Kaseya Endpoint Security Release Notes
|
New Features in Kaseya Endpoint Security v2.1 (v2.1.0.0) – 27 August 2009 |
|
|
Dashboard |
New KES Dashboard function added. Provides quick views of the following: Endpoint Security Statistics Top Machines with Threats Top Threats Discovered |
|
Security Status |
Reboot now action button added. Some security updates require a reboot to install the update. Version number of latest antivirus definition installed displays in red text if older than five versions from the latest version available. New columns showing whether Link Scanner and Web Shield are enabled or disabled If Resident Shield protection is enabled but less than the default settings, the icon and tooltip shows Resident Shield as “partially enabled”. Tooltips now report the status of a particular icon. |
|
Reboot Icon, Tool Tip and Version Number |
Security protection updates sometimes require a reboot of the managed machine to complete the update. A new reboot icon has been added to the anti-virus definition version column and displays alongside the existing, pre-update version number. The corresponding tooltip says, “Reboot to complete update.” Prior to the reboot, the protected machine continues to use the existing version of anti-virus definitions. After the reboot, the new version of anti-virus definitions are used and the new version number displays. This change downplays the “requirement” for rebooting. When a reboot is needed, it is needed only to complete the previous update. The machine is still protected while a reboot is pending and the admin can reboot at their leisure. |
|
Manual Update |
Added Update from Internet (Override file source) option. If checked, updates are downloaded from the internet directly. If blank, updates are downloaded using the method specified in Patch Mgmt > File Source. |
|
Change to LAN Based Update Logic |
If a LAN-based File Location is specified for a managed machine, KES uses this file location to download installation files and security definitions. The LAN-based file location is updated only when AVG labs releases a new version. The endpoints update from this location staggered based upon the existing logic. This solves the problem of AVGINETL scripts backing up on the LAN-based server. |
|
Enabling/Disabling Kaseya Managed Automatic Updates |
You can now disable/enable Kaseya managed automatic updates to the endpoints. In the event of needing a specific schedule (a feature planned for future versions), you can disable the Kaseya based automatic update and use the schedule on each endpoint. |
|
Disable/Enable Resident Shield Using Scripts |
You can now disable/enable Resident Shield using the following Execute Shell Commands in an script: In the agent temp directory, run C:\Temp\kes>KasAVCmd -setFileMonitorEnable 0 ;disables Resident Shield C:\Temp\kes>KasAVCmd -setFileMonitorEnable 1 ;enables Resident Shield Script Name: KES_Enable Resident Shield Script Description: Enables Resident Shield temporarily (until next scan or reboot...unless it is enabled by default and is being re-enabled after being temporarily disabled)
IF True THEN Get Variable Parameter 1 : 10 Parameter 2 : Parameter 3 : agenttemp OS Type : 0 Execute File Parameter 1 : #agenttemp#\kes\KasAVCmd.exe Parameter 2 : -setFileMonitorEnable 1 Parameter 3 : 3 OS Type : 0 ELSE
Script Name: KES_Disable Resident Shield Script Description: Disables Resident Shield temporarily (until next scan or reboot)
IF True THEN Get Variable Parameter 1 : 10 Parameter 2 : Parameter 3 : agenttemp OS Type : 0 Execute File Parameter 1 : #agenttemp#\kes\KasAVCmd.exe Parameter 2 : -setFileMonitorEnable 0 Parameter 3 : 3 OS Type : 0 ELSE |
|
Clearing Current Threats on Each Scan |
On each scan, any current threats are now cleared out and marked as being resolved. If the threat still exists, it will be rediscovered and listed in current threats. |
|
Virus Vault Changes |
To improve KServer performance, virus vault changes are only reported to the Kserver when the KES protected machine boots up or when threats are added or deleted from the virus vault. This changes the logic of syncing up the entire contents of the virus vault each update. |
|
All Log Entries |
All log entries are now displayed on the View Log page. |
|
Uninstall Log |
When KES is uninstalled, an uninstall log is written to the managed machines temporary \kes folder found in the agent temp directory, typically c:\temp\kes. |
|
Install Remove - Update from KServer |
Added Update from KServer (override file source) option. If checked, installs are downloaded from the KServer. If blank, installs are downloaded using the method specified in Patch Mgmt > File Source. |
|
Conflicting Application Update |
Updated the list of conflicting applications recognized by KES when installing the KES client. |
|
Install / Remove - Application Conflicts |
The warning is displayed in the Install Status column of the Install/Remove page. The warning also displays if the conflicting application is installed afterthe KES client is installed and a latest audit is performed. A KES application conflict log entry is generated if the KES client is installed despite the existence of a conflicting application. |
|
Install Remove - Installation Options |
The Installation Options dialog has been changed into a standard action button on the Install/Remove page. After the KES client is installed on a machine ID, the installation options applied to that machine ID can be viewed by clicking the green check mark in the Install Status column. |
|
Identity Protection |
The Identity Protection component is now an installation option. See http://www.avg.com/product-avg-identity-protection for more information. |
|
Protection ID |
The following new option can only be set by KES during installation.
After installation, KES cannot be used to change this setting. |
|
Disable Windows Defender Option |
A new “Disable Windows Defender” has been added to the Installation Options dialog box. Running Windows Defender significantly degrades the performance of KES and should be disabled by default using this option. |
|
Define Profiles |
The following System Tray Notification settings have been added to the General tab of Define Profiles:
The Run System Scan upon KES Start Up settings have been removed. |
|
AVG Removed by User Alert |
A new “AVG Removed by User” alert has been added to Define Alarm Sets. The alert is triggered if the user uninstalls AVG from the managed machine. |
|
Alert Issues Fixed |
The following KES alert issues have been fixed:
|
