Webroot® Business Endpoint Protection
Welcome to the Endpoint Protection and management console Discussion Forum!
- 1,135 Topics
- 3,656 Replies
I just wanted to share my own recent experience with uninstalling Webroot Business Endpoint Protection which has received a number of questions over the years and hopefully help someone out. This is the process that I’ve had success with and does require that your agents are checking into the Webroot console and your RMM tool (mine is ConnectWise Automate)Adjust your policies so that agents check in as frequently as possible Tag the target agent(s) with the “unmanaged” policy. For off-boarding, etc., I use a separate group with the Unmanaged policy applied and just move the agents into that group and apply the new policy. Allow them plenty of time to check in and get the policy update. Issue the Uninstall Agent command from the console. We’ve had about a 90% or so success rate with this command. Some will report that the command has executed, but continue to check in. For instances where the console uninstall doesn’t seem to take, we then jump to our RMM tool for help. I stopped using
I wanted to text blocking 7zip on a Policy Copy due to Ransomware concerns where 7zip is used to encrypt files, but I cannot figure out how to find an option to block applications from the Admin Console. I see the option on the Workstation doesn’t allow changes (PC Security - Blow/Allow Files).Also, I used to be able to allow/block applications under Agent Commands in the old console, but no longer see that opion in the New Console.Any help would be appreciated.
Hi,Since the change to the updated console we are seeing discrepancies in the number of entities. Example, one customer shows 12 entities when they only have 11Example2 customer shows 15 entities however there are 18 If we go into the legacy console the number align and reflect the number of seats allocated. Any ideas
Ugh. I hate when companies “change” things and think it’s better. I have over 100 devices that were grouped together by service plans, (I resell webroot to home / end users) and then each pc was renamed to the customer’s name for billing purposes as the actual hostname is meaningless to me. The new dashboard just wiped all the host names I had created over the years and reverted them back to the pc’s original host name so now I have no idea which pc belongs to which customer. And looking at the details, when a home / residential user is using a log in account of “princess” that isn’t going to tell me what the customer’s last name is for billing. Who thought this was a good idea without telling users / admins? Anyway to revert this?
Overall, I do like the new console, but I can’t find the column chooser so I can view useful data like last logged on user, IP address, agent version, etc. The ability to export to csv also appears to be missing which was useful in sending teams CSVs of agents not seen recently. I can still get to some of that functionality by going to site → Endpoint Protection and going to the old console, but that is temporary and very clunky. Is the functionality described going to be moved into the new console? Is there a tentative timeline?
@freydrew @Rob House In the live Q&A post about the new console, you said that friendly names would be shown from the old console but functionality did not yet exist to rename in the new console.I’m disappointed to tell you that friendly names are NOT being shown in the new console. This is going to make management very difficult. Is this a bug that you’ll be fixing soon?REF:
MSP here. I’ve seen other posts that discuss Webroot with Windows Defender, but now that it’s 2021, Windows 10 has changed a bit.Why other posts don’t apply anymore: Disable periodic scans in Windows Defender is no longer an option According to this article, you can set a DWORD value in the registry to enable Passive Mode for Defender, however, upon setting it, is has no effect on issue #1 belowTwo issues:With Webroot + Windows Defender enabled, Windows Defender is still actively scanning data in real-time. I ran a test and saw the Microsoft Anti-Malware service spike up to 30-40% CPU usage. Webroot is installed and functioning correctly, but Webroot doesn’t seem tell Windows Defender to turn off. I have a registry hack to force Windows Defender off, but I’d rather not apply that unless I have to. In addition, if I disable “Real-time Protection” in Windows Defender, I get a toast message that says that Windows Defender & Webroot are both disabled, even though Webroot is actually
There’s a list of URLs that need to be granted access through firewalls from your KB that float around this forum. In anticipation of a new console going live in five days, are there any new exceptions that need to be made to our clients’ firewalls in order for endpoints to continue checking in?List of URLs we currently allow traffic to:*.webrootcloudav.comAgent communication and updates(Please note: Some firewalls do not support double dotted subdomain names with a single wildcard mask (i.e. g1.p4.webrootcloudav.com being represented by *.webrootcloudav.com) so some environments might require either *.p4.webrootcloudav.com or *.*.webrootcloudav.com) *.webroot.comAgent messaginghttps://wrskynet.s3.amazonaws.com/*https://wrskynet-eu.s3-eu-west-1.amazonaws.com/*https://wrskynet-oregon.s3-us-west-2.amazonaws.com/*Agent file downloading and uploading *.webrootanywhere.comManagement portal and support ticket logs upload WSAWebFilteringPortal.elasticbeanstalk.comWeb Threat Shield
Hi, Is there a way to include new targets in an existing Program. I launched a Program and now I need to add the new employees into the existing Program. I believe we can include new campaigns to the launched program but not sure of including the new targets which has been imported will be part of the Program too. Thanks
There are many copies of WRusr.dll in the C:\Windows\Temp folder with names like WRusr.dll-20390-1.tmp. Here is a list of them from one laptop: Mode LastWriteTime Length Name---- ------------- ------ -----a---- 11/5/2020 5:05 PM 225736 WRusr.dll-10500-1.tmp-a---- 11/26/2020 3:02 AM 270680 WRusr.dll-1144267656-0.tmp-a---- 11/26/2020 3:02 AM 225736 WRusr.dll-1144267656-1.tmp-a---- 1/12/2021 11:43 AM 270680 WRusr.dll-140687-0.tmp-a---- 1/12/2021 11:43 AM 225736 WRusr.dll-140687-1.tmp-a---- 3/1/2021 11:36 AM 270680 WRusr.dll-20390-0.tmp-a---- 3/1/2021 11:36 AM 225736 WRusr.dll-20390-1.tmp-a---- 11/26/2020 3:02 AM 270680 WRusr.dll-23296-0.tmp-a---- 11/26/2020 3:02 AM 225736 WRusr.dll-23296-1.tmp-a---- 11/10/2020 2:54 PM 270680 WRusr.dll-23875-0.tmp-a---- 11/10/2020 2:54 PM
Hi all, We are getting pretty frustrated because of no automation of billing the correct webroot agents to the customer.We’re working with Autotask PSA and when a customer takes Webroot or change the number of agents it is beeing changed in the WebRoot portal. Next we send a email to our admin who has to change within the contract of Autotask of that specific customer the numer of webroot agents. Sometimes it happens that the email has nog been read or someone forgot to sent an email resulting in not a correct invoice to the customer and not paid costs for us.Which possibillities offers webroot to automate this? Kind Regards, Niels
Partial Outage Webroot Management ConsolesIdentified - The issue has been identified and a fix is being implemented.Feb 24, 09:03 UTCInvestigating - Webroot Management Consoles is currently experiencing a partial outage. We are investigating the issue and working on a speedy resolution. Thank you for your patience.Feb 24, 08:37 UTC
HiI have had console alerts setup to notify me of Threats and Installs for 3 years but in the last 6 months I have not been sent notifications for detected threats or installs on all bar one occasion where I received it 24 hours after the fact.It used to all work instantly.I have raised this with support now and in the past and not got very far. Is anyone else experiencing this issue and if you managed to fix it how did you do so?Thanks Bill
Hello - I recently started manage Webroot in our environment, and I noticed none of the active policies have this “Favor low CPU usage” setting enabled. Anyone got any experience with this setting? I figured there had to be a reason why it is disabled. Maybe it doesn’t do much, or maybe the scan will be too slow?The setting for “Favor low RAM usage” is enabled in most policies. Thanks!
Hi Team, We recently purchased the webroot secure anywhere for one of our enterprise servers. The agent was installed on the server with the new keycode received. The finance team lost the email with the keycode but the server still has the agent installed and shows only the first 4 digits of the keycode applied.The finance team even does not remember the first name / last name used for registration as they work on multiple things.We only have two things: Th first 4 digits of the keycode and the purchase date. Please help.Regards
I need to remove two retired machines from WR, but all the instructions say to click on PC Security. Does Not Exist. The tabs I see are: Dashboard | Sites | Admins | Groups | Reports |Please provide instructions to remove machines using current, January 2021 interface. I need to use those licenses on new machines.I logged in with Admin credsI uninstalled through appwiz.cpl, but webroot STILL show the machines, reports they’ve been recently scanned, and are clean. Clean? They are DEAD. RETIRED. I set the policy to unmanaged, but the console just won’t let go.Do i have to plug them back in, and seek & destroy in the registry? I bet if I stop paying for the licenses, they’ll stop on a dime.
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.