Webroot® Business Endpoint Protection
Welcome to the Endpoint Protection and management console Discussion Forum!
- 1,134 Topics
- 3,648 Replies
I am trying to use simulations posted here - https://community.webroot.com/unity-api-forum-49/getting-started-with-the-webroot-unity-api-and-postman-274427 to setup Postman to communicate with the Unity API. I am logged in as Admin in the GSM console. However, following the instructions in the Simulation or the GSM Admin Guide documentation, I don't see the [b]API[/b] [b]Access[/b] tab. [img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/9f3e8b9d-8934-4fd7-8044-e990e5f7d255.png[/img] Based on the tabs, I think I am in the Business Console. Could you please let me know if the API Access is available in the Business Console or should I convert to the Managed Service Provider Console (which if I do, then I can't go back to the Business console)
Hi I am trying to install a new version of Webroot onto a machine that have previously had an installtion of webroot on them. When I install the new version they old licence key is being used and the PC is reporting into our old MSP's console. I've tried to use the installer with the licence key already and the MSI and manually enter the licence key however it this doesnt seem to work. Any ideas? Thanks Steve
Hello, would you please help with this issue? In webroot web security service when I want to make a new group, there is Authentication tab which require to add IP address or define with Use name, is there a way to use Mac address instead of ip address in order to Ignore the Dynamic ip addresses. Also, I have enabled SSL inspection and I downloaded the certificates and installed them as required. but none of my https is working correctly, they show me a page said that the website didn't send any data. what can I do to solve that, please note that all the websites the were woking correctly the first time i used the agent but then they stopped. best regards.
I've got a support request for this one, but I figured I'd ask this anyway just in case someone else knows the answer, if not I should hopefully have the answer and will post it here for posterity. -------------------------------------------------- We're unable to reset the counter on the local agent as we use the secure anywhere portal and it won't allow us to make that change on the agent, but I also see no reset statistics option in the secure anywhere portal? Basically we want to avoid a scenario where the users overreact over recently found threats as they've all been eliminated. Thanks
Hello! I have a questing regarding the reports generated from all the sites and clients in the GSM. The dashboard showes that there are an x number of active clients, but this number deviates from the number of site workstations. Is there any raport that shows this so I can take steps to fix this? Thanks in advance!
I run an MSP and I've been shopping around for a Endpoint antivirus. I recently tried WebRoot. I've installed the end point on two of our inhouse machines. Both of the machine had BSOD errors shortly after. Does anyone have any experience with WebRoot and these problems. Obviously I'm not too keen on rolling this out to my customers.
As an MSP I use the Webroot SA GSM portal to manage all my clients. I can't find any way to monitor or be alerted when clients devices haven't checked in for an extended time. If I go into the "sites" individually I can see a Last Seen date, but that is not an option if you have many sites. I also looked in the GSM dashboard tab, but don't see a chart showing that information. Isn't one of the main purposes of having an online portal so that you can verify that all your systems are updated and working? I recentely lost a client because we sold them this under the impression that we would contact them in the event that one of their systems was infected or outdated. They removed webroot and we didn't know anything about it. Any suggestions, or tips, maybe something I'm missing??
Hi, When will webroot detect this? Accoding to Virustotal, it still doesn't: [url=https://www.virustotal.com/#/file/5586be30d505216bdc912605481f9c8c7bfd52748f66c5e212160f6b31fd8571/detection]https://www.virustotal.com/#/file/5586be30d505216bdc912605481f9c8c7bfd52748f66c5e212160f6b31fd8571/detection[/url] Background can be found at: [url=https://objective-see.com/blog/blog_0x26.html]https://objective-see.com/blog/blog_0x26.html[/url]
New Whitelisted folders we added on Dec 8th and are still not getting pushed out to our Windows 10 computers. I whitelisted 4 folders for our PrimeSUITE application and it fixed the issue immediatly but I had to uninstall and reinstalled Webroot to make sure each computer got the new changes. On other computers I tried the wrsa.exe -poll command over and over but it did not help. We have over 500 computers so I can't continue to do this manually on every computer. Users keeps having issues with PrimeSUITE and I have to uninstall Webroot and reinstall Webroot to resolve the issue so that they get their folders whitelisted.
It would be a lot easier if I could had people to custom groups and just assign groups. There are people that need only access to one site. I have many tech that i would like to include in a group to give full access to all sites. There are many sales and account people i would like to give read only access to everything. If I could use groups at the site level to include all uses in the group it would make life a lot easier to manager when adding additional customers instead of having to manually select everyone's individual permissions.
I have a question that webroot technical Have been updating some application on my computer , but webroot is seeng these as threats. I have used these application for a long time and the companies are reputable [url=http://www.apc.com]www.apc.com[/url] PCBesetup.exe [url=http://www.apc.com/us/en/tools/download/download.cfm?sw_sku=SFPCBE92&software_id=AKRN-9VNAK7&family=&part_num=SFPCBE92&swfam=125&tsk=&swtyp]http://www.apc.com/us/en/tools/download/download.cfm?sw_sku=SFPCBE92&software_id=AKRN-9VNAK7&family=&part_num=SFPCBE92&swfam=125&tsk=&swtyp[/url] as well as OZi explorer application oziexpsetup.exe [url=http://www.oziexplorer.com/au/]http://www.oziexplorer.com/au/[/url]
Recently over the holiday one of our machines had a suspect program pop up. For some reason it didn't delete it and rescan. As you can see the dwell time was 5 days!! What could have caused this? [img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/32334i339C9C89147B2A30.png[/img]
We are starting to see a threat register on our WebRoot Endpoint Protection under Visual Studio that is registering in the malware group System.Monitor.Project.Neptune, which is a key logger. The file name is submain.ghostdoc.codeobjectmodel.dll. Anyone have any insight on whether this is a false positive or not?
We want to demonstrate the need for Webroot to prospective customers who use traditional AV software. So I wrote a simple "ransomware" program that only affects a test folder. It is a compiled .exe program that: [list=1] [*]Reads files one at a time from a test folder (c:userspublicvideos est) [*]Encrypts the file contents. [*]Writes the file to filename.txt.crypt. [*]Deletes the file.[/list]My expectation was that Webroot would see that a new .exe program was encrypting and deleting files and block it, but it did not. I have run the program from a Command Prompt window, from Windows Explorer and from a Desktop shortcut. I also ran this ransomware simulator on a VM protected by a dedicated anti-ransomware program, CryptoDrop, but it, too, allowed the deletions. As I am not an experienced white hat hacker, I am sure I am missiing something. I am aware of KnowBe4's RanSim ransomware simulator, but by now it is well known to signature-based antivirus products. I'd like to be
I know currently there is no way to delete sites but when speaking to a customer, they informed me that when speaking to Webroot, they were able to do so without creating a new console. We have a lot of deactivated sites such as test sites for demo purposes. Is there a way these can be deleted? I can provide all details accordingly, including who we are as we are known to webroot individually.
Hi guys, I have some noobish questions on depolying to endpoints using group policy in active directory. I know I can use the MSI file that is downloaded from my web console. I have downloaded it. I have also put that file in my group policy shared folder, and I can see how I deploy MSI files using GPO>Computer Configuration>Policies>Software Settings>Software installation. Now where to go from here? I understand that the MSI is interactive, and I want it it to be silent and put in its own product key. It sounds like what this guy is talking about here, but I don't know where or how to put in those command line arguments....and where to go from here. [url=https://community.webroot.com/t5/Endpoint-Protection-and-GSM-KB/Using-MSI-for-Deployment/ta-p/326532]https://community.webroot.com/t5/Endpoint-Protection-and-GSM-KB/Using-MSI-for-Deployment/ta-p/326532[/url]
Hi, I am using a VPN to connect to a client's SQL Server database but I am unable to connect. One of the troubleshooting tips is to make sure that my firewalls aren't blocking the port that SQL Server usually listens to which is Port 1433. Is there a way for me to check this and if it is blocking it can I tell the firewall to allow connecting using that port. Thank you Steve
I was playing a game with a few friends you know normal chilling. It randomly froze so I reset my computer because ctrl+alt+delete wasn't working so I was confused. When I reset BSOD appeared with windowssystem32driverswrkrn. I searched many different ways but I don't got USB stick or the windows installation disc. Can anyone help? If so I thank you so much because I have school and have a project that takes a while and I have 2 more weeks. Thanks to anyone who helps :) Sincerely, Alex/Flamestang
I called Webroot because I did not or will not ever pre-authorize ANY charges,so my call was a question about buying a 3rd party conract (PC Magazine) They informed me that this was a legit company and that they would honor the newly purchached contract,so I bought it! Got my ne key code and set myelf up for another year only to find that Webroot today ON A SUNDAY took money from my bank account for ANOTHER new account....This was not ok'd by me for one and also it appears that they went ahead and over rode my new existing account. This is very bad business and I am not happy about the way this ahs been handled! It seems every year I have issues with Webroot in one fashion or another! Any suggestions on how to get this rectified without phone and email tag??? I Not a happy customer!
In the dashboard, it shows I have 2 devices unmanaged by policies. But in Policies tab, in Unmanaged menu, it shows: No sites currently use this as their default policy Any idea why that please? [img]https://d1qy7qyune0vt1.cloudfront.net/webroot-en/attachment/33142i17B1DE05A9E1B5D0.png[/img]
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.