Advanced security

Advanced security includes a secure network communication between ESET PROTECT components:

Certificates and certification authorities use SHA-256 (instead of SHA-1).

The ESET PROTECT server uses TLS 1.2 for communication with agents.

Advanced security enforces the use of TLS 1.2 for Syslog and SMTP communication.

MDM users: The ESET PROTECT server uses TLS 1.2 for communication with the MDM server. Communication between the MDM server and mobile devices is not affected.

Advanced security works with all supported operating systems:

Windows

Linux - We recommend that you use the latest version of OpenSSL 1.1.1. OpenSSL 3.x is not supported. The minimum supported version of OpenSSL for Linux is openssl-1.0.1e-30. There can be more versions of OpenSSL installed on one system simultaneously. At least one supported version must be present on your system.

oUse the command openssl version to show the current default version.

oYou can list all versions of OpenSSL present on your system. See the filename endings listed using the command sudo find / -iname *libcrypto.so*

oVerify if your Linux client is compatible using the following command: openssl s_client -connect google.com:443 -tls1_2

macOS


note

Advanced security is enabled by default in all new installations of ESET PROTECT 8.1 and later.

If you use ESMC or ESET PROTECT 8.0 with disabled Advanced security and you upgrade to ESET PROTECT 8.1 and later, advanced security remains disabled. We recommend that you enable it by following the steps below.

arrow_down_business Enable and apply advanced security on your network