Skip to main content

Solution - Webroot Deployment and Audit EDF

Purpose

This solution is intended for partners where the Webroot plugin is broken, which is currently a known issue. It aims to deploy Webroot and audit the keycode status.

Associated Content

Auditing Content

ContentTypeFunction
Script - Webroot Keycode Verification [DV, EDF]ScriptThis script collects the machine's Webroot hashed keycode and matches it with the keycode set up in the client EDF "Webroot Site Keycode." The results can be reviewed using the DV. This also creates a ticket for the Webroot keycode mismatch or during a missing case when it is mapped with the monitor SEC - Endpoint Protection - Monitor - Wrong Webroot KeyCode Detected [EDF], where the ticket category is set.
Internal Monitor - Execute Script - Webroot Keycode Verification [EDF]MonitorThis monitor checks the online agent to see if the script EPM - Data Collection - Script - Webroot Keycode Verification [EDF] has not run in the last 30 days and if the agent has Webroot installed with deployment enabled.
Dataview - Webroot KeyCode Audit [Script]DataviewThis dataview displays the Webroot hashed keycode present on the machine, the status of the keycode, and whether it matches the keycode set up under the Webroot plugin.
△ CUSTOM - Execute Script - Webroot Keycode Verification - EDFAlert TemplateThis alert template is used with the monitor SEC - Endpoint Protection - Monitor - Wrong Webroot KeyCode Detected [EDF] to run the script EPM - Data Collection - Script - Webroot Keycode Verification [EDF] as an autofix.

Automation Content

ContentTypeFunction
Install Webroot SecureAnywhere [EDF]ScriptThis script deploys Webroot to the agents using the "Webroot site keycode" client EDF.
Internal Monitor - Webroot Deployment [EDF]MonitorThis monitor checks the online agent where the client EDF "Enable Webroot Deployment" is checked, the "Exclude Webroot Deployment" location/computer EDF is set to false, and the agent is missing Webroot. It then runs the script Install Webroot SecureAnywhere [EDF].
△ Custom - Execute Script - Install WebrootAlert TemplateThis alert template is used with the monitor SEC - Endpoint Protection - Monitor - Webroot Deployment [EDF] to run the script Install Webroot SecureAnywhere [EDF] as an autofix.

Other Content

ContentTypeFunction
Webroot Site KeyCodeDocumentThis document provides steps on how to obtain the Webroot site keycode.
Webroot GroupCode and GroupName FetchingDocumentThis document outlines the steps to retrieve the Webroot GroupCode and GroupName.
Copy Webroot Plugin Data to EDFScriptThis client script updates the client EDFs value from the Webroot plugin only when AutoDeploy is enabled in the plugin table plugin_webroot3_clients or plugin_webroot_sa_cls_basic, based on the Webroot version.

Implementation

  1. Import the following scripts using the ProSync plugin:

    If you would like to copy license keys and deployment information from the plugin to the EDFs:

  2. Import the following Internal Monitors using the ProSync plugin:

  3. Import the following dataview using the ProSync plugin:

  4. Import the following Alert Templates using the ProSync plugin:

    • △ Custom - Execute Script - Install Webroot
    • △ Custom - Execute Script - Webroot Keycode Verification - EDF

  5. Reload the System Cache Reload System Cache

  6. Configure the solution as follows:

    Note: Please read the complete EDF detailing in the script before implementing the solution: Install Webroot SecureAnywhere [EDF]. Additionally, follow the Other Content sections (Webroot Site KeyCode and Webroot GroupCode and GroupName Fetching) for steps on how to obtain the Site keycode and Group Code from the Webroot Portal.