Hello Chris

For troubleshooting purpose or it happened got stuck some processes and neeeded reboot machine but when is a server not nice

Br

Which version of endpoint client are you currently using and where from / how long ago did you obtain passdialog ?

Version 87.00 and got from support but don't work so try see if other way to stop services

@jcortez Are you aware of any issues with passdialog and E87.x?

@Chris_Atkinson 

There would be an issue if the older PassDialog.exe tool was being used. I order to use the correct version of PassDialog.exe, you would need to trigger the uninstall of our client and then cancel out the uninstall once you get the password prompt.

You would then need to navigate to C:\Users\<your user name>\AppData\Local\Temp\ and then search for PassDialog.exe. For example, this is where mine was created:

C:\Users\jcortez\AppData\Local\Temp\{30921FC7-785C-4B11-9390-840B403E39DA}\

We no longer provide the PassDialog.exe and Hash.exe tools from support since R&D made it available when triggering the endpoint client uninstall. If a PassDialog.exe tool was provided to the customer, it will not work. Each is version specific AFAIK.

Nothing from portal neither from endpoint dashboard 

Are you managing this with cloud portal or on prem endpoint server?

Andy

on premises...

Hey @Bac26 , just curious, were you able to sort this out?

Hope you contacted TAC if you haven't already.

Cheers mate.

Andy

no they closed my ticket because after reboot the services restarted, but this is not the way

You mean reboot of that particular endpoint?

exactly

K, so sounds like specific process was stuck. Not sure if there is anything TAC could give you after the fact...

i just need a procedure to stop single process without rebooting in this case a server.

The only 2 logical ways I can think of would be either via task manager on the PC itself or via endpoint dashboard, but maybe someone else can confirm for you.

both already checked not possible..

Hi @Bac26.

Do you have any solution?
I have the same problem.
Regards.

You can use Push Op -- > Agent Settings --> Kill process 

There is an option to disable capabilities on a client. This can be set from the Client Settings Policy. This was also enhanced in client release E88.30 to add "Password Protection" and a "Timeout"; an interval after which the capabilities are restored. These additional configuration items are available in cloud management. I am not sure whether these additional settings are available on premise

When capabilities are "disabled" I am not sure what happens under the covers and whether the relevant processes are stopped - I will try and check/ In any case may be worth trying

I also refer to the "Harmony Endpoint Packing a Punch Webinar" 

https://community.checkpoint.com/t5/Endpoint/Harmony-Endpoint-Packing-a-Punch-Video-Slides-and-Q-amp...

where some of these capabilities were discussed

Hi @JonnyRabinowitz ,

One of my customer's has recently received an alert for the anti-ransomware blade error, is there a way to restart only the service that is taking care of the anti-ransomware function because rebooting the server is not an option for us.

Is anything possible with the Passdiag.exe that comes with the agent package?

Thanks in advance!
=====

WR,

FH