Webroot® Business Endpoint Protection
Welcome to the Endpoint Protection and management console Discussion Forum!
- 1,134 Topics
- 3,606 Replies
I went in to the GSM console 3 days ago and whitelisted several a couple for a site yet when I look at Webroot on one of those endpoints nothing shows up under Block/Allow files. It is all done via the GSM because when I try and and "allow" files on the endpoint it says I can't and that they must be added via the console. So.... what am I doing wrong?
It would be great if there was a document which had the complete list of command-line options/switches for both Windows and Mac as well as documenting the functions of each option/switch. I know the existence of [url=https://docs.webroot.com/us/en/business/wsab_endpointprotection_adminguide/Content/ManagingEndpoints/IssuingCommandsToEndpoints.htm]https://docs.webroot.com/us/en/business/wsab_endpointprotection_adminguide/Content/ManagingEndpoints/IssuingCommandsToEndpoints.htm[/url] and [url=https://download.webroot.com/WSAB-EP_GettingStartedGuide.pdf]https://download.webroot.com/WSAB-EP_GettingStartedGuide.pdf[/url]. These pages aren't enough as they are either incomplete with information or don't display commands for Mac. The reason why I say the second link is incomplete is because other than not displaying Mac specific/only/non-functional commands, it doesn't show the -silentscan command-line option/switch anywhere within and because of that I do not trust the full integrity of
Hi,Since the change to the updated console we are seeing discrepancies in the number of entities. Example, one customer shows 12 entities when they only have 11Example2 customer shows 15 entities however there are 18 If we go into the legacy console the number align and reflect the number of seats allocated. Any ideas
I wanted to text blocking 7zip on a Policy Copy due to Ransomware concerns where 7zip is used to encrypt files, but I cannot figure out how to find an option to block applications from the Admin Console. I see the option on the Workstation doesn’t allow changes (PC Security - Blow/Allow Files).Also, I used to be able to allow/block applications under Agent Commands in the old console, but no longer see that opion in the New Console.Any help would be appreciated.
Ugh. I hate when companies “change” things and think it’s better. I have over 100 devices that were grouped together by service plans, (I resell webroot to home / end users) and then each pc was renamed to the customer’s name for billing purposes as the actual hostname is meaningless to me. The new dashboard just wiped all the host names I had created over the years and reverted them back to the pc’s original host name so now I have no idea which pc belongs to which customer. And looking at the details, when a home / residential user is using a log in account of “princess” that isn’t going to tell me what the customer’s last name is for billing. Who thought this was a good idea without telling users / admins? Anyway to revert this?
Hi!We are operating 12 vessels in open sea water and internet communication is not available. We can send receive email from vessel along with small file replication to vessel computers.We are interested in deploying Webroot Business Endpoint to the fleet.BIG question is , how we can perform Webroot updates as vessels are practically offline. Any suggetsions? RegardsElias Kouros
Overall, I do like the new console, but I can’t find the column chooser so I can view useful data like last logged on user, IP address, agent version, etc. The ability to export to csv also appears to be missing which was useful in sending teams CSVs of agents not seen recently. I can still get to some of that functionality by going to site → Endpoint Protection and going to the old console, but that is temporary and very clunky. Is the functionality described going to be moved into the new console? Is there a tentative timeline?
There’s a list of URLs that need to be granted access through firewalls from your KB that float around this forum. In anticipation of a new console going live in five days, are there any new exceptions that need to be made to our clients’ firewalls in order for endpoints to continue checking in?List of URLs we currently allow traffic to:*.webrootcloudav.comAgent communication and updates(Please note: Some firewalls do not support double dotted subdomain names with a single wildcard mask (i.e. g1.p4.webrootcloudav.com being represented by *.webrootcloudav.com) so some environments might require either *.p4.webrootcloudav.com or *.*.webrootcloudav.com) *.webroot.comAgent messaginghttps://wrskynet.s3.amazonaws.com/*https://wrskynet-eu.s3-eu-west-1.amazonaws.com/*https://wrskynet-oregon.s3-us-west-2.amazonaws.com/*Agent file downloading and uploading *.webrootanywhere.comManagement portal and support ticket logs upload WSAWebFilteringPortal.elasticbeanstalk.comWeb Threat Shield
Hi, Is there a way to include new targets in an existing Program. I launched a Program and now I need to add the new employees into the existing Program. I believe we can include new campaigns to the launched program but not sure of including the new targets which has been imported will be part of the Program too. Thanks
How does the following registry key get populated? We have had several instances where this value is populated and it causes issues for our users. Once we blank it out, everything is back to normal. One instance where this happens is when our users connect to VPN for another company we support. This key gets updated with server names inside that customers environment which obviously won’t work. Trying to understand if the their VPN process is updating this key directly or if Webroot is populating this key based on the network configuration at some point in time? Computer\HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\WRData\RSP
Hello All-We have encountered a vulnerability "Web Server Misconfiguration: Unprotected File." This may affect our deployments and exposure of files. How can we prohibit the storage of archived directories on webroot? Is there any way to fix this vulnerability?Thanks in advance!
So, it appears we are having issues related to the following on multiple clients, multiple endpoints: (Note, we aren't just having the issue on Windows 10; Windows 7 is having issues too, and it appears to do with Winlogon/Netlogon). We believe it is related to the issue listed below. [url=https://community.webroot.com/t5/Known-Issues-KB/Netlogon-is-not-starting-after-Reboot/ta-p/316119]https://community.webroot.com/t5/Known-Issues-KB/Netlogon-is-not-starting-after-Reboot/ta-p/316119[/url] I offered to help our team by writing a script within our RMM software that would set the Registry key per Webroot's recommendations as described in the workaround in the article. Only one problem: I cannot create a DWORD to the WKrn service key. Just for fun, I tried using the same commands to write the IFP key noted by Webroot to another spot in the Windows Registry, and it went off without a hitch, making me think Webroot has set the HKLMSYSTEMCurrentCont
There are many copies of WRusr.dll in the C:\Windows\Temp folder with names like WRusr.dll-20390-1.tmp. Here is a list of them from one laptop: Mode LastWriteTime Length Name---- ------------- ------ -----a---- 11/5/2020 5:05 PM 225736 WRusr.dll-10500-1.tmp-a---- 11/26/2020 3:02 AM 270680 WRusr.dll-1144267656-0.tmp-a---- 11/26/2020 3:02 AM 225736 WRusr.dll-1144267656-1.tmp-a---- 1/12/2021 11:43 AM 270680 WRusr.dll-140687-0.tmp-a---- 1/12/2021 11:43 AM 225736 WRusr.dll-140687-1.tmp-a---- 3/1/2021 11:36 AM 270680 WRusr.dll-20390-0.tmp-a---- 3/1/2021 11:36 AM 225736 WRusr.dll-20390-1.tmp-a---- 11/26/2020 3:02 AM 270680 WRusr.dll-23296-0.tmp-a---- 11/26/2020 3:02 AM 225736 WRusr.dll-23296-1.tmp-a---- 11/10/2020 2:54 PM 270680 WRusr.dll-23875-0.tmp-a---- 11/10/2020 2:54 PM
Hi all, We are getting pretty frustrated because of no automation of billing the correct webroot agents to the customer.We’re working with Autotask PSA and when a customer takes Webroot or change the number of agents it is beeing changed in the WebRoot portal. Next we send a email to our admin who has to change within the contract of Autotask of that specific customer the numer of webroot agents. Sometimes it happens that the email has nog been read or someone forgot to sent an email resulting in not a correct invoice to the customer and not paid costs for us.Which possibillities offers webroot to automate this? Kind Regards, Niels
Partial Outage Webroot Management ConsolesIdentified - The issue has been identified and a fix is being implemented.Feb 24, 09:03 UTCInvestigating - Webroot Management Consoles is currently experiencing a partial outage. We are investigating the issue and working on a speedy resolution. Thank you for your patience.Feb 24, 08:37 UTC
Hello - I recently started manage Webroot in our environment, and I noticed none of the active policies have this “Favor low CPU usage” setting enabled. Anyone got any experience with this setting? I figured there had to be a reason why it is disabled. Maybe it doesn’t do much, or maybe the scan will be too slow?The setting for “Favor low RAM usage” is enabled in most policies. Thanks!
HI: I am testing the usage of the WSA for buisness and the agent commands. One of which I need to use is the “uninstall command” so that I can remove the program from computers owned by users that leave the company, or for any other multitude of reasons. The agent refresh is set at 15 minutes. I manually refresh the WSA client. Nothing happens, I even reboot. No over one hour hour later still nothing. Is this a feature that is expected to work? Version 22.214.171.124 Windows 10 1909 18363,778. I can’t distribute the software if I cannot uninstall the agents. Any help is welcome.
Hi Team, We recently purchased the webroot secure anywhere for one of our enterprise servers. The agent was installed on the server with the new keycode received. The finance team lost the email with the keycode but the server still has the agent installed and shows only the first 4 digits of the keycode applied.The finance team even does not remember the first name / last name used for registration as they work on multiple things.We only have two things: Th first 4 digits of the keycode and the purchase date. Please help.Regards
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.