About Help Desk. McAfee Help Desk 2.0 Software. Product Guide. Functions of McAfee Help Desk software. Quarantine release.

Similar documents
When your users take devices outside the corporate environment, these web security policies and defenses within your network no longer work.

McAfee Host Data Loss Prevention 9.1 Cluster Installation Guide

About this release. McAfee Application Control and Change Control Addendum. Content change tracking. Configure content change tracking rule

Setup Guide. Archiving for Microsoft Exchange Server 2010

McAfee Client Proxy Software

Data Center Connector for OpenStack

McAfee epolicy Orchestrator Software

Setup Guide. Archiving for Microsoft Exchange Server 2003

Setup Guide. Archiving for Microsoft Exchange Server 2007

McAfee Database Activity Monitoring 5.0.0

Using McAfee VirusScan. Professional Edition Version 8.0. Software On a DX8000 DVR

McAfee Endpoint Encryption for PC 7.0

Performance Optimizer Software

Setup Guide Revision B. McAfee SaaS Archiving for Microsoft Exchange Server 2010

Upgrade Guide. McAfee Vulnerability Manager Microsoft Windows Server 2008 R2

Product Guide. McAfee Endpoint Protection for Mac 2.1.0

McAfee Client Proxy 2.0

McAfee Data Loss Prevention Endpoint

How To Encrypt Files And Folders With A Password Protected By A Password Encrypted By A Safesafe (Mafee) (Eeff) 4

McAfee EETech for Mac 6.2 User Guide

PaperClip. em4 Cloud Client. Setup Guide

McAfee MOVE AntiVirus Multi-Platform 3.5.0

Data Center Connector for vsphere 3.0.0

McAfee Optimized Virtual Environments for Servers. Installation Guide

Moving the Web Security Log Database

Remedy ITSM Service Request Management Quick Start Guide

Product Guide. McAfee Endpoint Security 10

McAfee Threat Intelligence Exchange Software

MyNetFone Virtual Fax. Virtual Fax Installation

Setup Guide Revision A. WDS Connector

McAfee SiteAdvisor Enterprise 3.5 Patch 2

McAfee Certified Product Specialist McAfee epolicy Orchestrator

McAfee Host Intrusion Prevention Patch 6 Software

Moving the TRITON Reporting Databases

McAfee Optimized Virtual Environments - Antivirus for VDI. Installation Guide

McAfee Host Data Loss Prevention Administration Intel Security Education Services Administration Course

McAfee Content Security Reporter 2.0.0

Modular Messaging. Release 4.0 Service Pack 4. Whitepaper: Support for Active Directory and Exchange 2007 running on Windows Server 2008 platforms.

Manage the Endpoints. Palo Alto Networks. Advanced Endpoint Protection Administrator s Guide Version 3.1. Copyright Palo Alto Networks

Product Guide Revision A. McAfee Data Loss Prevention Endpoint 9.3.0

McAfee Data Loss Prevention Endpoint

McAfee Data Loss Prevention Endpoint 9.4.0

Release Notes McAfee Risk Advisor Software For use with epolicy Orchestrator and Software

McAfee epolicy Orchestrator 4.5 Cluster Installation Guide

McAfee Asset Manager Console

Getting Started with WebEx Access Anywhere

DX8100 Series Symantec AntiVirus Corporate Edition Installation Instructions. Version

Release Notes for McAfee epolicy Orchestrator 4.5

Product Guide. McAfee Endpoint Security for Mac Threat Prevention

Sophos Anti-Virus for NetApp Storage Systems startup guide. Runs on Windows 2000 and later

McAfee Application Control / Change Control Administration Intel Security Education Services Administration Course

PaperClip. em4 Cloud Client. Manual Setup Guide

Setting up Microsoft Office 365

Wimba Create. Version 2.6. Installation Guide

McAfee SaaS Archiving

How to Configure a Secure Connection to Microsoft SQL Server

Bentley CONNECT Dynamic Rights Management Service

Integration Guide. McAfee Asset Manager. for use with epolicy Orchestrator 4.6

McAfee Public Cloud Server Security Suite

EMC ViPR Controller Add-in for Microsoft System Center Virtual Machine Manager

POC Installation Guide for McAfee EEFF v4.1.x using McAfee epo 4.6. New Deployments Only Windows Deployment

Specops Command. Installation Guide

STATISTICA VERSION 9 STATISTICA ENTERPRISE INSTALLATION INSTRUCTIONS FOR USE WITH TERMINAL SERVER

McAfee Web Gateway Administration Intel Security Education Services Administration Course Training

McAfee Enterprise Security Manager 9.3.2

Integration with Active Directory

McAfee Directory Services Connector extension

Advanced Configuration Steps

StarWind iscsi SAN Configuring HA File Server for SMB NAS

Management Pack for vrealize Infrastructure Navigator

StarWind iscsi SAN: Configuring HA File Server for SMB NAS February 2012

McAfee Data Loss Prevention Endpoint

McAfee Solidcore Change Reconciliation and Ticket-based Enforcement

McAfee Cloud Single Sign On

STATISTICA VERSION 11 CONCURRENT NETWORK LICENSE WITH BORROWING INSTALLATION INSTRUCTIONS

McAfee VirusScan Enterprise for Linux Software

Getting Started with Database-as-a-Service

Sage HRMS 2014 Sage Employee Self Service Tech Installation Guide for Windows 2003, 2008, and October 2013

epolicy Orchestrator Log Files

NetWrix Account Lockout Examiner Version 4.0 Administrator Guide

Administration Guide Revision E. Account Management. For SaaS and Web Security

Sophos Anti-Virus for NetApp Storage Systems startup guide

McAfee Endpoint Security Software

Lab A: Deploying and Managing Software by Using Group Policy Answer Key

Implementing and Supporting Windows Intune

McAfee VirusScan and epolicy Orchestrator Administration Course

About Archiving for Microsoft Exchange Server

McAfee Enterprise Mobility Management 11.0 Software

Adding Outlook to a Blackberry, Downloading, Installing and Configuring Blackberry Desktop Manager

Integrating ConnectWise Service Desk Ticketing with the Cisco OnPlus Portal

Trend Micro PC-cillin Internet Security 2006

Defender EAP Agent Installation and Configuration Guide

Creating a Content Group and assigning the Encrypt action to the Group.

Symantec Endpoint Encryption Full Disk

Trend Micro Incorporated reserves the right to make changes to this document and to the products described herein without notice.

Setting up Microsoft Office 365

MICROSOFT STEP BY STEP INTERACTIVE VERSION 3.0 ADMINISTRATION GUIDE

Data Protection McAfee s Endpoint and Network Data Loss Prevention

VPN CLIENT USER S GUIDE

Installation Guide. . All right reserved. For more information about Specops Inventory and other Specops products, visit

Transcription:

Product Guide McAfee Help Desk 2.0 Software About Help Desk McAfee Help Desk is an extension installed in McAfee epolicy Orchestrator (McAfee epo ). Administrators use McAfee Help Desk to issue challenge/response keys for uninstalling protected applications, removing files from quarantine, and temporarily bypassing security policies when there is a legitimate business need. McAfee Help Desk version 2.0 works with: McAfee epolicy Orchestrator 4.5 and later McAfee Data Loss Prevention Endpoint 9.2 and later McAfee Client Proxy 1.0.0.203 and later Functions of McAfee Help Desk software McAfee Help Desk software version 2.0 works with McAfee DLP Endpoint software and McAfee Client Proxy software, and has similar functionality in both situations. All operations are logged to the epolicy Orchestrator audit log. Quarantine release Quarantine release is required when McAfee DLP Discover finds file system or email storage files with sensitive content and places them in quarantine. To release the files from quarantine, the user must request a quarantine release code from the administrator. Policy bypass A user can be given permission to access or transfer sensitive information for a limited time. When this is done, all sensitive information is monitored, rather than blocked, according to existing rules. Both the user and the system administrator receive messages about the bypass status when it is enabled and disabled (the user by a pop up message, and the administrator by an event entry in the epo Event Monitor). Client uninstall Both the McAfee DLP Endpoint client and McAfee Client Proxy are protected from unauthorized removal. While they are typically uninstalled from epolicy Orchestrator by the McAfee epo administrator, there are situations where they need to be uninstalled in the field using the Microsoft Windows Add or Remove Programs function. This can be done when a challenge/response key has been issued. 1

How release keys work McAfee Help Desk software allows administrators to create release keys for situations outside the normal workflow. McAfee content security software uses a challenge/response mechanism to bypass security in special cases. When a situation affects multiple users, a slightly different mechanism is applied. Individual release keys Examples of situations requiring an individual release key are: A user needs to release emails from quarantine to delete sensitive information. McAfee content security software needs to be uninstalled, but epolicy Orchestrator can't be used because the computer is outside the corporate network. A user has a valid business reason to perform a one time operation that is blocked by a security policy. In such situations, the endpoint user in McAfee Client Proxy opens a pop up window that displays an Identification Code ( the challenge) and Policy Revision information. In McAfee DLP Endpoint, the Tasks tab in the DLP Policy console contains this information. This is communicated, typically by phone, text message, or email, to an administrator who enters the information into McAfee Help Desk and generates a Release Code (the response). The administrator communicates the release code back to the user, who enters it in the appropriate text box and continues with the release, bypass, or uninstall task. Master release keys Examples of situations requiring a master release code are: An error in a discovery rule might quarantine non sensitive files across the entire network. An error in a plug and play device rule might disconnect hundreds of computers from the network, requiring removal and re installation of the McAfee DLP Endpoint client. Release keys generated with a master release code are not keyed to the entry of a challenge code generated by a specific McAfee client, and thus can be used by any computer in the network. To prevent misuse they are time limited, and must be applied within 60 minutes of being generated. Set up McAfee Help Desk software After McAfee Help Desk is installed in epolicy Orchestrator, you must set the permissions for the administrators. Tasks Install the McAfee Help Desk extension on page 2 When McAfee Help Desk is not installed with McAfee Client Proxy or McAfee DLP Endpoint, you can install it independently in epolicy Orchestrator Add administrator permissions on page 3 After installation, add permissions for McAfee Help Desk administrators. Install the McAfee Help Desk extension When McAfee Help Desk is not installed with McAfee Client Proxy or McAfee DLP Endpoint, you can install it independently in epolicy Orchestrator 2

Task 1 In epolicy Orchestrator, select Menu Software Extensions, then click Install Extension. 2 Click Browse and select the McAfee Help Desk.zip file (..\HelpDeskTool.zip). Click Open, then OK. The installation dialog box displays the file parameters to verify that you are installing the correct extension. 3 Click OK. The extension is installed. Add administrator permissions After installation, add permissions for McAfee Help Desk administrators. The default is to grant permissions only to the administrator who installs the extension. If you log on as a different administrator, you do not see any services and thus cannot use the software. Task 1 In McAfee epolicy Orchestrator, select Menu User Management Permission Sets. 2 In the left pane, select an administrator who will have McAfee Help Desk permissions. In the right pane, select Help Desk Actions and click Edit. The available actions appear for each installed point product. 3 Select actions and click Save. Granular options are provided to allow large organizations to divide the workload and responsibility as required. The option Generate master response key becomes available when any other option is selected. Understanding revision numbers Revision numbers are automatically assigned to policies, and are used for troubleshooting and agent bypass key creation. All McAfee Help Desk functions create release codes using revision numbers, referred to as the Policy Revision in the McAfee Client Proxy bypass request pop up window, and as Revision ID on the DLP Policy console Tasks tab. For McAfee DLP Endpoint bypass release codes, use of the revision number is optional, but it is the default setting. When McAfee DLP Endpoint or McAfee Client Proxy creates a policy, the policy is assigned the revision number 1. This number is incremented each time the policy is changed. In addition to being used for requesting an agent bypass or uninstall key, the revision number is important for supporting troubleshooting processes, to ensure that policy changes are actually applied to the endpoint computers. Both the McAfee DLP Endpoint policy console in epolicy Orchestrator and the DLP Policy console on the client computer display the current policy revision number. 3

Create response keys An administrator generates a response key for each challenge key request. Alternately, a master release code can be generated when multiple computers are involved. All response keys require similar entries. The following differences should be noted: McAfee Client Proxy bypass and uninstall keys take the password from the selected policy, that is, the generated response key works with only one policy. The policy revision number is required and is verified when you generate the key. For McAfee DLP Endpoint bypass, quarantine release, and uninstall keys, the policy revision number is the preferred option (default in the McAfee Help Desk interface), but you also have the options of taking the password from the policy or entering it manually. Bypass keys have a set duration. You can set a time from 15 minutes to 30 days. Shutting down or restarting the computer does not affect the timer. Master release codes must be activated within 60 minutes. For bypass keys, the duration they are active is set as in regular bypass release keys. Table 1 Response key form Field End user name End user email address End user computer name Request details (Business reason) Client bypass password Identification code Bypass duration Notes Required field. Must be a valid user name. Validated against Windows AD. Required field. Must match user name. Validated when the key is generated. Optional field. Optional field. For McAfee Client Proxy requests, the password consists of the current policy name and revision number. Policy name is selected from a list of valid McAfee Client Proxy policies in the epolicy Orchestrator Policy Catalog. The revision number is supplied by the user requesting the bypass key. For McAfee DLP Endpoint requests, the default is to create a password from the policy Revision ID supplied by the user. You can also use the password from the current policy, or enter it manually. Required field, supplied by the user. Alternately, select Use master release code. Required field in bypass release keys only. The default is15 minutes. Task 1 In epolicy Orchestrator, select Menu Systems Help Desk. McAfee Help Desk service options for the available point products are displayed. If you do not see a particular product, either that point product is not installed or you do not have permission to author response keys for that product. 2 Select a service option and fill in the text fields. Click Generate Key when you have finished. McAfee Help Desk verifies entries when you attempt to generate the key and gives you feedback on any errors. 4

Copyright 2013 McAfee, Inc. Do not copy without permission. McAfee and the McAfee logo are trademarks or registered trademarks of McAfee, Inc. or its subsidiaries in the United States and other countries. Other names and brands may be claimed as the property of others. 00 5

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information