ESET CMD
This is a feature that enables advanced ecmd commands. It enables you to export and import settings using the command line (ecmd.exe). Until now, it was possible to export and import settings using GUI only. ESET Safe Server configuration can be exported to an .xml file.
When you have enabled ESET CMD, there are two authorization methods available:
•None—No authorization. We do not recommend you this method because it allows the import of any unsigned configuration, which is a potential risk.
•Advanced setup password—A password is required to import a configuration from an .xml file, this file must be signed (see signing .xml configuration file further down). The password specified in Access Setup must be provided before a new configuration can be imported. If you do not have access setup enabled, your password does not match or the .xml configuration file is not signed, the configuration will not be imported.
When ESET CMD is enabled, you can use the command line to import or export ESET Safe Server configurations. You can do it manually or create a script for the purpose of automation.
To use advanced ecmd commands, you need to run them with administrator privileges, or open a Windows Command Prompt (cmd) using Run as administrator. Otherwise, you will get Error executing command. message. Also, when exporting a configuration, the destination folder must exist. The export command still works when the ESET CMD setting is switched off. |
Export settings command: |
Advanced ecmd commands can only be run locally. |
Signing an .xml configuration file:
1.Download the XmlSignTool executable.
2.Open a Windows Command Prompt (cmd) using Run as administrator.
3.Navigate to the save location of xmlsigntool.exe
4.Execute a command to sign the .xml configuration file, usage: xmlsigntool /version 1|2 <xml_file_path>
The value of the /version parameter depends on the version of your ESET Safe Server. Use /version 1 for earlier versions of ESET Safe Server than 11.1. Use /version 2 for the current version of ESET Safe Server. |
5.Enter and Re-enter your Advanced setup password when prompted by the XmlSignTool. Your .xml configuration file is now signed and can be used to import another instance of ESET Safe Server with ESET CMD using the password authorization method.
Sign exported configuration file command: |
If your Access Setup password changes and you want to import a configuration that was signed earlier with an old password, you need to sign the .xml configuration file again using your current password. This enables you to use an older configuration file without exporting it to another machine running ESET Safe Server before the import. |
Enabling ESET CMD without an authorization is not recommended, since this will allow the import of any unsigned configuration. Set the password in Advanced setup > User interface > Access setup to prevent from unauthorized modification by users. |