks Frank, your reply was very helpful. Cheers! Raynor
  10. Could I get a quick reply on my two little questions please β˜ΊοΈπŸ€— By the way: I have noticed that workspaces cannot be deleted. I assume this feature will be added later? Thanks! Raynor
  11. I just started playing around with the new "My Emsisoft Cloud Console". My first experiences have been quite positive. πŸ™‚ Two little things that I would like to suggest for improvement: 1) I use only one policy for the whole network (i.e. workspace). This is why I delete all computer groups except "New Computers" (which cannot be deleted). I then set all required policy settings/options on the highest possible level, which is the "root" group called "Workspace". These settings are then of course inherited by the "New Computers" group (and possibly some other groups that I might add later). The problem is that whenever you re-visit the "Protection Policies" section by clicking in the navigation bar on the left hand side, the view defaults to the "New Computers" group. So if I'm not very careful, I'll change settings in this group instead of the root group "Workspace". It would be nice if the selection could default to "Workspace" whenever you re-visit the Protection Policies section. 2) Using the Enterprise Console, it was easy to see at a glance if the settings on some client PCs deviated from the original policy setting (the overview in EEC then shows a little round arrow next to the policy name in the "Computer Policy" column). In the cloud console, you must have a detailed look at the settings of each client PC to see if there is anything different to the original policy. It would be very helpful to be able to see policy vs. current client settings differences directly on the overview dashboard. (please bring back the round arrow πŸ˜‰) Furthermore, there are some minor cosmetic issues: - When clicking on the menu of the root protection group "Workspace", the menu item "Clone" is not greyed out. It is clickable, but (as expected) nothing happens. It should be greyed out like the rest of this group's menu items. - Some German translations don't fit into the UI (mostly on buttons) - When using browser zoom (I use 120% by default) some lines around some UI fields get cut off And two final questions: - I was wondering what the setting "Detect registry policy settings" in the Scanner Settings section does (see attached screenshot). -Why does my license vanish from the "Licenses --> Personal Licenses" section after assigning it to a workspace ? Is this by design? This seems confusing to me... What happens if I delete a workspace - will the license be returned to the "Personal Licenses" section? What about client PCs that are NOT associated with the workspace - will they have licensing problems (I don't want to add all my PCs to the workspace)? Thanks for the great job so far! Raynor
  12. 1) OK, nice 😁 PS What about a dedicated "cloud console beta" section in the forum πŸ˜‹ EDIT: Thanks for consolidating the various beta sub-forums into a more general "Beta Community" forum.
  13. Hi Frank, thanks for the quick reply. Overall this sounds like a good plan. 1) Any hint on how this might work (as there won't be a local, centrally installed proxy on a server anymore...) 2) OK, not a big problem IMHO πŸ˜€ I will definitely do some testing in the near future πŸ‘
  14. Ha! Thought so, thanks Suggestion: why not add this little bit of info to the explanatory text, that might save other users from having the same question/confusion.