cancel
Showing results for 
Search instead for 
Did you mean: 
Erik
Level 9
Report Inappropriate Content
Message 1 of 5

TIE and Citrix

Hi,

Is the TIE client as component for ENS10.5 supported on Citrix XenServer yet?

Any formal documentation with regard to Citrix?

Thanks.

Erik

4 Replies

Re: TIE and Citrix

No formal documentation as far as I'm aware. Citrix offers several articles on AV exclusions that you really should read and consider. 

With ENS 10.5, you can use TIE 10.2 and deploy that to Citrix and other endpoints. I'm no Citrix specialist but what I do know is that if you use Xen, you already have a form of application whitelisting at your disposal. You could leverage that instead of TIE to meet any performance considerations you may have. Also, I would recommend to test it well before you deploy.

Reliable Contributor bretzeli
Reliable Contributor
Report Inappropriate Content
Message 3 of 5

Re: TIE and Citrix

This will strugle MAYBE to date because WE think to get TIE running right and together with the ATD SANDBOX

you will need to use Mcafee ENS 10.5.1 (And not VSE). We had problems in running 10.5 in general in heavy Terminal Server.

Thus currently all our Terminal Servers customers are running VSE 8.8 Patch 9. And thus they are protected

less against actual threats.

Also i see a problem of managment and change management with those people. The typical CITRIX is used to

do 85% of the things he needs himself. Often this is why they USE Terminal Servers. They often have no real change

management in Citrix Servers. There are excpetions like banks or large enterprise but thats how we see it with customers

up to 2'000 clients. If there is a Software Deployment they are used to change managment and they test things 20 times on a VM before they release

a package to all clients. Often CITRIX guys JUST install and if it works they install it on the other Citrix Servers once. If it breaks well they do a new Citrix server. ;-(

The problem is to get those people INTO the change managment you NEED with TIE. At least if you want to get protected real

and DONT run anything that us UNKNOWN (Not only Mailicious).

If anyone else sees it in any other awy with ENS 10.5.1 and TERMINAL Server please mention it here...

Reliable Contributor chrisnlc
Reliable Contributor
Report Inappropriate Content
Message 4 of 5

Re: TIE and Citrix

Hi Bretzeli,

In your customer pool did/have you have any issues with ENS 10.5.2 on Citrix servers? I upgraded 10.5.1 -> 10.5.2 and there was an unspecified hang (the admin respawned the server before I could troubleshoot it).

thanks

_Chris.

Highlighted
Reliable Contributor bretzeli
Reliable Contributor
Report Inappropriate Content
Message 5 of 5

Re: TIE and Citrix

Hello,

 

05.06.2018, Update to question on ENS and Terminal Server. We have now ENS 10.5.3 and 10.5.4 running on 2016 Terminal Server Citrix. This looks fine and EVEN the Citrix Terminal people which don't like Virusprotection seem to be happy. Never heard of aynthing. Currently 8 Servers out at one larger customer and all looks fine. You can use ENS 10.5.4 on TS2016 i would say.

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community