[KB7375] Allow access for screen readers software to ESET GUI

Issue

  • Allow screen-reading software (like NVDA, JAWS, Narrator) to access GUI of ESET security products
  • Self-defense blocks access to egui.exe
  • Create a new HIPS rule to allow access to egui.exe

Solution

Choose one of the solutions available:

  1. Install with XML settings—ESET is not installed yet
  2. Import an XML file—ESET is already installed
  3. Create a new HIPS rule—ESET is already installed

Install with XML settings—ESET is not installed yet

  1. Download your ESET security product to an installation folder.

  2. Download the configuration file.

  3. Extract .zip archive to the installation folder and rename screen_readers_config.xml to cfg.xml.

  4. Make sure cfg.xml is placed in the same folder as the installation file.

  5. Install.

  6. After installation, verify that the HIPS rule named "Allow screen readers to access Egui" has been created in Setup > Advanced setup > Detection engine > HIPS > Rules.


Figure 1-1


Import an XML file—ESET is already installed

Use only if you did not import XML settings during installation.

  1. Download the configuration file and extract the .zip archive.

  2. Import ESET configuration settings using the downloaded file screen_readers_config.xml.

Create a new HIPS rule—ESET is already installed

Use only if you do not prefer import XML settings during or after installation.

  1. Create a following HIPS rule based on this guide:
  • Name of the rule: "Allow screen readers to access EGUI"
  • Enabled: yes
  • Action: Allow
  • Operations affecting: Applications
  • Logging severity: None
  • Source applications: All applications
    (you can limit "Source applications" to your screen-reading software only)
  • Application operations: All application operations
  • Specific applications: %InstallDir%egui.exe
  1. Enforce the policy to client workstations (ESET endpoint products only).