Remote Installation of Dr.Web Agent under Windows® OS

 Top  Previous  Next

Dr.Web Enterprise Security Suite anti-virus allows to detect the computers which are not yet protected by Dr.Web Enterprise Security Suite, and in certain cases to install such protection remotely.

Remote installation is available in the following two variants:

Via the Control Center.

Via the Active Directory service, if the service is used in the LAN.

Remote installation of Dr.Web Agents is possible only on workstations operated by Windows OS (see the Appendix document, p. Appendix A. The Complete List of Supported OS Versions) except Starter and Home editions.

 

Remote installation of Dr.Web Agents is possible only from the Control Center opened under Windows OS (see the Appendix document, p. Appendix A. The Complete List of Supported OS Versions).

 

To install the anti-virus software on workstations, you must have administrator rights on the correspondent computers.

For remote installation via the Control Center, if the workstations are inside a domain and the domain administrative account is used for the installation, you must turn on file and printer sharing on workstations (how to find this option for different Windows OS versions, see in the table below).

If the remote stations are outside a domain, or if the local account is used during the installation, then for some of Windows OS, the extra configuration of the remote stations is required.

Extra Configuration for Remote Installation to a Station outside a Domain or Using the Local Account

Specified options can reduce remote station security. It is strongly recommended to examine functions of these options before editing the system settings or do not use remote installation and install the Agent manually.

 

After you configure remote workstation, it is recommended to return all changed settings into values before editing to not violate the basic policy of operating system security.

To install the Agent to a remote workstation outside a domain, or/and using the local account, do the following on the computer where you want to install the Agent:

Operating System

Configuration

Windows XP

Setup the mode of access to shared files

Modern view:

Start → Settings → Control Panel → Appearance and Themes → Folder Properties → the View tab → clear the Use Simple Sharing (recommended) flag.

Classical view:

Start → Settings → Control Panel → Folder Properties → the View tab → clear the Use Simple Sharing (recommended) flag.

Set the mode of network authentication model in the local policies

Modern view:

Start → Settings → Control Panel → Performance and Maintenance → Administrative Tools → Local Security Policy → Security Settings → Local Policies → Security Options → Network Access: Sharing and security model → Classic - local users authenticate as themselves.

Classical view:

Start → Settings → Control Panel → Administrative Tools → Local Security Policy → Security Settings → Local Policies → Security Settings → Network Access: Sharing and security model → Classic - local users authenticate as themselves.

Disable the Windows Firewall on the station before remote installation.

Windows Server 2003

Disable the Windows Firewall on the station before remote installation.

Windows Vista

Windows Server 2008

Enable the File sharing option

Modern view:

Start → Settings → Control Panel → Network and Internet → Network and Sharing Center → Sharing and discovery → File Sharing → Enable.

Classical view:

Start → Settings → Control Panel → Network and Sharing Center → Sharing and discovery → File Sharing → Enable.

Set the mode of network authentication model in the local policies

Modern view:

Start → Settings → Control Panel →  System and Maintenance → Administrative Tools → Local Security Policy → Security Settings → Local Policies → Security Options → Network Access: Sharing and security model → Classic - local users authenticate as themselves.

Classical view:

Start → Control Panel → Administrative Tools → Local Security Policy → Security Settings → Local Policies → Security Settings → Network Access: Sharing and security model → Classic - local users authenticate as themselves.

Add the LocalAccountTokenFilterPolicy key:

a)In the register editor, open the HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System branch. If the LocalAccountTokenFilterPolicy record does not exist, in the Edit menu, select Add and specify the DWORD value. Enter the LocalAccountTokenFilterPolicy value and press ENTER.

b)In the LocalAccountTokenFilterPolicy item context menu, select Change.

c)In the Value field, set the 1 value and click OK.

Reboot is not required.

Windows 7

Windows Server 2008 R2

Turn on file and printer sharing

Modern view:

Start → Control Panel → Network and Internet → Network and Sharing Center → Change advanced sharing settings → File and Printer Sharing → Turn on file and printer sharing.

Classical view:

Start → Control Panel → Network and Sharing Center → Change advanced sharing settings → File and Printer Sharing → Turn on file and printer sharing.

Set the mode of network authentication model in the local policies

Modern view:

Start → Control Panel →  System and Security → Administrative Tools → Local Security Policy → Security Settings → Local Policies → Security Options → Network Access: Sharing and security model → Classic - local users authenticate as themselves.

Classical view:

Start → Control Panel → Administrative Tools → Local Security Policy → Security Settings → Local Policies → Security Settings → Network Access: Sharing and security model → Classic - local users authenticate as themselves.

Add the LocalAccountTokenFilterPolicy key:

a)In the register editor, open the HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System branch. If the LocalAccountTokenFilterPolicy record does not exist, in the Edit menu, select Add and specify the DWORD value. Enter the LocalAccountTokenFilterPolicy value and press ENTER.

b)In the LocalAccountTokenFilterPolicy item context menu, select Change.

c)In the Value field, set the 1 value and click OK.

Reboot is not required.

Windows 8

Windows 8.1

Windows Server 2012

Windows Server 2012 R2

Windows 10

Turn on file and printer sharing

Modern view:

Settings → Control Panel → Network and Internet → Network and Sharing Center → Change advanced sharing settings → File and Printer Sharing → Turn on file and printer sharing.

Classical view:

Settings → Control Panel → Network and Sharing Center → Change advanced sharing settings → File and Printer Sharing → Turn on file and printer sharing.

Set the mode of network authentication model in the local policies

Modern view:

Settings → Control Panel → System and Security → Administrative Tools → Local Security Policy → Security Settings → Local Policies → Security Options → Network Access: Sharing and security model → Classic - local users authenticate as themselves.

Classical view:

Settings → Control Panel → Administrative Tools → Local Security Policy → Security Settings → Local Policies → Security Options → Network Access: Sharing and security model → Classic - local users authenticate as themselves.

Add the LocalAccountTokenFilterPolicy key:

a)In the register editor, open the HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System branch. If the LocalAccountTokenFilterPolicy record does not exist, in the Edit menu, select Add and specify the DWORD value. Enter the LocalAccountTokenFilterPolicy value and press ENTER.

b)In the LocalAccountTokenFilterPolicy item context menu, select Change.

c)In the Value field, set the 1 value and click OK.

Reboot is not required.

If user account at the remote computer has the empty password, set the access policy with empty password in local policies: Control Panel →  Administrative Tools →  Local Security Policy → Security Settings → Local Policies → Security Options → Accounts: Limit local account use of blank passwords to console logon only → Disabled.

It is necessary to share the location of the Agent Installer file drwinst.exe and the public encryption key drwcsd.pub on the network.