cancel
Showing results for 
Search instead for 
Did you mean: 

Create Actions in ESM to delete detected trojan/malware

Hi,

 

Im using ESM 10.2, how can I create an actions(command) to invoke deletion of the detected trojan/malware? via ESM

3 Replies
McAfee Employee mherr
McAfee Employee
Report Inappropriate Content
Message 2 of 4

Re: Create Actions in ESM to delete detected trojan/malware

You can use the remote command feature.  You will probably need a tools server/jumpbox to execute the remote command on.  Remote Command can use SSH and run your script on your tools server. 

Re: Create Actions in ESM to delete detected trojan/malware

I have ePO, and using ENS 10 as the AV, can this be done, using other McAfee products as mentioned?

Re: Create Actions in ESM to delete detected trojan/malware

Use ePO tagging.  lots of docmentation available.  Create an Alarm, associate alarm to ePO Tagging, that will automate for you.  

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator