cancel
Showing results for 
Search instead for 
Did you mean: 

Second policy in HIPS8 Trusted applications.

Jump to solution


Hi Guys,

What is the purpose of hte second policy which we could created in POLICY catalog--> Host intrusion prevention 8 general--> Trusted applications

Under this tab i have 2 policies one of them is effective and the other one is not efective i think that i could create and third one(just tested this and i can created as much as i want)

Thanks to everybody in advance.

1 Solution

Accepted Solutions
McAfee Employee ktankink
McAfee Employee
Report Inappropriate Content
Message 2 of 3

Re: Second policy in HIPS8 Trusted applications.

Jump to solution

For Trusted Application and IPS Rules, you should always have the McAfee Default policy assigned, as well as a custom policy, so you can make changes to the default policy.  Both policies are then rolled up into an Effective policy.

See page 38 of: PD22894 - Host Intrusion Prevention 8.0 for ePO 4.5 Product Guide

View solution in original post

2 Replies
McAfee Employee ktankink
McAfee Employee
Report Inappropriate Content
Message 2 of 3

Re: Second policy in HIPS8 Trusted applications.

Jump to solution

For Trusted Application and IPS Rules, you should always have the McAfee Default policy assigned, as well as a custom policy, so you can make changes to the default policy.  Both policies are then rolled up into an Effective policy.

See page 38 of: PD22894 - Host Intrusion Prevention 8.0 for ePO 4.5 Product Guide

View solution in original post

Highlighted

Re: Second policy in HIPS8 Trusted applications.

Jump to solution

Hi just found the following in the Help of EPO

Assigning one or more instances of the policy to a group or system in the ePolicy Orchestrator System Tree provides for single policy multi-purpose protection.

The IPS Rules policy and the Trusted Applications policy are multiple-instance policies that can have more than one instance assigned. A multiple-instance policy can be useful for an IIS Server, for example, where you might apply a general default policy, a server policy, and an IIS policy, the latter two configured to specifically target systems running as IIS servers. When assigning multiple instances, you are assigning a union of all the elements in each instance of the policy.

Note: The McAfee Default policy for both IPS Rules and Trusted Applications are updated when content is update. McAfee recommends that these two policies always be applied to make sure protection as up to date as possible.

For the policies that have multiple instances, an Effective Policy link appears to provide a view of the details of the combined policy instances.

This is realy clever indeed.

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community