innojas.blogg.se - Eset advanced protection

To apply advanced security in the current ESET PROTECT infrastructure, you must replace the existing certificates.

Advanced security includes only the new CAs and certificates created after advanced security is enabled.

Advanced security does not influence the existing Certification Authorities (CAs) and certificates.

When you enable advanced security, you must restart the ESET PROTECT server to start using the feature.

OVerify if your Linux client is compatible using the following command: openssl s_client -connect :443 -tls1_2 See the filename endings listed using the command sudo find / -iname *libcrypto.so*

O You can list all versions of OpenSSL present on your system. O Use the command openssl version to show the current default version. At least one supported version must be present on your system. There can be more versions of OpenSSL installed on one system simultaneously. The minimum supported version of OpenSSL for Linux is openssl-1.0.1e-30. Linux - We recommend that you use the latest version of OpenSSL 1.1.1.Communication between the MDM server and mobile devices is not affected.Īdvanced security works with all supported operating systems: MDM users: The ESET PROTECT server uses TLS 1.2 for communication with the MDM server.Advanced security enforces the use of TLS 1.2 for Syslog and SMTP communication.The ESET PROTECT server uses TLS 1.2 for communication with agents.Certificates and certification authorities use SHA-256 (instead of SHA-1).Advanced security includes a secure network communication between ESET PROTECT components: