cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Drive Encryption inactive no ALDU

 
We have a problem with the ePO 5.10 console.
Namely, for some time, newly added computers to the epo console do not want to encrypt their disks, still the encryption status is marked as inactive.
The problem appeared theoretically after restoring the SQL server backup. Computers that have been encrypted so far have no problems, every newly logged user after ALDU synchronization gets access to PREBOOT.
Unfortunately, in newly installed computers this is not the case, the agent does not synchronize ALDU so that encryption starts automatically, but if I do it manually in the ePO console via the ENCRYPTION USERS tab, the encryption will start and the next people will be added correctly.
In the logs of the orion file I read that communication takes place via LDAP ID: 2 and by letting QUERY run on SQL server, LDAP ID: 1 is active
We have one domain without subdomains.

CLEAR ORION LOG
2020-02-20 11:40:50,986 WARN [localhost-startStop-1] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:40:51,360 WARN [localhost-startStop-1] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:40:56,508 WARN [localhost-startStop-1] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:40:56,773 WARN [localhost-startStop-1] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:40:57,054 WARN [localhost-startStop-1] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:40:58,864 WARN [localhost-startStop-1] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:00,751 WARN [localhost-startStop-1] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:02,062 WARN [localhost-startStop-1] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:02,358 WARN [localhost-startStop-1] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:02,795 WARN [localhost-startStop-1] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:06,227 WARN [localhost-startStop-1] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:08,271 INFO [localhost-startStop-1] base.MfsDatabase - Database: Microsoft SQL Server 11.00.7469. JDBC Driver: jTDS Type 4 JDBC Driver for MS SQL Server and Sybase 1.3.1. Dialect: mssql
2020-02-20 11:41:08,364 WARN [localhost-startStop-1] ext.RevokedExtensionUtil - Unable to load revoked extension list file: D:\Program Files (x86)\McAfee\ePolicy Orchestrator/server/keystore/rel.zip
2020-02-20 11:41:09,441 ERROR [http-nio-8444-exec-13] server.OrionLoginModule - Error occured while updating last logon time in the database
2020-02-20 11:41:09,846 ERROR [http-nio-8444-exec-17] auth.OrionUser - OrionUser: invalid auth type:pwd
2020-02-20 11:41:09,862 ERROR [http-nio-8444-exec-17] server.OrionLoginModule - Failed to login due to invalid password for user: system_SBOPEPO05
2020-02-20 11:41:10,127 ERROR [http-nio-8443-exec-9] auth.OrionUser - OrionUser: invalid auth type:pwd
2020-02-20 11:41:10,174 ERROR [http-nio-8443-exec-9] server.OrionLoginModule - Failed to login due to invalid password for user: system_SBOPEPO05
2020-02-20 11:41:20,486 ERROR [http-nio-8444-exec-14] server.OrionLoginModule - Error occured while updating last logon time in the database
2020-02-20 11:41:20,782 ERROR [http-nio-8444-exec-18] server.OrionLoginModule - Error occured while updating last logon time in the database
2020-02-20 11:41:21,016 ERROR [http-nio-8444-exec-19] server.OrionLoginModule - Error occured while updating last logon time in the database
2020-02-20 11:41:21,266 ERROR [http-nio-8444-exec-2] server.OrionLoginModule - Error occured while updating last logon time in the database
2020-02-20 11:41:21,437 ERROR [http-nio-8444-exec-12] server.OrionLoginModule - Error occured while updating last logon time in the database
2020-02-20 11:41:21,624 ERROR [http-nio-8444-exec-4] server.OrionLoginModule - Error occured while updating last logon time in the database
2020-02-20 11:41:34,838 WARN [main] command.RefreshComputerPropsCommand - a command of type com.mcafee.epo.computermgmt.command.RefreshComputerPropsCommand should have its displayNameKey property set
2020-02-20 11:41:39,377 ERROR [main] dao.UserDirectoryHierarchy - Root already exists
2020-02-20 11:41:42,061 WARN [main] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:42,747 WARN [main] spring.SpringResourcePreprocessor - Bean[id='ENDP_GS_1000.mvc.action.cfg'] uses unsupported attribute dependency-check="default"; remove attribute from bean definition
2020-02-20 11:41:44,791 WARN [main] spring.SpringResourcePreprocessor - Bean[id='EEGO.role'] uses unsupported attribute singleton="false"; update bean definition with scope="prototype"
2020-02-20 11:41:44,791 WARN [main] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:44,806 WARN [main] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:44,806 WARN [main] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:46,101 WARN [main] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:46,117 WARN [main] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:53,792 WARN [main] response.SendThreatEventViaDXLCommand - Could not find GenericEvent
java.lang.ClassNotFoundException: com.mcafee.orion.response.event.GenericEvent
at org.apache.catalina.loader.WebappClassLoaderBase.loadClass(WebappClassLoaderBase.java:1928)
at com.mcafee.orion.core.server.OrionClassLoader.loadClass(OrionClassLoader.java:79)
at org.apache.catalina.loader.WebappClassLoaderBase.loadClass(WebappClassLoaderBase.java:1771)
at java.lang.Class.forName0(Native Method)
at java.lang.Class.forName(Class.java:264)
at com.mcafee.dxl.broker.ext.response.SendThreatEventViaDXLCommand.<clinit>(SendThreatEventViaDXLCommand.java:65)
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
at java.lang.reflect.Constructor.newInstance(Constructor.java:423)
at org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:147)
at org.springframework.beans.factory.support.SimpleInstantiationStrategy.instantiate(SimpleInstantiationStrategy.java:89)
at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.instantiateBean(AbstractAutowireCapableBeanFactory.java:1092)
at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBeanInstance(AbstractAutowireCapableBeanFactory.java:1044)
at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:504)
at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:476)
at org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:322)
at org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:194)
at com.mcafee.orion.core.spring.MultiParentBeanFactory.getBean(MultiParentBeanFactory.java:189)
at com.mcafee.orion.core.spring.SpringCommandRegistration.afterPropertiesSet(SpringCommandRegistration.java:53)
at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.invokeInitMethods(AbstractAutowireCapableBeanFactory.java:1631)
at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.initializeBean(AbstractAutowireCapableBeanFactory.java:1568)
at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:539)
at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:476)
at org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:303)
at org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:230)
at org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:299)
at org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:194)
at com.mcafee.orion.core.spring.MultiParentBeanFactory.getBean(MultiParentBeanFactory.java:189)
at org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:755)
at com.mcafee.orion.core.plugin.WebappPlugin.init(WebappPlugin.java:105)
at com.mcafee.orion.core.plugin.PluginManager.initPlugin(PluginManager.java:796)
at com.mcafee.orion.core.plugin.PluginManager.initPlugin(PluginManager.java:741)
at com.mcafee.orion.core.plugin.PluginManager.init(PluginManager.java:377)
at com.mcafee.orion.core.OrionCore.afterStart(OrionCore.java:855)
at com.mcafee.orion.core.server.OrionLifecycleListener.lifecycleEvent(OrionLifecycleListener.java:80)
at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:117)
at org.apache.catalina.util.LifecycleBase.fireLifecycleEvent(LifecycleBase.java:90)
at org.apache.catalina.util.LifecycleBase.setStateInternal(LifecycleBase.java:388)
at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:155)
at org.apache.catalina.startup.Catalina.start(Catalina.java:705)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:294)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:428)
2020-02-20 11:41:55,336 WARN [main] spring.SpringResourcePreprocessor - Bean[id='ENDP_MIG_META.mvc.action.cfg'] uses unsupported attribute dependency-check="default"; remove attribute from bean definition
2020-02-20 11:41:56,662 WARN [main] spring.SpringResourcePreprocessor - Bean[id='ENDP_AM_1000.mvc.action.cfg'] uses unsupported attribute dependency-check="default"; remove attribute from bean definition
2020-02-20 11:41:57,130 WARN [main] spring.SpringResourcePreprocessor - Bean[id='HIPSIntegration.sigEventPublisher'] uses unsupported attribute singleton="true"; update bean definition with scope="singleton"
2020-02-20 11:41:57,130 WARN [main] spring.SpringResourcePreprocessor - Bean[id='HIPSIntegration.sigEventSubscriber'] uses unsupported attribute singleton="true"; update bean definition with scope="singleton"
2020-02-20 11:41:57,130 WARN [main] spring.SpringResourcePreprocessor - Bean[id='HIPSIntegration.SignatureMappingManager'] uses unsupported attribute singleton="true"; update bean definition with scope="singleton"
2020-02-20 11:41:57,130 WARN [main] spring.SpringResourcePreprocessor - Bean[id='HIPSIntegration.integrationService'] uses unsupported attribute singleton="true"; update bean definition with scope="singleton"
2020-02-20 11:41:57,130 WARN [main] spring.SpringResourcePreprocessor - Bean[id='HIPSIntegrationManager'] uses unsupported attribute singleton="true"; update bean definition with scope="singleton"
2020-02-20 11:41:57,130 WARN [main] spring.SpringResourcePreprocessor - Bean[id='ISExtension.internalTask'] uses unsupported attribute singleton="false"; update bean definition with scope="prototype"
2020-02-20 11:41:57,130 WARN [main] spring.SpringResourcePreprocessor - Bean[id='ISExtension.HostForensicsAdaptor'] uses unsupported attribute singleton="false"; update bean definition with scope="prototype"
2020-02-20 11:41:57,130 WARN [main] spring.SpringResourcePreprocessor - Bean[id='ISExtension.HostForensicsCommand'] uses unsupported attribute singleton="false"; update bean definition with scope="prototype"
2020-02-20 11:41:57,130 WARN [main] spring.SpringResourcePreprocessor - Bean[id='ISExtension.ExtVerionCommand'] uses unsupported attribute singleton="false"; update bean definition with scope="prototype"
2020-02-20 11:41:57,130 WARN [main] spring.SpringResourcePreprocessor - Bean[id='NSPExtension.command.DashboardDataPull'] uses unsupported attribute singleton="false"; update bean definition with scope="prototype"
2020-02-20 11:41:57,130 WARN [main] spring.SpringResourcePreprocessor - XML file provides no validation information. Adding default namespace to <beans> element.
2020-02-20 11:41:57,162 WARN [main] publisher.SignatureEventPublisher - **** in constructor ******
2020-02-20 11:43:34,413 ERROR [http-nio-8443-exec-20] server.OrionLoginModule - Failed to login due to invalid password for user: svepo
2020-02-20 11:44:41,931 ERROR [pool-12-thread-1] core.UserManagementControl - Error Adding user : Failed to load Registered server with ID 2
com.mcafee.orion.ldapsync.exception.InvalidServerIdException: Failed to load Registered server with ID 2
at com.mcafee.orion.ldapsync.services.RegistryServiceImpl.register(RegistryServiceImpl.java:1043)
at com.mcafee.orion.ldapsync.services.RegistryServiceImpl.register(RegistryServiceImpl.java:431)
at com.mcafee.orion.ldapsync.services.RegistryServiceImpl.register(RegistryServiceImpl.java:990)
at com.mcafee.orion.ldapsync.services.RegistryServiceImpl.registerByUniqueId(RegistryServiceImpl.java:279)
at com.mcafee.orion.ldapsync.services.RegistryServiceImpl.registerByUniqueId(RegistryServiceImpl.java:248)
at com.mcafee.epe.core.UserManagementControl.addUserIfNotExist(UserManagementControl.java:461)
at com.mcafee.epe.core.UserManagementControl.addUserToSystem(UserManagementControl.java:610)
at com.mcafee.epe.core.UserManagementControl.addUserToSystem(UserManagementControl.java:534)
at com.mcafee.epe.core.thread.AddLocalDomainUser.addUserToSystem(AddLocalDomainUser.java:471)
at com.mcafee.epe.core.thread.AddLocalDomainUser.processDomainRequest(AddLocalDomainUser.java:1070)
at com.mcafee.epe.core.thread.AddLocalDomainUser.run(AddLocalDomainUser.java:1184)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at java.lang.Thread.run(Thread.java:748)
Caused by: com.mcafee.orion.ldap.LdapRegisteredServerException: Unknown LDAP Server for id: 2
at com.mcafee.orion.ldap.internal.LdapServerServiceImpl.getLdapConnectionForServerId(LdapServerServiceImpl.java:219)
at com.mcafee.orion.ldap.internal.LdapServerServiceImpl.getLdapConnectionForServerId(LdapServerServiceImpl.java:172)
at com.mcafee.orion.ldapsync.services.RegistryServiceImpl.register(RegistryServiceImpl.java:1039)
... 13 more
2020-02-20 11:44:41,946 WARN [pool-12-thread-1] internal.LdapServerServiceImpl - No preferred registered server for domain= font driver host
2020-02-20 11:44:42,009 ERROR [pool-12-thread-1] core.LdapUtils - Failed to find LDAP Server for Domain[font driver host] by invoking MFS getLdapConnectionForDomainOrThrow - Unable to find connection for domain: font driver host
java.lang.Exception: Unable to find connection for domain: font driver host
at com.mcafee.orion.ldap.internal.LdapServerServiceImpl.getLdapConnectionForDomainOrThrow(LdapServerServiceImpl.java:315)
at com.mcafee.epe.core.LdapUtils.findLdapServer(LdapUtils.java:339)
at com.mcafee.epe.core.thread.AddLocalDomainUser.processDomainRequest(AddLocalDomainUser.java:1035)
at com.mcafee.epe.core.thread.AddLocalDomainUser.run(AddLocalDomainUser.java:1184)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at java.lang.Thread.run(Thread.java:748)
2020-02-20 11:44:42,009 WARN [pool-12-thread-1] thread.AddLocalDomainUser - Unable to locate Registered LDAP Server for [font driver host]
2020-02-20 11:44:42,024 WARN [pool-12-thread-1] internal.LdapServerServiceImpl - No preferred registered server for domain= window manager
2020-02-20 11:44:42,071 ERROR [pool-12-thread-1] core.LdapUtils - Failed to find LDAP Server for Domain[window manager] by invoking MFS getLdapConnectionForDomainOrThrow - Unable to find connection for domain: window manager
java.lang.Exception: Unable to find connection for domain: window manager
at com.mcafee.orion.ldap.internal.LdapServerServiceImpl.getLdapConnectionForDomainOrThrow(LdapServerServiceImpl.java:315)
at com.mcafee.epe.core.LdapUtils.findLdapServer(LdapUtils.java:339)
at com.mcafee.epe.core.thread.AddLocalDomainUser.processDomainRequest(AddLocalDomainUser.java:1035)
at com.mcafee.epe.core.thread.AddLocalDomainUser.run(AddLocalDomainUser.java:1184)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at java.lang.Thread.run(Thread.java:748)
2020-02-20 11:44:42,071 WARN [pool-12-thread-1] thread.AddLocalDomainUser - Unable to locate Registered LDAP Server for [window manager]
2020-02-20 11:44:42,211 ERROR [pool-12-thread-1] service.DataChannelMessageServiceInternal - Error running agent notification command
com.mcafee.orion.core.cmd.CommandException: ePO DXL Client not connected to DXL fabric
at com.mcafee.orion.core.cmd.CommandInvoker.invoke(CommandInvoker.java:1314)
at com.mcafee.orion.core.cmd.CommandInvoker.invokeCommand(CommandInvoker.java:1000)
at com.mcafee.orion.core.cmd.CommandInvoker.invoke(CommandInvoker.java:969)
at com.mcafee.orion.core.cmd.CommandInvoker.invoke(CommandInvoker.java:819)
at com.mcafee.orion.core.cmd.CommandInvoker.invoke(CommandInvoker.java:773)
at com.mcafee.epo.dataChannel.service.DataChannelMessageServiceInternal.runNotifyAgentCommand(DataChannelMessageServiceInternal.java:771)
at com.mcafee.epo.dataChannel.service.DataChannelMessageServiceInternal.SendAgentMessage(DataChannelMessageServiceInternal.java:1035)
at com.mcafee.epe.core.thread.AddLocalDomainUser.sendAgentMessage(AddLocalDomainUser.java:325)
at com.mcafee.epe.core.thread.AddLocalDomainUser.run(AddLocalDomainUser.java:1246)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at java.lang.Thread.run(Thread.java:748)
Caused by: com.mcafee.dxl.client.exception.NotConnectedException: ePO DXL Client not connected to DXL fabric
at com.mcafee.dxl.client.ext.api.command.AbstractAgentCommand.invoke(AbstractAgentCommand.java:218)
at com.mcafee.orion.core.cmd.CommandInvoker.invoke(CommandInvoker.java:1275)
... 11 more
2020-02-20 11:45:11,867 ERROR [pool-12-thread-2] core.UserManagementControl - Error Adding user : Failed to load Registered server with ID 2
com.mcafee.orion.ldapsync.exception.InvalidServerIdException: Failed to load Registered server with ID 2
at com.mcafee.orion.ldapsync.services.RegistryServiceImpl.register(RegistryServiceImpl.java:1043)
at com.mcafee.orion.ldapsync.services.RegistryServiceImpl.register(RegistryServiceImpl.java:431)
at com.mcafee.orion.ldapsync.services.RegistryServiceImpl.register(RegistryServiceImpl.java:990)
at com.mcafee.orion.ldapsync.services.RegistryServiceImpl.registerByUniqueId(RegistryServiceImpl.java:279)
at com.mcafee.orion.ldapsync.services.RegistryServiceImpl.registerByUniqueId(RegistryServiceImpl.java:248)
at com.mcafee.epe.core.UserManagementControl.addUserIfNotExist(UserManagementControl.java:461)
at com.mcafee.epe.core.UserManagementControl.addUserToSystem(UserManagementControl.java:610)
at com.mcafee.epe.core.UserManagementControl.addUserToSystem(UserManagementControl.java:534)
at com.mcafee.epe.core.thread.AddLocalDomainUser.addUserToSystem(AddLocalDomainUser.java:471)
at com.mcafee.epe.core.thread.AddLocalDomainUser.processDomainRequest(AddLocalDomainUser.java:1070)
at com.mcafee.epe.core.thread.AddLocalDomainUser.run(AddLocalDomainUser.java:1184)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at java.lang.Thread.run(Thread.java:748)
Caused by: com.mcafee.orion.ldap.LdapRegisteredServerException: Unknown LDAP Server for id: 2
at com.mcafee.orion.ldap.internal.LdapServerServiceImpl.getLdapConnectionForServerId(LdapServerServiceImpl.java:219)
at com.mcafee.orion.ldap.internal.LdapServerServiceImpl.getLdapConnectionForServerId(LdapServerServiceImpl.java:172)
at com.mcafee.orion.ldapsync.services.RegistryServiceImpl.register(RegistryServiceImpl.java:1039)
... 13 more
2020-02-20 11:45:11,883 ERROR [pool-12-thread-2] core.LdapUtils - Failed to find LDAP Server for Domain[font driver host] by invoking MFS getLdapConnectionForDomainOrThrow - Unable to find connection for domain: font driver host
java.lang.Exception: Unable to find connection for domain: font driver host
at com.mcafee.orion.ldap.internal.LdapServerServiceImpl.getLdapConnectionForDomainOrThrow(LdapServerServiceImpl.java:315)
at com.mcafee.epe.core.LdapUtils.findLdapServer(LdapUtils.java:339)
at com.mcafee.epe.core.thread.AddLocalDomainUser.processDomainRequest(AddLocalDomainUser.java:1035)
at com.mcafee.epe.core.thread.AddLocalDomainUser.run(AddLocalDomainUser.java:1184)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at java.lang.Thread.run(Thread.java:748)
2020-02-20 11:45:11,883 WARN [pool-12-thread-2] thread.AddLocalDomainUser - Unable to locate Registered LDAP Server for [font driver host]
2020-02-20 11:45:11,883 ERROR [pool-12-thread-2] core.LdapUtils - Failed to find LDAP Server for Domain[window manager] by invoking MFS getLdapConnectionForDomainOrThrow - Unable to find connection for domain: window manager
java.lang.Exception: Unable to find connection for domain: window manager
at com.mcafee.orion.ldap.internal.LdapServerServiceImpl.getLdapConnectionForDomainOrThrow(LdapServerServiceImpl.java:315)
at com.mcafee.epe.core.LdapUtils.findLdapServer(LdapUtils.java:339)
at com.mcafee.epe.core.thread.AddLocalDomainUser.processDomainRequest(AddLocalDomainUser.java:1035)
at com.mcafee.epe.core.thread.AddLocalDomainUser.run(AddLocalDomainUser.java:1184)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at java.lang.Thread.run(Thread.java:748)
2020-02-20 11:45:11,883 WARN [pool-12-thread-2] thread.AddLocalDomainUser - Unable to locate Registered LDAP Server for [window manager]
2020-02-20 11:45:11,977 ERROR [pool-12-thread-2] service.DataChannelMessageServiceInternal - Error running agent notification command
com.mcafee.orion.core.cmd.CommandException: ePO DXL Client not connected to DXL fabric
at com.mcafee.orion.core.cmd.CommandInvoker.invoke(CommandInvoker.java:1314)
at com.mcafee.orion.core.cmd.CommandInvoker.invokeCommand(CommandInvoker.java:1000)
at com.mcafee.orion.core.cmd.CommandInvoker.invoke(CommandInvoker.java:969)
at com.mcafee.orion.core.cmd.CommandInvoker.invoke(CommandInvoker.java:819)
at com.mcafee.orion.core.cmd.CommandInvoker.invoke(CommandInvoker.java:773)
at com.mcafee.epo.dataChannel.service.DataChannelMessageServiceInternal.runNotifyAgentCommand(DataChannelMessageServiceInternal.java:771)
at com.mcafee.epo.dataChannel.service.DataChannelMessageServiceInternal.SendAgentMessage(DataChannelMessageServiceInternal.java:1035)
at com.mcafee.epe.core.thread.AddLocalDomainUser.sendAgentMessage(AddLocalDomainUser.java:325)
at com.mcafee.epe.core.thread.AddLocalDomainUser.run(AddLocalDomainUser.java:1246)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at java.lang.Thread.run(Thread.java:748)
Caused by: com.mcafee.dxl.client.exception.NotConnectedException: ePO DXL Client not connected to DXL fabric
at com.mcafee.dxl.client.ext.api.command.AbstractAgentCommand.invoke(AbstractAgentCommand.java:218)
at com.mcafee.orion.core.cmd.CommandInvoker.invoke(CommandInvoker.java:1275)
... 11 more

CLIENT LOG 

2020-02-20 12:21:34,311 INFO EpoPlugin Reporting TargetState property as Active
2020-02-20 12:21:34,311 INFO EpoPlugin collectProperties: dispatching disk list to AgentHandler
2020-02-20 12:21:35,574 INFO EpoPlugin enforcePolicy: new policy store created (session 1582189116).
2020-02-20 12:21:36,496 INFO EpoPlugin enforcePolicy: Waiting for OptIn users (i.e. non-default UBP users) before enforcing policy.
2020-02-20 12:21:36,511 INFO EpoState == Start of policy enforcement ==
2020-02-20 12:21:36,511 INFO StatusService Rozpocz to wprowadzanie zasad
2020-02-20 12:21:36,511 INFO EpoPlugin enforceUserPolicy: Dispatching enforce policy event.
2020-02-20 12:21:36,513 INFO EpoPlugin policyHandler: handling EnforcePolicy event
2020-02-20 12:21:36,518 INFO EpoPlugin policyHandler: relying on AddLocalDomainUsers for user assignnent.
2020-02-20 12:21:36,518 INFO EpoPlugin userHandler: handling AddLocalDomainUsers event
2020-02-20 12:21:36,520 INFO DomainUsers Searching for logged on local domain users.
2020-02-20 12:21:36,596 INFO DomainUsers Ignoring expired logon session for user: \\window manager\dwm-1
2020-02-20 12:21:36,597 INFO DomainUsers Found new (unprocessed in this session) local domain user: \\bop\dzielakowski
2020-02-20 12:21:36,598 INFO DomainUsers Found new (unprocessed in this session) local domain user: \\window manager\dwm-1
2020-02-20 12:21:36,598 INFO DomainUsers Found new (unprocessed in this session) local domain user: \\font driver host\umfd-1
2020-02-20 12:21:36,598 INFO EpoPlugin userHandler: dispatching EPOAddDomainUsers event to McAfee Agent
2020-02-20 12:21:36,598 INFO EpoPlugin userHandler: Note, press Send Events button in McAfee Agent to hasten delivery (see KB71865).
2020-02-20 12:21:36,705 INFO StatusService Tworzenie zdarzenia w celu dania danych dla lokalnych u ytkowników domeny
2020-02-20 12:21:37,782 INFO EpoPlugin enforcePolicy: skipping policy enforcement, since we already performed one within the last 20 seconds.
2020-02-20 12:21:37,798 INFO EpoPlugin enforcePolicy: Policy Enforcement is already in progress, skipping this one.
2020-02-20 12:21:41,262 INFO EpoPlugin enforcePolicy: skipping policy enforcement, since we already performed one within the last 20 seconds.
2020-02-20 12:21:41,275 INFO EpoPlugin enforcePolicy: Policy Enforcement is already in progress, skipping this one.
2020-02-20 12:24:45,083 WARNING EpoMaLpcLog Service not available
2020-02-20 12:24:45,096 INFO StatusService Odebrano dane dla lokalnych u ytkowników domeny
2020-02-20 12:24:45,096 INFO EpoPlugin userHandler: handling AddLocalDomainUsers response
2020-02-20 12:24:45,098 WARNING EpoPlugin userHandler: local domain user (bop\dzielakowski) could not be assigned to system.
2020-02-20 12:24:45,098 WARNING EpoPlugin userHandler: local domain user (font driver host\umfd-1) could not be assigned to system.
2020-02-20 12:24:45,098 WARNING EpoPlugin userHandler: local domain user (window manager\dwm-1) could not be assigned to system.
2020-02-20 12:24:45,098 ERROR EpoPlugin userHandler: failing policy enforcement: no users assigned for activation to proceed.
2020-02-20 12:24:45,098 INFO EpoPlugin epoAudit: dispatching audits to AgentHandler
2020-02-20 12:24:45,183 INFO EpoState == End of policy enforcement ==
2020-02-20 12:24:45,183 INFO StatusService Zako czono wprowadzanie zasad
2020-02-20 12:24:45,183 ERROR StatusService Wprowadzenie zasad nie powiod o si


6 Replies
cdinet
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 2 of 7

Re: Drive Encryption inactive no ALDU

This error refers to KB85872 - see if that helps resolve the issue.

2020-02-20 11:44:41,931 ERROR [pool-12-thread-1] core.UserManagementControl - Error Adding user : Failed to load Registered server with ID 2
com.mcafee.orion.ldapsync.exception.InvalidServerIdException: Failed to load Registered server with ID 2

Was my reply helpful?
If this information was helpful in any way or answered your question, will you please select Accept as Solution in my reply and together we can help other members?

Re: Drive Encryption inactive no ALDU

thank you for the answer, but I still don't know how to solve the problem.

jsubbura
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 4 of 7

Re: Drive Encryption inactive no ALDU

Hi @saddamuss ,

Did you delete the EPO Registered LDAP server and re-add the same recently? 

Did you try to restart the EPO server once? 

 

The logs say that the response from EPO does not have the details for the local domain users in the machine, so the MDE in the local machine is unable to add the users to the preboot file system. There is a problem with the LDAP cache values or the ldap sync. 

 

I advise you to open a support ticket with McAfee Drive Encryption Support team for in-depth investigation.

 

Thank you.

Regards,
Jithendran S
McAfee Employee

Re: Drive Encryption inactive no ALDU

Hi @jsubbura
Yes i try delete and re-add server LDAP
Yest i try Restart the EPO server
No change.
LKS
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 6 of 7

Re: Drive Encryption inactive no ALDU

I think may be DE engineers can help on this case. I will move this post to DE forum

Re: Drive Encryption inactive no ALDU

Ok thanks.
You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community