I'm a bit puzzled at what is communicated in various topics on the ePO agent and it's SSL support.
I'm asked to look into removing all unencrypted data transfers from the Mcafee Agents to the server.
Agent 4.5 and higher are default using SSL over port 443 (which is fine and does not need to change)
but some topics say that port 80 HTTP needs to be open for updates while other topics mention
definition updates work fine over port 443 except patches.
Hence my question:
Can port 80 be dissabled on the server and clients when they use ePO & Agent 4.6?
If the answer is no, which traffic keeps using port 80?
redirecting port 80 to 443 is no option as you can only have 1 listner on the port
and it will be unencrypted still.
I know these questions have been asked before, but answers where inconclusive
Port 443 is used for communication between agents and ePO console (clients become "managed" in ePO).
Port 80 is used for VSE to pull updates (DAT) from ePO console/SuperAgent(repository).
Port 8081 is needed if your clients will pull updates from a SuperAgent(repository)