Webroot® Business Endpoint Protection
Welcome to the Endpoint Protection and management console Discussion Forum!
- 1,127 Topics
- 3,620 Replies
Evasion Shield alerts
We have enabled Evasion Shield and set it to remediation after a test period. The problem is that we do not receive alerts when a script is detected/quarantined. We have to run a report, daily, to discover potential problems. Do you confirm this behaviour? Thank you in advance. -- Nicola
Manual scan doesn't scan subfolders
My company recently moved from Trend to WebRoot. When working from home I used to be able to use Trend to scan my personal laptop via a local network shared folder. I tried this with WebRoot and it seems to work if I just want to scan one file, but if I choose to scan a folder it doesn’t scan the contents of any subfolders.
Horrible Sales and Billing Support... Are there any humans at Webroot?
We have been using Webroot Secureanywhere for over 8 years at our business. This last year we have downsized our staff significantly and at renewal we notated we no longer needed our full 20 stations, but instead only 5 licenses would be needed. These systems had webroot removed and were booted down. The backend showed only 5 active stations/licenses. Sure enough at renewal we were billed for all 20 stations.I contacted support and got a response WEEKS later that a refund request had been escalated. After an additional week with no return I contacted via phone. Long story short we finally were downgraded to the correct license amount and received a refund about 38 days after the initial request.Keep in mind, the downgrade was an annual payment. The following month (March or April) we started to be billed an erroneous $13. 50 a month since then. I then opened another ticket las month and received a response 7 days later saying they were looking into it. Days later… nothing. I replied ba
Is there a way to Deactivate "Not seen lately" Automatically like not seen in 60 days?
Or is there a way to do it from the groups list as it'll show all of the old but no option to disable. We have 90 clients and 3K devices and the switching between tabs in the Webroot Console is ridiculously slow and tedious switching between tabs.
How long does it take for upgrading?
I see a new version for Mac has been released since 8 days, a new version for Windows has been released since 17 days. However, all agents in my clients are stil the old version. Mac is 126.96.36.199 Windows is 188.8.131.52 I know they said not everyone will receive the update at the same time, but one or two weeks should be enough? Any problem with upgrading?
Global Console does not show the site's renamed endpoint
Within my site, I’ve renamed some endpoints so that they are more descriptive than some of the generic hostnames. Here’s the issue, those custom names don’t appear in the global console - neither in the groups nor in reports. I’m trying to deploy evasion shield, but this limitation makes it unusable. Evasion shield’s reports don’t appear within my site, only the global console. But the global console doesn’t honor my custom endpoint names. So when I run the evasion shield reports, I get a list of endpoints but they are the original hostnames which are meaningless to me. I have contacted support about this issue. They advised this is a known issue but is low on the priority list for dev. I suspect that Webroot doesn’t fully understand or appreciate the depth of this problem. You keep pushing to use evasion shield, but evasion shield isn’t useful for me until this is fixed. Either include the evasion shield reports within my site or fix this bug in the global console, please.
Endpoint Policy Updates and GSM
Hi I just wanted to ensure my understanding on how endpoints (managed by GSM) get policy updates and how this is reflected in the GSM portal. Setup: I have a group called “test-group” I have a policy applied to the group called “test-policy” I have a pc in that group called “test-PC” The test-policy has polling interval set to 15 minutes Questions: If I make a change to the policy, “test-PC” endpoint should reflect that change within a max of 15 minutes? How long should I then expect for that change to then reflect back in the GSM portal. If a policy polling interval is 15 minutes, then the “Last Seen” value should never be more 15 minutes in the past (unless of course the device has been switched off)? 2 Specific examples: This morning I have turned on the Evasion Shield for a group of servers and this afternoon they are still not reflecting the change. Polling is set to 15 minutes and the “Last Seen” value is within the last hour. Another example this morning I enabl
GSM or Endpoint Protection Console - What should I be using?
Hi I have some questions regarding the fundamentals of Webroot and the GSM and Endpoint Protection Console We are an internal IT department that use Secure Anywhere Webroot Endpoint Protection (We are not an MSP). We have 1 site in GSM which contains groups of our company devices with policies associated to those groups (IT Dept, Users, Server, Terminal Servers etc) Policies in GSM are pushed down to the Endpoint Protection Console (We didn't do this and must have been converted from the legacy console when GSM was pushed out to us……) What console should we be using to manage everything? I can see there are some major differences: for example: GSM Policy management has features that the Endpoint Protection Console doesn't such as the new Evasion Shield - This doesn't show in the Endpoint Protection Console at all Endpoint Protection Console has many more agent commands than GSM Reporting in GSM has many more reports compared to Endpoint Protection Console No Deactivated grou
duplicated agents/hostnames that increases the licenses used?
Is there anyone that has problems with duplicated hostnames/agents in your customer sites? I have to frequently check all my sites for agents that has been duplicated and therefore breaks the licensing seats. it should be fixed because this is a problem but for now i can manage if i could get a better view of sites that has to many licenses issued.
Buisness endpoint protection - monitor shutdown protection and webroot startup
I am new to this group, so please tell me where the most appropriate place this question should be placed. I have a bunch of developers who do stuff that once in a while Business Endpoint Protection complains. From what I can ascertain, in the policies I enable the policy “Allow SecureAnywhere to be shutdown manually”. From what I can see this is the only way to allow developers access to the HOSTS file for example. I need to be able to monitor the Manual Shutdown of and startup. I see that the Windows Application Event Log Security Center application creates events and records “Updated Webroot SecureAnywhere status successfully to SECURITY_PRODUCT_STATE_OFF.” and “Updated Windows Defender status successfully to SECURITY_PRODUCT_STATE_ON.” Is there a way from within the Webroot Business Console to get this information for an endpoint? Or is the only way to do this is to create a central event log manager? Thank you, David
Let me continue telling you how bad support is......
Support ticket (#314077) I got on an endpoint yesterday and the Webroot icon down by the clock was greyed out and when you hovered on it, it said “Protection Disabled”. All I had to do was open it and click “Enable” but that bring up a couple questions: 1) How did it get disabled in the first place? I can see the option to “Shut Down Protection” but not simply disable it. How did the end-user do this? 2) Why wasn't I notified and why is the “Disabled” status not reflected in the GSM? Supports response: To #1 we don’t know. To #2 they never responded even though I asked it twice. Gotta love their support…….
Webroot is total junk!
I have never, in my life, seen a bigger waster of time and money. This software is a bottomless pit of pain and frustration with no end in sight. The GSM can’t contact the endpoint. Commands expire. The endpoint can’t contact the GSM so you can’t uninstall it because it things it is managed. Excludes aren’t excluded. it won’t register as the the “on” virus in Security Center so both Windows Defender and Webroot are active. It won’t install or uninstall properly. It is hit and miss if it puts itself in Add/Remove programs. The latest update makes the WRSVC service fail to start because it is improperly digitally signed. Endpoints show up in the wrong site It thinks programs are harmful that are totally safe. Now you can’t even end the numbering system in the post! Can’t you do anything right Webroot! Do not use this program! It is total junk!
Citrix Provisioning & Webroot
We're implementing/still testing a virtual desktop infrastructure using Citrix XenDesktop 7.6 running atop VMware vSphere 5.5. The environment is built, support servers running, etc. and we're working on master image deployment via Citrix PVS, but we're running into trouble when it comes to WSA installations. According to the documentation, running WSA is supported within the virtual environment, either using the -clone or -uniquedevice commandline option. We're building WSA into our master image and we've tried it both ways (used both command line options), but when we provision our virtual machines, we don't see those registering within the Webroot Admin Console. When we used -uniquedevice, we saw 1 provisioned VM register in the console but with continual refreshes, that same instance in the Admin Console would change names, our assumption was that we were seeing the last provisioned VM to check in. When we used -clone, to be honest I'm not exactly sure
Windows 10 Business Endpoint Protection - Windows Doesn't Show WebRoot As AntiVirus
I’ve tried rebooting and reinstalling multiple times. I’m testing the business endpoint protection free trial out for my company, we really can’t have two antivirus programs running at once. From other posts it seems like I will need to leave the windows firewall running, that is fine. Web Root is running, I can perform scans and there is a green system tray icon. Windows is not recognizing Web Root as antivirus software though and it’s not appearing in the drop down for providers. The only provider appearing under antivirus is Windows itself (see screen shot). Any assistance would be appreciated, I’m hoping to switch all our licenses from Symantec to Web Root but only if it cleanly installs and runs with Windows.
Hello. I can’t seem to log in to my SecureAnywhere Console. Apparantly I’ve enabled 2FA. But I don’t remember where the security code is sent. Its not going to any authenticator I have. (Google, Microsoft, Authy). Its not going to my email. I’ve tried resetting but its saying my security questions are wrong. Could Webroot please help with this? Thank You.
Webroot disables my OS while using only 10% CPU usage?
I’m running Webroot SecureAnywhere EndPoint Protection v184.108.40.206 I’ve been battling a strange issue where my whole OS becomes unresponsive. I get the “(Unresponsive)” message on all windows. Sometimes the screen goes black with only a mouse cursor movable. When it begins, the start menu stops working and I can’t start new applications. Task manager won’t open and CTRL+ALT+DEL doesn’t do anything. Any applications that were running before have a random chance to continue working or freeze. I can’t reboot. If I am able to issue the reboot command it never happens, likely because Windows can’t close all the hung windows. I thought it might be a hardware issue, maybe a failing HDD but I’ve ran numerous tests. All the tests tell me that nothing is wrong. I have been keeping Task Manager open all the time just to see what is going on. I’ve finally noticed a pattern. Webroot kicks up to 10% CPU usage when the event begins. After that, Webroot remains steady
Windows Server 2019 ver 1809 compatibility
I understand that 2019 is ‘supported’ and listed here; LINK, however Webroot does not seem to disable or put Windows Defender in to passive mode on Server 2019 like it would for Windows 10. It also does not show as a listed Security provider in Settings-->Windows Security-->Open Windows Security-->Virus & Threat protection-->Manage providers (link on the right). This leaves the Windows Defender Antivirus Service set to Automatic and running. We all know that less is more when it comes to the amount of antivirus agents on a single machine. I have been unable to find any documentation on your site or in the community regarding 2019 best practices or when it will be fully compatible. Please advise. Thanks, Nic
Join the Conversation
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.