-
Enhancing Community Security: Enable Multi-Factor Authentication (MFA)
MFA adds an extra layer of security by requiring users to provide two or more verification factors to authenticate their identity. This significantly reduces the risk of unauthorized access, even if your password is compromised. How to Enable MFA: Log in to with your Community account credentials. You'll see a red ribbon…
-
Device Management in PM16 (specifically: blocking USB Mass Storage)
Hi there, I´m testing the blocking of USB Mass Storage Devices in Policy Manager 16. Blocking works successfully, but I cannot get exceptions to work. This is how it looks in PM: As you see, I blocked USB Mass Storage Devices: OK. Next, I tried to enable 2 specific USB Flash Drives by their Hardware IDs. But this does not…
-
🐣🌷 Hop into our Easter Giveaway! 🌷🐣
Easter is just around the corner, and we're celebrating with an egg-citing giveaway! We're giving away a limited edition WithSecure™ hoodie to one lucky winner, but here's the catch: you've got to hunt for the hidden Easter eggs! 🥚🔍 Keep your eyes peeled as we hide an egg in the community each week, accompanied by a link…
-
Upgrade F-Secure Management Server from 15.21 to 16.0 - troubles.
I have: Debian 9 with F-Secure Management Server and Windows 10 stations with F-secure Business Clients. Mangement Console is on Windows 10. After upgrade Management Server from 15.21 to 16.00 (and of course management console) i can push installations from Server to Workstations, but: Installation is complete on station…
-
Problem with offline virus definition updates after upgrading policy manager from 15.30 to 16.01
The update apparently cleaned the install-folder\f-secure\Management Server 5\bin folder and there is only one folder left named updatetools. With this I can get the updates but there is no import-f-secure-updates.bat anymore. I managed to retrieve the one that was there previously but it does not work either. It misses…
-
WithSecure Business Account: Changes in login flow
At WithSecure, we continue to develop flexible but secure Elements portal access features. To get ready for the next stage we will change portal login flow to follow an 'identity first' model. The impact of this change is that email address and password are no longer given in a single transaction. Read the full article…
-
Connect-ExchangeOnline Powershell Blocked by Withsecure Agent
Hello Community, I recently noticed, that the cmdlet "Connect-ExchangeOnline" in Powershell is not usable, unless we deactive the Agent for a brief time until we finished our changes. Is this a known problem, do other people have it as well and is there a fix? Thanks and have a nice day Mattia
-
WS PM 16.01 - Error exporting msi
With the new versione of policy manager 16.01, the error releated to export package is back also if Policy Manager Console is executed with elevated Administrator privilege. Someone have the same issue?
-
Question about Collaboration Protection licensing
Hi, I would like to ask a question about WithSecure Elements Collaboration Protection licensing. A company has 15 licenses of WithSecure Elements Collaboration Protection and all are in use at the moment. Automatically protect newly-added mailboxes is turned on and we create a new user with a new mailbox. What happens if…
-
WithSecure Business Accounts: Multi-Factor Authentication enforcement
From 22 April 2024, we will start to enforce the use of Multi-Factor Authentication (MFA) with all WithSecure Business accounts. Read the full article here:
-
WithSecure Elements Announcements now available in more languages!
We are pleased to announce that we will soon be providing Elements Announcements in additional languages. Read the full article here:
-
How do I view the current version of software installed on end points?
Under the patch management section it is possible to see a list of software updates that are needed. This shows the current version of each item of software, and also the Target version that can be rolled out. However, if I need to check the current version of a particular piece of software on our endpoints, how can this…
-
DeepGuard Issue (false positive)
Hi there, since the update to WithSecure 16, DeepGuard sends strange alerts to our admins like this one: Sicherheitsalarm: DeepGuard hat eine verdächtige Anwendung angehalten, die versucht hat, geschützte Dateien zu ändern. Von: XXX, 2024-01-10 10:42:43 +01:00 Details: DeepGuard hat eine verdächtige Anwendung angehalten,…
-
How to install WithSecure EDR and EPP on Citrix Server ?
Hi ! I have a citrix catalogs with 9 servers which each one morning rebooting from the snapshot of golden image. How i needs to install WithSecure on the golden image ? I guess it's not just run the .exe file of WithSecure intall. Thank you for your help !
-
Vulnerability Managements tag filter under assets not working
I've been attempting to utilize the tag filter option within the asset section, but it seems that, regardless of what I input into the filter, it doesn't yield any results. I'm wondering if I might be overlooking a step or if there's an alternative method to export a CSV or generate a report while also being able to view…
-
Pre-Announcement: New WithSecure client for macOS
We will shortly be releasing a new version of our Mac software for WithSecure Elements, WithSecure Countercept, and WithSecure Business Suite. As part of these releases, it is important to note that several things have changed. Read the full article here:
-
How do I enable extension, allow notification & full disk access on macOS using commandline
Just a question since I'm deploying the WithSecure Element using commandline to all macOS devices. I tried to install the WithSecure Element via commandline (Terminal) and the program is installed without user noticed. However, They are require to enable extension, allow notifcation & allow full disk access in order to…
-
Network location triggers for WFH
I am trying to setup automatically changing firewall profile depending on the users location. There does not seem to be a good trigger type for a home user since most of them have the default setting for DNS, DHCP and gateway set to 192.168.1.1 What would be a secure solution for this? P.S. I need to open RDP port in home…
-
Save the Date: Partner Forum Launching on February 14th
Mark your calendars because something special is coming your way! Our Partner Forum is set to launch on February 14th, coinciding with the kickoff of the WithSecure Partner Program 2.0 series. As part of our commitment to empowering our partners, we're rolling out the Partner Forum—a dedicated space designed to foster…
-
WithSecure v.16: Web Content Control not showing blocked website address
Hi, Since I upgraded the policy manager server to the v.16 on a linux based server, the web content control is blocking pages by claiming they have been rated in a specific category without showing the web address. Is that a new confidential policy that the company has applied ? If not, do you have any idea on how solve…
-
Clients move to a different group after upgrade to v16
Hi, I have a problem with some clients that move to a wrong group after upgrade to v.16. This is my tree for example: When I launch the upgrade from Group1, through the policy manager console, clients that have been upgraded, go to the Group2 but I expect them to stay in Group1. During the process I applied the correct…
-
Is it normal for FSDIAG.exe to run wmic.exe, gpresult.exe, ipconfig.exe and schtask.exe
We got a High risk alert from EDR where FSDIAG.EXE (C:\Program Files (x86)\F-Secure\PSB\diagnostics\fsdiag.exe) is running wmicm, gpresult, ipconfig and schtask exes. Is this normal behaviour for FSDIAG.exe?
-
Looking for assistance in dealing with Games in BOYD devices triggering EDR Broad Context Detection
So I'm trying to figure out how other people are dealing with this situation, we have about 80% seasonal staff who all bring their own device. While they are with us, we provide WithSecure ep,edr, vm as well as office and other online tools. Because these devices are owned by the end user, we get so many alerts after hours…
-
RDP connection and F-secure 15.30
Hello, I have a weird issue with one computer, impossible to take control with RDP. I have this error while i try the connection to the other computer, the rdp session is initiated, i can disconnect the current user to take control of the computer but after i say yes on the target computer , the rdp freeze and the result…
-
Elements Quarterly Launch Q4/2023 is here!
The year 2023 has come to an end but our Elements portfolio has kept on developing. Among these new enhancements is the capability of Elements Vulnerability Management to tap into dynamic threat intelligence trends. Moreover, our MFA improvements make your Elements use more secure than ever before, and the unified Elements…
-
Registry access blocked at random setup attempts
Hi, often we receive admin warnings like these when executing a setup.exe (non specific). Example: Sicherheitsalarm: Der Zugriff auf die Registrierung wurde blockiert. Von: XXX, 2024-01-16 23:14:44 +01:00 Details: Zugriff auf Registrierung wurde blockiert. Anwendungspfad: C:\Program Files (x86)\Microsoft Visual…
-
Windows Client Security is unable to download policy
Hi, I have already installed the Client on several machines and everything works just fine, but on one machine i've encountered a problem. After installing, UI is stuck on: Client downloads and installs updates normally from policy manager: log file "fs_pm_support.u.log" is full of this "Failed to update CCR token: Type:…
-
How to Fix: Malware and Spyware Protection Malfunction. Please restart.
For some time now, I've been getting an alert on my Policy Manager console, with this message: "Malware and Spyware Protection Malfunction. Please restart." I've checked the machine remotely and it seems that Windows Defender is still activated, but as soon as I deactivate it, it reactivates after restart. Do you know a…
-
Uneasy feeling about password reset feature in PM Console / Server.
Hello, How do you feel about the password reset feature in WithSecure Policy Manager Server and Console? It's openly documented in the manual and leaves H2DB contents intact, which I feel is a security risk. WithSecure Support says to use Reset Tool on PM, user must first log into server OS as administrator, which is one…
-
Updating article resolution for Policy Manager Server failing upgrade to 16.00
This discussion was created from comments split from: Business Suite Policy Manager Changelog.