cancel
Showing results for 
Search instead for 
Did you mean: 

ENS 10.5.5 deployment shows Exploit prevention disabled in the task bar

Team,

We are deploying ENS 10.5.5 in our organisation and during pilot installation we have observed that in the task bar, right click on McAfee icon shows "Issue Detected" McAfee Exploit Prevention is disabled"

However when we check the Exploit Prevention module in the ENS console locally on the client machine, the Exploit Prevention module shows enabled 

Please check attached screenshot. Going through the earlier post on community for a similar issue, we understand that we may have to run tool to identify and check if there is any third party application trying to inject dll into McAfee process and investigate further. however, if this is the cause, it may be different dlls on diff machines which may be trying to inject..

 

In our big environment it may not be possible for us to check this on all the machines. Is there any bug due to which EP module shows as disabled in the task bar. 

Is there a way we can fix this notification in the task bar. Please check below screenshot

Exploit prevention error.jpg

 

2 Replies

Re: ENS 10.5.5 deployment shows Exploit prevention disabled in the task bar

Can someone please provide some guidance on this request.

We have a deadline for the ENS deployment however if the EP showing disabled in the taskbar, we may not be able to proceed further 

Re: ENS 10.5.5 deployment shows Exploit prevention disabled in the task bar

team,

As we have seen the in the task Bar-McAfee icon shows Exploit Prevention is disabled, however when we open the ENS console we can see that the Exploit Prevention module is enabled

Now we tried to check if the EP module works or not. For that we enabled the signature ID -1157- USB Storage Device Inserted on the affected machine. Though the policy enforcement was successful however still the USB was not blocked and user was able to access the USB from that machine 

When we enabled the same signature for a good machine when EP was showing compliant in the task bar "view security status" the USB was blocked

This goes to show that the systems where the task bar "view security status" is showing EP is disabled, there the EP feature is not working at all, though inside ENS console we can see that the EP is enabled 

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community