Category Archives: Avast! AV

Avast! Small Office Administration / End Point Protection Suite and real-time alerts and notifications

Leave a reply

The Avast! Small Office Administration console provides a rich set of reporting options which can be generated automagically at designated time and days.  This is a nice tool for reviewing your network infrastructure… but what if you want to know about infections *right now*?

 

Fear not!  immediate notifications and alerts are supported.  The configuration, however, is somewhat hidden.

Setting up real-time alerts

  1. Open Avast! Small Office Administration console via your favorite web browser
  2. Open Network in Group View
    image
  3. Select the group you want to activate real-time notifications and alerts on
  4. Click Edit Group Settings
    image
  5. Click Expert Settings at the bottom of the available options list (left side of the Edit dialog)
  6. Click the I’ll take the risk, show the expert settings button
  7. Find and modify the following settings:

Property Path Value
avastcfg://avast5/Common/NetAlert E-Mail address to receive the alerts
avastcfg://avast5/Communications/SMTPAuth set to 1 if your SMTP server requires authentication
avastcfg://avast5/Communications/SMTPFrom The From: e-mail address.
Something like “donotreply@yourdomain”
avastcfg://avast5/Communications/SMTPPort Usually 25, but configure as needed
avastcfg://avast5/Communications/SMTPServer The UNC or IP of your SMTP server
avastcfg://avast5/Communications/SMTPUserName Username. Must set SMTPAuth to 1
avastcfg://avast5/Communications/SMTPPassword Password. Must set SMTPAuth to 1

Avast! Business Protection Plus: Administration console will not open in browser.

Leave a reply

Here at AIS, we just completed a test install of Avast’s new “for business” centrally managed Anti-virus software (see this link for full details).  The installation went smoothly until we attempted to launch the Silverlight based administration console.  We expected to be greeted by a nice, new, shiny console with all the bells and whistles.  What we got was…. nothing.

Our Environment

  • Windows server 2008 R2
  • Avast! Business Protection Plus (version 1.1.6164)
  • Standard install of Avast! Business Protection Plus
    (All defaults accepted except the SQL Server default.  We already had a SQL instance prepared and ready to go)
  • Test client running Windows 7

Symptoms

Using a default install, the administration console should be available at the following URL

http://ServerUNCGoesHere/Avast/

In theory, this link will redirect you to the Avast! administration console on port 8732 using ssl.  We attempt to launch the administration console from our Windows 7 PC using IE9.  After 1 – 2 minutes, we received an error simple stating

Internet explorer cannot display the webpage

Helpful….

Root Cause
It didn’t take us long to figure out we had a firewall issue.  Port 8732 was nonresponsive to traffic.  A quick look at the firewall settings demonstrated the Avast! installer had modified the firewall rules.  Two new rules had been added, one rule each for UDP and TCP connections referencing the program
C:Program FilesAVAST SoftwareAdministration ConsoleAvast.Sbc.Server.exe

That should work…  but Windows Firewall was not in agreement.

We did not spend the time to figure out why the firewall association to the service level application was not working.  Our guess is Avast! is using some behind the scenes redirects which confuse the firewall.

Solution
We need to add port level firewall settings for Avast!

  1. Open Windows Firewall with Advanced Security on the server Avast! was installed on
  2. Highlight the Inbound Rules section
  3. From the menu select MENU: Action –> New Rule
    This will launch the new rule wizard
  4. Under Rule Type, select Port
    image
  5. Under Protocol and Ports, enter the specific ports 8731, 8732, and 25322
    NOTE: Your ports maybe different if you did not use the installation defaults
    image
  6. Under Action, select Allow the connection
    image
  7. Under profile, select the appropriate profile for you installation
    (In our environment, we selected “Domain” to reflection our network domain)
    image
  8. Under Name, give your rule a new name
    We recommend “avast! Administration Console (ports)” to prevent any confusion

 

That’s it!
We were now greeted with a nice, new, shiny console with all the bells and whistles.

Resetting passwords in Avast! ADNM Console

Passwords get lost.
It is a simple reality of the security conscious technology driven world we live in.  That and password complexity rules which make differential calculus look simple.

So, imagine our surprise when we lost forgot an administrator password to one of our Avast! Antivirus ADNM console installs.

Fortunately for us, there is a quick and painless solution.

Prerequisites
You must have read/write access to the avast database created when you setup your Avast! corporate editions.

How to change a password in Avast!

    1. Make sure the prerequisites are met
    2. Logon to the avast SQL database
    3. Execute the following query

SELECT *
FROM dbo.[User]

    1. Note the ObjectId for the user you wish to reset the password on
    2. Execute the following update query

UPDATE dbo.[User]
SET Password = ‘[Reset Password Goes Here]’
WHERE ObjectId = [ObjectId of User Goes Here]

  1. To re-encrypt the password, set the password via the ADNM console.

Much easier than reinstalling!