ESET PROTECT On-Prem – Table of Contents

Advanced security


Note

Advanced security is enabled by default. You can find advanced security in More > Settings.

Advanced security includes a secure network communication between ESET PROTECT components:

Certificates and certification authorities use SHA-256 (instead of SHA-1).

The ESET PROTECT Server uses the highest possible security (TLS 1.3 or 1.2) for communication with ESET Management Agents, Syslog and SMTP communication.

Advanced security works with all supported operating systems:

Windows

LinuxESET PROTECT Server 13.1 and later supports OpenSSL 3.x, and does not support OpenSSL 1.x. ESET Management Agent supports both OpenSSL 3.x and OpenSSL 1.x—The minimum supported version of OpenSSL for Linux is openssl-1.0.1e-30, but we recommend using the latest version of OpenSSL 1.1.1. There can be more versions of OpenSSL installed on one system simultaneously. At least one supported version must be present on your system.

oUse the command openssl version to show the current default version.

oYou can list all versions of OpenSSL present on your system. See the filename endings listed using the command sudo find / -iname *libcrypto.so*

oVerify if your Linux client is compatible using the following command: openssl s_client -connect google.com:443 -tls1_2

oFollow the Knowledgebase article to upgrade OpenSSL 1.1.1 to OpenSSL 3.x.

macOS