Online Guide - Escan for Linux Desktop and Escan/english/escan22/eScan Management Console/Policies/Features Help/Administrator Password: Difference between pages

From eScan Wiki
(Difference between pages)
Jump to navigation Jump to search
No edit summary
 
imported>TechContent
No edit summary
 
Line 1: Line 1:
{| class="wikitable" border="0"
<h3 style='color:#007FFF;font-size:20.0pt;font-family:"Open Sans"'>Administrator Password</h3>
|-
<p style='font-size:11.0pt;font-family:"Open Sans"'>Administrator Password lets you create and change password for administrative login of eScan protection center and Two-Factor Authentication.</p>
{| id="mp-topbanner" style="width:100%; background:#fcfcfc; margin-top:1.2em; border:1px solid #ccc;"
<h4 style='color:#007FFF;font-size:18.0pt;font-family:"Open Sans"'><b>eScan Password</b></h4>  
| style="width:56%; color:#000;" |
<p style='font-size:11.0pt;font-family:"Open Sans"'>It also lets you keep the password as blank, wherein you can login to eScan protection center without entering any password for read-only access.<br>There is also an option to set a uninstall password. An uninstallation password prevents personnel from uninstalling eScan client from their endpoint. Upon selecting Uninstall option, eScan asks them for uninstall password. To set an uninstall password, select check box Use separate uninstall password.</p>
{| style="width:280px; border:none; background:none;"
<h4 style='color:#007FFF;font-size:18.0pt;font-family:"Open Sans"'><b>Two-Factor Authentication</b></h4>  
| [[Image:Escan_wikipedia.jpg|left|<!--We add confidence to computing-->]]
<p style='font-size:11.0pt;font-family:"Open Sans"'>Your default system authentication (login/password) is Single-Factor Authentication which is considered insecure as it may put your organization's data at high risk of compromise. The Two-Factor Authentication, also more commonly known as 2FA, adds an extra layer of protection to your basic system logon. The 2FA feature requires personnel to enter an additional passcode after entering the system login password. So, even if an unauthorized person knows your system credentials, the 2FA feature secures a system against unauthorized logons.<br>
|}
With the 2FA feature enabled, the system will be protected with basic system login and eScan 2FA. After entering the system credentials, eScan Authentication screen (as shown below) will appear. The personnel will have to enter the 2FA passcode to access the system. A maximum of three attempts are allowed to enter the correct passcode. If the 2FA login fails, the personnel will have to wait for 30 seconds to log in again.</p>
|width="1000pt" style="width:11%; font-size:95%;" white-space:nowrap;|
<p style='font-size:11.0pt;font-family:"Open Sans"'>To enable the Two-Factor Authentication feature, follow the steps given below:</p>
&nbsp;<B>General</B>
<li style='font-size:11.0pt;font-family:"Open Sans"'>In the eScan web console, go to Managed Computers. </li>
* [[Main Page|<font color="blue">Home</font>]]
<li style='font-size:11.0pt;font-family:"Open Sans"'>Click on Policy Templates > New Template.</li><br>
* [[Marketing|<font color="blue">Marketing</font>]]
<table class="MsoNormalTable" style="width: 502.1pt; background: #DBE5F1; border-collapse: collapse; border: none;" border="1" width="616" cellspacing="0" cellpadding="0">
* [[Events|<font color="blue">Events</font>]]
<tr>
* [[Marketing/Advertisement|<font color="blue">Advertisement</font>]]
<td style="width: 39.9pt; border: solid windowtext 1.0pt; padding: 0in 5.4pt 0in 5.4pt;" width="53">
|width="1000pt" style="width:11%; font-size:95%; white-space:nowrap;" |
<p style="font-size: 11.0pt; font-family: 'Open Sans';"><strong>NOTE</strong></p></td>
&nbsp;<B><p>&nbsp;&nbsp;Knowledgebase</p></B>
<td style="width: 422.2pt; border: solid windowtext 1.0pt; border-left: none; padding: 0in 5.4pt 0in 5.4pt;" valign="top" width="563">
* [[Technical Info|<font color="blue">Technical Information</font>]]
<p style="font-size: 11.0pt; font-family: 'Open Sans';">You can enable the 2FA feature for existing Policy Templates by selecting a Policy Template and clicking Properties. Then, follow the steps given below.</p></td></tr></table><br>
* [[Beta Testing|<font color="blue">Beta Testing</font>]]
<li style='font-size:11.0pt;font-family:"Open Sans"'>Select Administrator Password check box and then click on Edit.</li>
* [[Release Candidate|<font color="blue">Release Candidate</font>]]
<li style='font-size:11.0pt;font-family:"Open Sans"'>Click on Two-Factor Authentication tab.<br>Following window appears.</li>
* [[User Guide|<font color="blue">User Guides</font>]]
<li style='font-size:11.0pt;font-family:"Open Sans"'>Select the check box Enable Two-Factor Authentication.<br>The Two-Factor Authentication feature gets enabled.</li><br>
* [[Escan/english/Technologies|<font color="blue">Technologies</font>]]
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Login Scenarios</b> <br>The 2FA feature can be used for following all login scenarios: </p>
|width="1000pt" style="width:11%; font-size:95%;white-space:nowrap;" |
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>RDP</b> <br>RDP stands for Remote Desktop Protocol. Whenever someone takes remote connection of a client's system, the personnel will have to enter system login credentials and 2FA passcode to access the system. </p>
&nbsp;<B><p>&nbsp;&nbsp;Support</p></B>
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Safe Mode</b> <br> After a system is booted in Safe Mode, the personnel will have to enter system login credentials and 2FA passcode to access the system.</p>
* [[EMail|<font color="blue">eMail</font>]]
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Local Logon</b> <br> Whenever a system is powered on or restarted, the personnel will have to enter system login credentials and 2FA passcode to access the system.</p>
* [[Online Chat|<font color="blue">Online Chat</font>]]
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Unlock</b> <br> Whenever a system is unlocked, the personnel will have to enter login credentials and 2FA passcode to access the system.</p>
* [[Telephonic Support|<font color="blue">Telephone</font>]]
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Password Types</b> <br> If the policy is applied to a group, the 2FA passcode will be same for all group members. <br>
* [[Remote Support|<font color="blue">Remote Support</font>]]
The 2FA passcode can also be set for specific computer(s).<br>
* [[Forums|<font color="blue">Forums</font>]]
You can use following all password types to log in:</p>
|}
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Use eScan Administrator Password</b> <br>You can use the existing eScan Administrator password for 2FA login. This password can be set in eScan Password tab besides the Two-Factor Authentication tab. </p>
{| class="wikitable" border="0"
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Use Other Password</b> <br> You can set a new password which can be combination of uppercase, lowercase, numbers, and special characters.</p>
|}
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Use Online Two-Factor Authentication</b> <br>This option can be enabled for all users or for particular user according to the requirement. </p>
 
<table class="MsoNormalTable" style="width: 502.1pt; background: #DBE5F1; border-collapse: collapse; border: none;" border="1" width="616" cellspacing="0" cellpadding="0">
{| id="mp-topbanner" style="width:100%; background:#fcfcfc; margin-top:1.2em; border:1px solid #ccc;"
<tr>
| style="width:10%; color:#000;" |
<td style="width: 39.9pt; border: solid windowtext 1.0pt; padding: 0in 5.4pt 0in 5.4pt;" width="53">
{| style="width:100px; border:none; background:none;"
<p style="font-size: 11.0pt; font-family: 'Open Sans';"><strong>NOTE</strong></p></td>
| [[Image:escan-g.jpg]]
<td style="width: 422.2pt; border: solid windowtext 1.0pt; border-left: none; padding: 0in 5.4pt 0in 5.4pt;" valign="top" width="563">
|}
<p style="font-size: 11.0pt; font-family: 'Open Sans';">Users can be added via Settings > Two-Factor Authentication > Users for 2FA option.</p></td></tr></table><br>
|style="text-align:left;"|&nbsp;&nbsp;'''·''' [[Online Guide - Escan for Linux Desktop|<font size=1.5 color="blue">FAQ</font>]]&nbsp;&nbsp;
<p style='font-size:11.0pt;font-family:"Open Sans"'>To use this feature, follow the steps given below:</p>
|style="text-align:right;"|&nbsp;&nbsp;'''·''' [[Technical Info|<font size=1.5 color="blue">Technical Information - Main Page</font>]]
<ol>
|}
<li style='font-size:11.0pt;font-family:"Open Sans"'>Install the Authenticator app from Play Store for Android devices or App Store for iOS devices.</li>
 
<li style='font-size:11.0pt;font-family:"Open Sans"'>Open the Authenticator app and tap Scan a barcode.</li>
{| class="wikitable" border="0"  
<li style='font-size:11.0pt;font-family:"Open Sans"'>Select the check box Use Online Two-Factor Authentication.</li>
|}
<li style='font-size:11.0pt;font-family:"Open Sans"'>Go to Managed Computers and below the top right corner, click on code for 2FA.<br>A QR code appears.</li>
{| id="mp-topbanner" style="width:100%; background:#fcfcfc; margin-top:1.2em; border:1px solid #ccc;"
<li style='font-size:11.0pt;font-family:"Open Sans"'>Scan the onscreen QR code via the Authenticator app.<br>
|style="text-align:left;"|<font size=3>'''eScan for Linux Desktops'''</font>
A Time-based One-Time Password (TOTP) appears on smart device.</li>
| style="width:10%; color:#000;" |
<li style='font-size:11.0pt;font-family:"Open Sans"'>Forward this TOTP to personnel for login.</li></ol>
{| style="width:100px; border:none; background:none;"
<h4 style='color:#007FFF;font-size:18.0pt;font-family:"Open Sans"'><b>Advanced Setting</b></h4>  
| [[Image:EScanLinux.jpg|right]]
<p style='font-size:11.0pt;font-family:"Open Sans"'>Clicking Advanced Setting displays Advance setting.</p>
|}
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Enable Automatic Download (1 = Enable/0 = Disable)</b> <br> It lets you Enable/Disable Automatic download of Antivirus signature updates.</p>
|}
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Enable Manual Download (1 = Enable/0 = Disable)</b> <br>It lets you Enable/Disable Manual download of Antivirus signature updates </p>
<!--__NOTOC__-->
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Enable Alternate Download (1 = Enable/0 = Disable)</b> <br>It lets you Enable/Disable download of signatures from eScan (Internet) if eScan Server is not reachable. </p>
 
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Set Alternate Download Interval (In Hours)</b> <br>It lets you define time interval to check for updates from eScan (Internet) and download it on managed computers. </p>
 
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Disable download from Internet for Update Agents (1 = Enable/0 = Disable)</b> <br>Selecting this option lets you disable Update Agents from downloading the virus signature from internet. </p>
==<B>Required Packages</B>==
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Stop Auto change for download from Internet for Update Agents (1 = Enable/0 = Disable)</b> <br> This option is used when an Update Agent didn't find the primary server to download virus signature, then it tries to get virus signature from internet, so to stop Update Agent from downloading from internet this option is to be set to 1(one).</p>
 
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>Enable Download of Anti-Spam update first on clients (1 = Enable/0 = Disable)</b> <br>Normally while updating a system for virus signatures, we first download the anti-virus signature and then anti-spam signature. This option lets you first download Anti-spam updates on clients. </p>
<B>RPM Package Name                      File name</B>
<p style='font-size:11.0pt;font-family:"Open Sans"'><b>No password for pause protection</b> <br>Selecting this option lets you pause the eScan protection without entering password. </p>
    mwadmin                mwadmin-x.x-x.<linux distro><release>.i386.rpm
    mwav                    mwav-x.x-x.<linux distro><release>.i386.rpm
    escan                  escan-x.x-x.<linux distro><linux release>.i386.rpm
 
 
<B>Debian Package Name                    File name</B>
    mwadmin                mwadmin-x.x-x.<linux distro><release>.i386.deb
    mwav                    mwav-x.x-x.<linux distro><release>.i386.deb
    escan                  escan-x.x-x.<linux distro><linux release>.i386.deb
 
----
----
 
 
 
 
==<B>Installation</B>==
 
 
<B>NOTE:<U>The packages should be installed as per the order given below. Installation should be done using a Terminal to run the command line parameters</U></B>
 
 
<B>Command Line Installation:</B>
 
 
<B>For RPM Packages:</B>
 
# rpm -ivh mwadmin-x.x-x.<linux distro><release>.i386.rpm
# rpm -ivh mwav-x.x-x.<linux distro><release>.i386.rpm
# rpm -ivh escan-x.x-x.<linux distro><linux release>.i386.rpm
 
 
<B>For Debian packages:</B>
 
# dpkg -i mwadmin-x.x-x.<linux distro><release>.i386.deb
# dpkg -i mwav-x.x-x.<linux distro><release>.i386.deb
# dpkg -i escan-x.x-x.<linux distro><linux release>.i386.deb
 
----
----
 
 
 
 
==<B>FAQ's</B>==
 
 
===General===
 
<B>1. What is eScan for Linux Desktop?</B>
 
<B>A.</B> MicroWorld's eScan for Linux Desktop is an Ant-Virus Solution for GNU/Linux Desktops. It scans and protects the system for viruses or threats.
 
----
 
<B>2. What are the features in eScan for Linux Desktop?</B>
 
<B>A.</B> eScan for Linux Desktops has:
:* On-Demand Virus Scanning,
:* Automatic download of Virus signatures,
:* Easy and convenient administratiton - Web-browser based administration as well with Graphical User Interface (GUI)
:* Scanning features with Heuristic scanning,  Cross File Systems and Symbolic Links scanning,
:* Scheduling Scanning jobs
:* Provides extensive Logs for analysis.
 
----
 
<B>3. For which GNU/Linux distribution is eScan for Linux Desktop available?</B>
 
<B>A.</B> eScan for Linux Desktop is available for following Linux distribution
:*Debian 5.0.3
:*Fedora Core 3
:*Fedora Core 6
:*Fedora 8
:*Fedora 9
:*RHEL 4
:*RHEL 5
:*Slackware 12.2
:*Suse 10
:*Ubuntu 8.10
:*Ubuntu 9.10
 
New or updated packages for various GNU/Linux distributions are always added in the official web-site www.escanav.com as well as in the eScan Wiki site. To check the latest available packages for your linux distro <span class="plainlinks neverexpand">[http://download1.mwti.net/wiki/index.php/Escan_for_Linux_Desktop <B>click here</B>]</span>.
 
If you do not find your package, please write to [mailto:linux@escanav.com <font color="blue">linux@escanav.com</font>] as per your requirement with the below details
:* eScan product name,
:* linux distribution and release version,
:* the linux kernel version and
:* 32 bit or 64 bit OS.
 
----
 
<B>4. What is a Cross File Systems?</B>
 
<B>A.</B> In Linux, you have different file systems mounted on partions. eScan can scan files in Cross file systems means checking files on different partitions and/or network mounted file systems.
 
----
 
<B>5. What is the difference between the Evaluation version of eScan software and fully licensed software?</B>
 
<B>A.</B> The evaluation version and licensed version of eScan are identical in feature and functionality wise. While in evaluation version of eScan, it will function for a limited period i.e. for 30-days after which the license key for eScan has to be purchased.
 
----
 
<B>6. How can I check the dependencies required for MicroWorld's products?</B>
 
<B>A.</B> To check the dependencies before installing the packages
 
<B>command for RPM Package</B>
# rpm -qpR <package>
 
<B>command for Debian Package</B>
# dpkg --info <package>
 
----
 
<B>7. How can I check the version of the eScan packages installed?</B>
 
<B>A.</B> To check the version of the installed eScan packages
 
 
<B>command for RPM Package</B><br/>
# rpm -qi <package-name>
Display  package  information,  including  name,  version,  and description.<br/>
<B>OR</B><br/>
* rpm -qa <package-name>
Report status of specified package.<br/>
<B>Example:</B>  
rpm -qa mwadmin
rpm -qa mwav
rpm -qa escan<br/>
<B>OR</B><br/>
<B>Example:</B>  
rpm -qi mwadmin
rpm -qi mwav
rpm -qi escan
 
<B>command for Debian Package</B><br/>
# dpkg -l <package-name>
List packages matching given pattern<br/>
<B>OR</B><br/>
# dpkg -s <package-name>
Report status of specified package.<br/>
<B>Example:</B>
dpkg -l mwadmin
dpkg -l mwav
dpkg -l escan<br/>
<B>OR</B><br/>
<B>Example:</B>
dpkg -s mwadmin
dpkg -s mwav
dpkg -s escan
 
----
 
===Settings===
 
<B>1. Can On-Demand Scanning be executed manually from the SSH terminal in eScan for Linux Desktop?</B>
 
<B>A.</B> Yes. On-Demand Scanning can be executed manually as well as schedule scanning job from the SSH terminal in eScan for Linux Desktop. For more information on Command Line parameters for eScan On-Demand scanning [[Command Line Parameters|<B>click here</B>]].
 
 
----
----
 
 
 
 
==<B>References</B>==
 
*<B> <span class="plainlinks neverexpand">[http://download1.mwti.net/download/wikifiles/linux/doc/User_Guide_for_eScan_for_Linux_Desktop.pdf <font color=blue>'''User Guide'''</font>] </span><br/></B>
 
 
----

Latest revision as of 10:55, 1 December 2021

Administrator Password

Administrator Password lets you create and change password for administrative login of eScan protection center and Two-Factor Authentication.

eScan Password

It also lets you keep the password as blank, wherein you can login to eScan protection center without entering any password for read-only access.
There is also an option to set a uninstall password. An uninstallation password prevents personnel from uninstalling eScan client from their endpoint. Upon selecting Uninstall option, eScan asks them for uninstall password. To set an uninstall password, select check box Use separate uninstall password.

Two-Factor Authentication

Your default system authentication (login/password) is Single-Factor Authentication which is considered insecure as it may put your organization's data at high risk of compromise. The Two-Factor Authentication, also more commonly known as 2FA, adds an extra layer of protection to your basic system logon. The 2FA feature requires personnel to enter an additional passcode after entering the system login password. So, even if an unauthorized person knows your system credentials, the 2FA feature secures a system against unauthorized logons.
With the 2FA feature enabled, the system will be protected with basic system login and eScan 2FA. After entering the system credentials, eScan Authentication screen (as shown below) will appear. The personnel will have to enter the 2FA passcode to access the system. A maximum of three attempts are allowed to enter the correct passcode. If the 2FA login fails, the personnel will have to wait for 30 seconds to log in again.

To enable the Two-Factor Authentication feature, follow the steps given below:

  • In the eScan web console, go to Managed Computers.
  • Click on Policy Templates > New Template.


    • NOTE

    You can enable the 2FA feature for existing Policy Templates by selecting a Policy Template and clicking Properties. Then, follow the steps given below.


  • Select Administrator Password check box and then click on Edit.
  • Click on Two-Factor Authentication tab.
    Following window appears.
  • Select the check box Enable Two-Factor Authentication.
    The Two-Factor Authentication feature gets enabled.


    • Login Scenarios
    The 2FA feature can be used for following all login scenarios:

    RDP
    RDP stands for Remote Desktop Protocol. Whenever someone takes remote connection of a client's system, the personnel will have to enter system login credentials and 2FA passcode to access the system.

    Safe Mode
    After a system is booted in Safe Mode, the personnel will have to enter system login credentials and 2FA passcode to access the system.

    Local Logon
    Whenever a system is powered on or restarted, the personnel will have to enter system login credentials and 2FA passcode to access the system.

    Unlock
    Whenever a system is unlocked, the personnel will have to enter login credentials and 2FA passcode to access the system.

    Password Types
    If the policy is applied to a group, the 2FA passcode will be same for all group members.
    The 2FA passcode can also be set for specific computer(s).
    You can use following all password types to log in:

    Use eScan Administrator Password
    You can use the existing eScan Administrator password for 2FA login. This password can be set in eScan Password tab besides the Two-Factor Authentication tab.

    Use Other Password
    You can set a new password which can be combination of uppercase, lowercase, numbers, and special characters.

    Use Online Two-Factor Authentication
    This option can be enabled for all users or for particular user according to the requirement.

    NOTE

    Users can be added via Settings > Two-Factor Authentication > Users for 2FA option.


    To use this feature, follow the steps given below:

    1. Install the Authenticator app from Play Store for Android devices or App Store for iOS devices.
    2. Open the Authenticator app and tap Scan a barcode.
    3. Select the check box Use Online Two-Factor Authentication.
    4. Go to Managed Computers and below the top right corner, click on code for 2FA.
      A QR code appears.
    5. Scan the onscreen QR code via the Authenticator app.
      A Time-based One-Time Password (TOTP) appears on smart device.
    6. Forward this TOTP to personnel for login.

    Advanced Setting

    Clicking Advanced Setting displays Advance setting.

    Enable Automatic Download (1 = Enable/0 = Disable)
    It lets you Enable/Disable Automatic download of Antivirus signature updates.

    Enable Manual Download (1 = Enable/0 = Disable)
    It lets you Enable/Disable Manual download of Antivirus signature updates

    Enable Alternate Download (1 = Enable/0 = Disable)
    It lets you Enable/Disable download of signatures from eScan (Internet) if eScan Server is not reachable.

    Set Alternate Download Interval (In Hours)
    It lets you define time interval to check for updates from eScan (Internet) and download it on managed computers.

    Disable download from Internet for Update Agents (1 = Enable/0 = Disable)
    Selecting this option lets you disable Update Agents from downloading the virus signature from internet.

    Stop Auto change for download from Internet for Update Agents (1 = Enable/0 = Disable)
    This option is used when an Update Agent didn't find the primary server to download virus signature, then it tries to get virus signature from internet, so to stop Update Agent from downloading from internet this option is to be set to 1(one).

    Enable Download of Anti-Spam update first on clients (1 = Enable/0 = Disable)
    Normally while updating a system for virus signatures, we first download the anti-virus signature and then anti-spam signature. This option lets you first download Anti-spam updates on clients.

    No password for pause protection
    Selecting this option lets you pause the eScan protection without entering password.

    Retrieved from "https://wiki.escanav.com/index.php?title=Online_Guide_-_Escan_for_Linux_Desktop&oldid=22377"