cancel
Showing results for 
Search instead for 
Did you mean: 

Problems Installing HDLP 9.0 / DLPWCF on ePO 4.5

1. I am using the manual "McAfee Host Data Loss Prevention 9.0 Installation Guide for ePolicy Orchestrator 4.5"

2. I am installing HDLP 9.0 on an existing ePO 4.5 server, that I did not originally install.  Note that the process seemed to work without a hitch in the test lab, but here in production, everything is going into the handbasket.

3. My problem comes into effect when I do the WCF installation. As my ePO and database on all on one Windows2K3 server, I am installing the WCF locally (Option 1).

4. My repository is a SQL Server 2005, and I have installed SQL Server Management Studio Express 9.0.4035

5. Following the instructions "Adding a user in SQL Server", I name the user (epohdlp).

          Default Database: ePO4_SERVER

          Server Role:         public

          User Mapping:     Under "Users mapped to this login" I select the ePO4_SERVER, and verify that the User [DOMAIN\epohdlp] is listed under User.

Note: if I go back and look, the ePO4_SERVER sleect box is NOT checked, and there is nothing listed under User

6. When I follow the instructions to modify the Database User, under Securables, I select the ePO4_SERVER database, but when I select Effective Permissions, I see 61 different permissions.  When I click OK, everything looks as it should. When I hit OK again, and then re-select the Database User [DOMAIN\epohdlp,] there is nothing listed under Securables.

7. At this point, following the instructions, I run the DLP WCF Installer. I do not change the WCF Server Port, and I add the [DOMAIN\Security] OU from Active Directory as the WAAG.

8. I select Windows Authentication, and select Finish to complete the installation.

9. When I open the browser to Troubleshoot the DLP WCF service (http://localhost:8731/DLPWCF/Admin/Testing), every test fails.

Since I am not really familiar with Windows troubleshooting, and even less familiar with SQL Server troubleshooting, any ideas?

TIA

Message was edited by: Jonathan Hawes to correct spelling on 1/26/11 8:52:07 AM CST
3 Replies

Re: Problems Installing HDLP 9.0 / DLPWCF on ePO 4.5

Hi Jonathan,

first of all I would recommend that you use DLP 9.1 🙂

regarding your sql issue.

do you have checked how the ePO connects to the sql db?

why do not you use the same systemaccount also for the WCF service?

regards,

online

Re: Problems Installing HDLP 9.0 / DLPWCF on ePO 4.5

Oh, if I only could.  Without some document identifying a reasonable issue that is resolved in 9.1, the testing has gone on far enough, and the deadline is so close that 9.0 is it for now.

As I have said, I am not real familiar with SQL server, and in checking, I can't find anyone in the Security group real familiar with SQL Server.  Internally, I am not sure how SQL Server connects to anything. I have never before used SQL Server, as Oracle is my normal DB.  I am trying to track down one of the program software people that is familiar with SQL Server and hopefully it's communication.

As to why I did not use the system account, the documentation indicated to create a database account with minimal grants, and so I attempted to.  More and more I am thinking the user I am connecting with does not have the authority.  More will be found when I can find some database error log, or database server log that shows what is going on with the WCF test connection failures.

Re: Problems Installing HDLP 9.0 / DLPWCF on ePO 4.5

ok, please try the following...

for a better understanding i made five screen captures (of my german version of sql 2008r2 express)

beginning at your step 4, you started the SQL Management Studio.

screenshot1: make a right click on logins and create a new on.

follow screenshot 2

screenshot3: give the user rights for datareader and datawriter

now open the properties of the DB ePO_SERVER

select your user DOMAIN\epohdlp and also grand  to execute (screenshot4). click on OK

open the properties of the DB ePO_SERVER again and verify the effective userrights (screenshot5).

hopefully, this should work.

regards,

online

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community