Issue
- Prerequisites
- Install ESET Inspect Connector from a Windows command line
- Assign the ESET Inspect Connector an ESET PROTECT On-Prem policy that allows communication with ESET Inspect Server
Solution
Prerequisites
- Deploy ESET Management Agent
- Deploy an ESET Endpoint application
- Activate ESET Inspect Connector with an ESET Inspect subscription: create a Module Activation task or contact your ESET PROTECT On-Prem administrator.
Install ESET Inspect Connector from a Windows command line
-
Download the ESET Inspect Connector installation file.
-
Open the command line and navigate to the downloaded file.
-
Run the
msiexecinstallation command with the attributes listed in the table below. You can use the provided example and modify the attributes to match your environment configuration.You can include multiple attributes when running the installer in the silent mode. The
P_HOSTNAMEattribute is required.Attribute Description Required Default value APPDIRUsed to set the directory under which the application will be installed C:\Program Files(x86)\ESET\ESET Inspect Connector\for 32-bit OS andC:\Program Files\ESET\ESET Inspect Connector\for 64-bitP_HOSTNAMEUsed to set the host on which ESET Inspect Server is installed Yes localhost P_PORTUsed to set the number of the port on which ESET Inspect Server is listening for data from ESET Inspect Connectors 8093 APPDATADIRThe directory used to store logs and additional output files C:\ProgramData\ESET\Inspect Server\P_PATH_TO_CERT_AUTHThe absolute path to the Certificate Authority file on the target PC. Currently, URLs are not supported. Mounted remote drives like \\store03should work. Multiple files can be separated by char ';'P_IS_SERVER_ASSISTEDIf you do not have the Certificate Authority present, set this parameter to 1 (P_IS_SERVER_ASSISTED=1)for server-assisted installation. If this parameter is used user does not need to useP_PATH_TO_CERT_AUTHP_INSTALL_CANARY_FILESIf enabled, the installer will generate a canary file and place it in a hidden directory. Setting this value to 0(zero) skips file generation.1
Assign the ESET Inspect Connector an ESET PROTECT On-Prem policy that allows communication with ESET Inspect Server
To allow the computer with ESET Inspect Connector installed to communicate with the ESET Inspect Server, the computer must be assigned an ESET PROTECT On-Prem policy that allows the communication.
If you are just starting with the setup, create such a policy and assign the computer to it. If such a policy already exists, assign the computer to the existing policy.
Create a new policy and assign it to the ESET Inspect Connector
-
Open the Policies view: Click Policies and click Add.
-
Define the policy basic information and click Continue.
-
Under Settings, select ESET Inspect Connector. Then, expand Connection and do the following:
-
In the Server address field, type the ESET Inspect Server IP address.
-
Next to Certificate Authorities, click Edit→ Add → Open Certificate Authorities. Select the Certificate Authority that was used during ESET Inspect Server installation and click OK. Click Save → Save.
-
-
Click Continue.
-
Under Assign, click Assign, select the computer to which you want to apply the policy and click OK.
-
Click Finish.
Assign an existing policy to the ESET Inspect Connector
-
Open the Policies view: click Policies.
-
Locate the policy (the policy application must be ESET Inspect Connector), click the policy name and click Edit.
-
On the left, click Settings, expand Connection and verify the following connection settings:
- Server address contains the correct ESET Inspect Server IP address.
- Certificate Authorities are set up. The Certificate Authority that was used during ESET Inspect Server installation must be selected. If needed, click Edit next to Certificate Authorities and verify or change the Certificate Authority.
-
On the left, click Assign. Under Assign, click Assign, select the computer to which you want to apply the policy and click OK.
-
Click Finish.
