Installation Guide. McAfee Endpoint Security for Servers 5.0.0

Similar documents
Data Loss Prevention Discover 11.0

Installation Guide Revision B. McAfee Cloud Workload Security 5.0.0

McAfee Boot Attestation Service 3.5.0

McAfee Endpoint Security for Servers Product Guide. (McAfee epolicy Orchestrator)

Boot Attestation Service 3.0.0

Installation Guide. McAfee Web Gateway Cloud Service

Reference Guide Revision B. McAfee Cloud Workload Security 5.0.0

McAfee Endpoint Security for Servers Product Guide

McAfee Application Control Windows Installation Guide. (McAfee epolicy Orchestrator)

McAfee Content Security Reporter Installation Guide. (McAfee epolicy Orchestrator)

McAfee MOVE AntiVirus Installation Guide. (McAfee epolicy Orchestrator)

McAfee Data Protection for Cloud 1.0.1

McAfee Client Proxy Installation Guide

Product Guide Revision B. McAfee Cloud Workload Security 5.0.0

McAfee MVISION Endpoint 1811 Installation Guide

McAfee Rogue Database Detection For use with epolicy Orchestrator Software

McAfee MVISION Endpoint 1808 Installation Guide

McAfee Host Intrusion Prevention 8.0

McAfee Investigator Product Guide

McAfee Client Proxy Product Guide

McAfee Endpoint Security Migration Guide. (McAfee epolicy Orchestrator)

McAfee Content Security Reporter Release Notes. (McAfee epolicy Orchestrator)

McAfee Client Proxy Product Guide. (McAfee epolicy Orchestrator)

McAfee Content Security Reporter 2.6.x Migration Guide

Migration Guide. McAfee Content Security Reporter 2.4.0

McAfee Client Proxy Product Guide. (McAfee epolicy Orchestrator)

McAfee Cloud Workload Security Product Guide

McAfee Cloud Workload Security Suite Amazon Machine Image Installation Guide

Product Guide Revision A. McAfee Client Proxy 2.3.2

McAfee File and Removable Media Protection Installation Guide

McAfee MVISION Mobile Microsoft Intune Integration Guide

McAfee Management for Optimized Virtual Environments AntiVirus 4.5.0

McAfee Content Security Reporter 2.6.x Installation Guide

McAfee Endpoint Security Threat Prevention Installation Guide - macos

Product Guide. McAfee Endpoint Upgrade Assistant 1.5.0

Addendum. McAfee Virtual Advanced Threat Defense

Product Guide. McAfee Endpoint Upgrade Assistant 1.4.0

McAfee MVISION Mobile Silverback Integration Guide

McAfee Policy Auditor 6.2.2

McAfee Firewall Enterprise epolicy Orchestrator Extension

McAfee Endpoint Security

McAfee Agent Interface Reference Guide. (McAfee epolicy Orchestrator Cloud)

McAfee epolicy Orchestrator 5.9.1

McAfee Endpoint Security Threat Prevention Installation Guide - Linux

McAfee Cloud Workload Security Installation Guide. (McAfee epolicy Orchestrator)

McAfee Drive Encryption Client Transfer Migration Guide. (McAfee epolicy Orchestrator)

McAfee Endpoint Upgrade Assistant Product Guide. (McAfee epolicy Orchestrator 5.9.0)

McAfee MVISION Mobile IBM MaaS360 Integration Guide

Migration Guide. McAfee File and Removable Media Protection 5.0.0

McAfee MVISION Mobile Microsoft Intune Integration Guide

McAfee MVISION Mobile epo Extension Product Guide

McAfee Application Control Windows Installation Guide

Addendum. McAfee Virtual Advanced Threat Defense

McAfee Endpoint Upgrade Assistant 2.3.x Product Guide

McAfee Endpoint Upgrade Assistant Product Guide. (McAfee epolicy Orchestrator)

Cloud Workload Discovery 4.5.1

McAfee File and Removable Media Protection 6.0.0

McAfee MVISION Mobile Citrix XenMobile Integration Guide

McAfee MVISION Mobile IBM MaaS360 Integration Guide

McAfee MVISION Mobile MobileIron Integration Guide

Product Guide. McAfee Web Gateway Cloud Service

McAfee Application Control Windows Installation Guide. (Unmanaged)

McAfee File and Removable Media Protection Product Guide

McAfee MVISION Mobile AirWatch Integration Guide

Product Guide. McAfee Web Gateway Cloud Service

Archiving Service. Exchange server setup (2010) Secure Gateway (SEG) Service Administrative Guides

Reference Guide. McAfee Security for Microsoft Exchange 8.6.0

McAfee Network Security Platform

McAfee Data Exchange Layer Product Guide. (McAfee epolicy Orchestrator)

McAfee Change Control and McAfee Application Control 8.0.0

McAfee Network Security Platform

Hardware Guide. McAfee MVM3200 Appliance

Revision A. McAfee Data Loss Prevention Endpoint 11.1.x Installation Guide

McAfee Endpoint Security for Linux Threat Prevention Interface Reference Guide

Best Practices Guide. Amazon OpsWorks and Data Center Connector for AWS

Product Guide Revision A. Intel Security Controller 1.2

McAfee Application Control and McAfee Change Control Linux Product Guide Linux

McAfee Network Security Platform 9.1

McAfee epolicy Orchestrator Software

Product Guide. McAfee Content Security Reporter 2.4.0

McAfee Network Security Platform 8.3

Firewall Enterprise epolicy Orchestrator

Installation Guide. McAfee Web Gateway. for Riverbed Services Platform

McAfee Application Control Linux Product Guide. (McAfee epolicy Orchestrator)

Revision A. Intel Security Controller Product Guide

Product Guide. McAfee Performance Optimizer 2.2.0

McAfee Threat Intelligence Exchange Installation Guide. (McAfee epolicy Orchestrator)

McAfee Network Security Platform

McAfee Change Control and McAfee Application Control 6.1.4

Release Notes. McAfee Active Response Content Update

McAfee Network Security Platform 8.3

McAfee SiteAdvisor Enterprise 3.5.0

McAfee Cloud Identity Manager

McAfee Endpoint Security Installation Guide. (McAfee epolicy Orchestrator)

Release Notes - McAfee Deep Defender 1.0

McAfee Policy Auditor Installation Guide

McAfee Cloud Identity Manager

McAfee Cloud Identity Manager

McAfee Agent 5.6.x Product Guide

McAfee Cloud Identity Manager

Transcription:

Installation Guide McAfee Endpoint Security for Servers 5.0.0

COPYRIGHT Copyright 2018 McAfee, LLC TRADEMARK ATTRIBUTIONS McAfee and the McAfee logo, McAfee Active Protection, epolicy Orchestrator, McAfee epo, McAfee EMM, Foundstone, McAfee LiveSafe, McAfee QuickClean, Safe Eyes, McAfee SECURE, SecureOS, McAfee Shredder, SiteAdvisor, McAfee Stinger, True Key, TrustedSource, VirusScan are trademarks or registered trademarks of McAfee, LLC or its subsidiaries in the US and other countries. Other marks and brands may be claimed as the property of others. LICENSE INFORMATION License Agreement NOTICE TO ALL USERS: CAREFULLY READ THE APPROPRIATE LEGAL AGREEMENT CORRESPONDING TO THE LICENSE YOU PURCHASED, WHICH SETS FORTH THE GENERAL TERMS AND CONDITIONS FOR THE USE OF THE LICENSED SOFTWARE. IF YOU DO NOT KNOW WHICH TYPE OF LICENSE YOU HAVE ACQUIRED, PLEASE CONSULT THE SALES AND OTHER RELATED LICENSE GRANT OR PURCHASE ORDER DOCUMENTS THAT ACCOMPANY YOUR SOFTWARE PACKAGING OR THAT YOU HAVE RECEIVED SEPARATELY AS PART OF THE PURCHASE (AS A BOOKLET, A FILE ON THE PRODUCT CD, OR A FILE AVAILABLE ON THE WEBSITE FROM WHICH YOU DOWNLOADED THE SOFTWARE PACKAGE). IF YOU DO NOT AGREE TO ALL OF THE TERMS SET FORTH IN THE AGREEMENT, DO NOT INSTALL THE SOFTWARE. IF APPLICABLE, YOU MAY RETURN THE PRODUCT TO MCAFEE OR THE PLACE OF PURCHASE FOR A FULL REFUND. 2 McAfee Endpoint Security for Servers 5.0.0 Installation Guide

Contents 1 Planning your installation 5 Installation overview.................................. 5 System and hardware requirements............................ 5 Supported McAfee management platform and software................. 6 Supported VMware management platform and software................. 6 2 Installing Endpoint Security for Servers 7 Download software extensions and packages........................ 7 Install the software extensions on the McAfee epo server.................... 7 Registering a VMware vsphere account........................... 8 Register a VMware vcenter account from the Registered Cloud Accounts page......... 8 Register a VMware vsphere account from the Accounts pane................ 9 Create an on-demand scan client task........................... 11 Index 13 McAfee Endpoint Security for Servers 5.0.0 Installation Guide 3

Contents 4 McAfee Endpoint Security for Servers 5.0.0 Installation Guide

1 Planning 1 your installation Contents Installation overview System and hardware requirements Installation overview The installation and configuration of McAfee Endpoint Security for Servers involves the installation of extensions on McAfee epolicy Orchestrator (McAfee epo ), registering a VMware cloud account, and configuring the Smart Scheduler settings for resource-intensive tasks. The overall installation and configuration process consists of the following tasks. System and hardware requirements Your virtual systems require specific hardware and software to run Endpoint Security for Servers. Make sure that each of your servers or workstations is running a supported version of Microsoft Windows and conforms to the requirements. Review the requirements and recommendations before installing the software to make sure that your installation is successful. For a complete list of current system (Windows) requirements, see McAfee Knowledge Base article: KB82761. For a complete list of current system (Linux) requirements, see McAfee Knowledge Base article: KB87073. McAfee Endpoint Security for Servers 5.0.0 Installation Guide 5

1 Planning your installation System and hardware requirements Supported McAfee management platform and software Your systems must be running a supported version of McAfee management platform and software. Software Version McAfee epo 5.3.3 or 5.9.0 Common UI Core 1.3 or later McAfee Cloud Workload Security 5.0.0 or later McAfee Agent 5.5.0 or later McAfee Endpoint Security Threat Prevention 10.2.0 or later Smart Scheduler 5.5.0 Supported VMware management platform and software Your system must be running a supported version of VMware software. Appliance and software Version VMware vcenter 5.5 U2, 6.0, or 6.5 VMware ESXi 5.5 U2, 6.0, or 6.5 6 McAfee Endpoint Security for Servers 5.0.0 Installation Guide

2 Installing 2 Endpoint Security for Servers Contents Download software extensions and packages Install the software extensions on the McAfee epo server Registering a VMware vsphere account Create an on-demand scan client task Download software extensions and packages Download the software extensions and product packages to the McAfee epo server from the McAfee downloads site. Task From the McAfee downloads site (http://www.mcafee.com/us/downloads/), download these software extensions and packages. Package name Common UI Core.zip Cloud_Workload_Secuirty_Hybrid_5.0.0.zip MA550WIN.zip MA550LNX.zip EPOAGENTMETA.zip Description The Common UI Core extension is required to install Cloud Workload Security. Install Cloud Workload Security extension to discover the VM information and import it to the System Tree. McAfee Agent client package (Windows). McAfee Agent client package (Linux). McAfee Agent extension. McAfee_Agent_Smart_Scheduler_5.5.0.293.zip Smart Scheduler extension. Install the software extensions on the McAfee epo server You must install the product extensions on the McAfee epo server before you can use the Smart Scheduler feature on your virtual machines. Before you begin The extension files are in an accessible location on the network. Task 1 Log on to McAfee epo as an administrator. 2 Select Menu Software Extensions Install Extension. McAfee Endpoint Security for Servers 5.0.0 Installation Guide 7

2 Installing Endpoint Security for Servers Registering a VMware vsphere account 3 Browse to and select each extension file in this order, then click OK. Extension Common UI Core extension Cloud Workload Security extension McAfee Agent extension Smart Scheduler extension Package name Common UI Core.zip Cloud_Workload_Security_Hybrid_5.0.0.zip EPOAGENTMETA.zip McAfee_Agent_Smart_Scheduler_5.5.0.293.zip 4 Review the extension details and click OK. Registering a VMware vsphere account You must register a VMware vsphere account with McAfee epo so that McAfee epo communicates with VMware vcenter, which manages the ESXi servers. Register a VMware vsphere account with McAfee epo from one of these locations. Registered Cloud Accounts page Accounts pane Register a VMware vcenter account from the Registered Cloud Accounts page To use Endpoint Security for Servers to manage the virtual machines in your data center, first add your VMware vcenter to the McAfee epo server. Before you begin The VMware vcenter server that manages your ESXi servers is configured to host the guest VMs. The Cloud Workload Security extension is installed on the McAfee epo server. Task 1 Log on to McAfee epo as an administrator. 2 Select Menu Configuration Registered Cloud Accounts, then click Add Cloud Account to open the Add Cloud Account dialog box. 3 From the Choose Cloud Provider drop-down list, select VMware vsphere, then click OK. 4 On the vcenter Account Details page, configure these options. Account Name A name for the VMware vcenter account in McAfee epo. Account names can include characters a z, A Z, 0 9, and [_.-], without space. Server Address (Required) IP address or the host name of the available VMware vcenter. vcenter Username (Required) User name of the available VMware vcenter account. vcenter Password (Required) Password of the available VMware vcenter account. Sync Interval (In Minutes) Specify the interval for running the next vcenter discovery (default value is 5 minutes). Port The port number required to establish the connection with the available VMware vcenter. Tag A way to identify the VMs. Tag names can include characters a z, A Z, 0 9, and [_.-], with space. 8 McAfee Endpoint Security for Servers 5.0.0 Installation Guide

Installing Endpoint Security for Servers Registering a VMware vsphere account 2 5 Click Test Connection to validate VMware vcenter account details and verify the connection to VMware vcenter, then click Next to open the Validate Certificate page. 6 Click Accept to validate the certificate, then click Finish. 7 When prompted to confirm, click OK to register the vcenter account. This action registers the VMware vcenter and imports all discovered virtual machines, which are unmanaged, into the System Tree. The instances are imported with the same organization as the VMware vcenter. The virtual machines that are already added and managed by McAfee epo are retained with the existing policy settings, but the virtualization properties for these systems are added. 8 To verify that the VMs were imported, select Menu Systems System Tree. After the discovery, you can find your vcenter account under the group vsphere. The clusters and hosts from vcenter are logically grouped under each data center group in the System Tree. Register a VMware vsphere account from the Accounts pane Register a VMware vsphere account with McAfee epo so that McAfee epo communicates with VMware vcenter, which manages the ESXi servers. Before you begin The VMware vcenter server that manages the ESXi servers is configured to host the guest VMs. The Cloud Workload Security extension is installed on McAfee epo. Task 1 Log on to McAfee epo as an administrator. 2 Select Menu Systems Cloud Workload Security, to open the Cloud Workload Security page. 3 From the Accounts pane, click Add Account, to open the Registered Cloud Account pane. 4 From the Select Account Type drop-down list, select VMware vsphere. McAfee Endpoint Security for Servers 5.0.0 Installation Guide 9

2 Installing Endpoint Security for Servers Registering a VMware vsphere account 5 On the vcenter Account Details page, type these details. Option Account Name Server Address vcenter Username vcenter Password Assessment Policy McAfee epo Tags (seperated by commas) Port Sync Interval (In Minutes) (Optional) Windows Domain Logon Credentials Definition A name for the vcenter account in McAfee epo. Account names can include characters a z, A Z, 0 9, and [_. ], without space. Specify the URL of VMware vsphere endpoint. Type the vcenter user name to log on to vsphere. Type the vcenter password to log on to vsphere. Click Assessment Policy to select the policy to be applied to your vcenter account, or click to go to Policy Catalog page to create or select a policy. List of McAfee epo tags that are applied on VMs discovered for this vcenter account. Tag name can include characters a z, A Z, 0 9, and [_. ], with space. For details about Tag usage, see McAfee epo product documentation. Specify the port name. Specify the interval for McAfee epo to vcenter synchronization (the default value is 5 minutes. The maximum value is 60 minutes). If you specify the sync interval as 5 minutes, the next sync is scheduled 5 minutes after the completion of the current sync. Enter the credentials to deploy the McAfee Agent to the registered VMs. Make sure that the McAfee epo server and the VMs in the vsphere cloud can communicate with each other. 6 Click Test Connection to validate VMware vcenter account details and verify the connection to VMware vcenter, then click Next to open the vcenter Summary page. The summary page includes vcenter, vcns, and NSX summary. 7 Click Submit to register the cloud account. This action registers the VMware vcenter account and imports all discovered virtual machines, which are unmanaged, into the System Tree. The instances are imported with the similar structure and hierarchy present in VMware vcenter. The virtual machines that are already added and managed by McAfee epo are retained with the existing policy settings, but the virtualization properties for these machines are added. 8 To verify that the VMs were imported, select Menu Systems System Tree. After the discovery, you can find your vcenter account under the group vsphere. The clusters and hosts from vcenter are logically grouped under each data center group in the System Tree. 10 McAfee Endpoint Security for Servers 5.0.0 Installation Guide

Installing Endpoint Security for Servers Create an on-demand scan client task 2 Create an on-demand scan client task Create an on-demand scan client task, so that you can add it to the Smart Scheduler task list. Before you begin The McAfee Agent and Endpoint Security Threat Prevention extensions are installed on the McAfee epo server. The McAfee Agent and Endpoint Security Threat Prevention are installed on the target virtual systems. To configure smart scheduling for Policy Based On-Demand Scan (On-Demand Scan Full Scan or On-Demand Scan Quick Scan), you do not need to create a task. You can directly configure the Smart Scheduler settings and assign the default policy-based on-demand scan task to your VMs. Task 1 Log on to McAfee epo as an administrator. 2 Select Menu Policy Client Task Catalog. 3 Select Custom On-demand Scan in the Client Task Types menu, then click New Task. 4 Select Custom On-demand Scan from the list, then click OK to open the Client Task Builder wizard. 5 Type a name for the task you are creating, and add any descriptive information in the Description field. 6 Configure the Custom On-demand Scan options, as needed. 7 Review the task settings, then click Save. The task is added to the list of client tasks for the selected client task type. You can now configure the Smart Scheduler settings for the task you created. McAfee Endpoint Security for Servers 5.0.0 Installation Guide 11

2 Installing Endpoint Security for Servers Create an on-demand scan client task 12 McAfee Endpoint Security for Servers 5.0.0 Installation Guide

Index A account registering 8 R registration VMware vcenter account 8 C connector, choosing 8 E extensions installing 7 H hypervisors 8 I T tags defining 8 V virtual machines boot status 8 virtual properties, displaying 8 VMware vcenter account configuration Endpoint Security for Servers installation 8 installing extension 7 M McAfee epo installation 7 McAfee Endpoint Security for Servers 5.0.0 Installation Guide 13

0-00

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback