Can it be made possible to make an extra maintenance-module in GFI MAX RM, the agent?. During these hours, the machine where it runs on, could have high CPU/Disk/mem usage, etc and thus create unwanted alerts that might set a chain of events in action, you don't want. Also if you have more than 25 different customers with different schedules, it is difficult to keep track. If you know it on site, set the schedule (or ...more »
Need the ability to better control vulnerability scans, specific the ability to select what should be classified as a vulnerability on client basis - Examples: Shutdown enable for all users on workstations. Find it hard to believe that is considered a vulnerability – users need to be able to shutdown PCs. Admin Shares are required and need to be inplace – part of Windows default install enable these.
Emailed Notices such as Patch Failures, etc AND canned Reports (such as Critical Events, Automated Tasks, Antivirus Threat Report, Antivirus Quarantined Report, Asset Tracking Client Inventory Report) often list SITE and DEVICE Name BUT they do not print the "DESCRIPTION" next to the workstation/device name on the report or Alert (even though there is space to do so). There is no reason not to include the Description ...more »
You can currently only set one email address for alerts to be sent to by customer. This is great for sending customer alerts to different people. But what if I want to send workstation alerts to one email address and server alerts to another? Say server alerts go to a NOC, and workstation alerts go to a helpdesk email? Can't do it. Why not? Let's do it!
Good idea to recover passwords but you should have allowed us to brand the email address as you do with the alerts. So instead of firstname.lastname@example.org the recovery password should come from email@example.com (insert partner domain here) with our own customized text.
Allow the ability to not monitor a service between the hours specified. For example, I might not want to monitor network connectivity during backup window because the connection is getting hit hard.
hi, I had a think on that Ahsay support and I saw a thread on a forum that’s been dead little while and I just wonder if its 100% correct. http://ideas.gfi.com/a/dtd/Support-for-AHSAY-Online-Backup/27469-4178 Now ahsay does write a log to the local Server in the user profile path and folder .OBM (hidden folder). It’s a simple text file but it there is a folder for every backup set with a time-stamped logfile on each ...more »
Alerts when checks are back to normal.
A web check reports a website is down and sends an alert. The website later comes online and a second alert would be sent out to report that the check has returned to normal.
Just spent 3 days recovering from damage of CryptoWall Ransomware, need to be able to first of all do a better job of blocking, second be able to easily receive alerts when certain files are created such as Decrypt*.html files in directories, install_tor.url shortcuts, etc. I would like to be able to be alerted by Web Protection if a certain machine hits a certain number of blocked attempts in one day or when a process ...more »
It would be valuable to have 3 statuses for checks rather than 2.
GREEN ALERT - all is well
YELLOW ALERT - informational alert
Failed Login check shows 9 login attempts
MAV finds cookies
RED ALERT - severe alert
Failed Login check shows 6k login attempts
MAV finds Trojan
We have had a few workstations where a component has failed to deploy. This could be MAV or patch management. The only place that this is reported is on the summary of the device where it says installation failed. We need this to be included in proper alerting with the device being marked as a problem device and email alerts about it. It would also be nice to extend this so that we can set it to notify us when ...more »
Today I must have had 10+ alerts saying:
The test Managed Antivirus Check failed.
Additional information : No communication from Managed Antivirus Agent
This needs to be fixed, if the gfi agent only checks in every 5\15min then it makes no sense for the MAV communication to check and alert at a higher frequency than this.
All alerts received were false positives from sites and servers operating as expected.