we are preparing to upgrade from VSE to ENS on a wider base in our environment. We are also using BeyondTrust privilege management and therefore have trused the BeyondTrust certificate in the ENS General Options policy. Without the trust, ENS generates DLL Injection alerts of the used pghook.dll.
Is there a way to provide this policy right with the installation of ENS to prevent?
Our experience with ePO Upgrade Assistant and manual installation packages is, that the ENS packages are being installed, after that the Agent communicates with ePO and gets the valid policies. In the time between installation and application of the policy ENS generates the dll injection alert.
We want to deploy with McAfee ePO standard mechanisms.
To reduce the time between product deployment installation and policy enforcement, you can create one "McAfee Agent Wakeup" and schedule it to run after 5 or 6 minutes after triggering the installation task, this should resolve the policy enforcement issue after the product is deployed. For example, if you have a deployment task set at 5.00pm then you can schedule the wake-up agent task at 5.05pm which will try to enforce the policy.
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.