cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Pmaquoi
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 1 of 9
‎06-18-2015 11:23 PM

Question about one of the Agent 5.0.1 known issues

Jump to solution

Hello

In the known issues document for Agent 5.0.1 this is written

Issue: McAfee Agent executables are not whitelisted by VirusScan Enterprise (VSE) 8.8.0 Patch 4 and earlier. Access Protection hits are generated for McAfee Agent executables such as masvc.exe, macompatsvc.exe, macmnsvc.exe, and maconfig.exe if VSE 8.8.0 Patch 4 and earlier versions are installed.

Resolution: This issue is resolved in VSE 8.8.0 Patch 4 JTI Hotfix and VSE 8.8.0 Patch 5.

As the JTI patch seems not published yet and the VSE 8.8 patch 5 can't be used in our domain (because of another knwon issue not corrected yet), i would like to know what to do exactly with all 4 files that are listed if i want to test this new version.

Is it enough to add them as whitelisted into all McAfee autoprotect rules ? or do i have to add them in other rules too ?

0 Kudos
Reply
1 Solution

Accepted Solutions
PhilR
Level 12
Report Inappropriate Content
Message 6 of 9
‎06-19-2015 01:39 AM

Re: Question about one of the Agent 5.0.1 known issues

Jump to solution

This is the KB article you need to read:

VirusScan Enterprise 8.8 could block McAfee processes after installing or updating McAfee products

https://kc.mcafee.com/corporate/index?page=content&id=KB84087&locale=en_GB&viewlocale=en_GB

Cheers,

Phil

View solution in original post

0 Kudos
Reply
8 Replies
Troja
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 2 of 9
‎06-18-2015 11:52 PM

Re: Question about one of the Agent 5.0.1 known issues

Jump to solution

Hi,

does this result in an endpoint which is stuck at the logon?

What is the JTI Hotfix?

Cheers

0 Kudos
Reply
Pmaquoi
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 3 of 9
‎06-19-2015 12:00 AM

Re: Question about one of the Agent 5.0.1 known issues

Jump to solution

JFI : Don't know yet as it is not yet published but one McAfee contact told me that it was a VSE 8.8 P4 update for TIE communication.

for your first question, can't answer as my question is there for helping me beginning the alpha test procedure for this new version.

0 Kudos
Reply
Troja
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 4 of 9
‎06-19-2015 12:20 AM

Re: Question about one of the Agent 5.0.1 known issues

Jump to solution

Ahhh,

perhaps you mean HF929019. This HF is included in the TIE product. I´m not absolutely sure if it is that hotfix. But, this HF enables TIE/DXL enforcement on your endpoint.

I found another helpful KB article: https://kc.mcafee.com/corporate/index?page=content&id=KB81930&actp=null&viewlocale=en_US&showDraft=f...

At the moment we have a problem at a customer. The System stucks at logon after upgrading to Agent 5.0.1. Will see if Access protection Triggers this problem.

Cheers

0 Kudos
Reply
Pmaquoi
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 5 of 9
‎06-19-2015 12:52 AM

Re: Question about one of the Agent 5.0.1 known issues

Jump to solution

Perhaps it is that one but i really don't know

McAfee wrote "VSE 8.8.0 Patch 4 JTI Hotfix" so nobody could know exactly what it really means

0 Kudos
Reply
PhilR
Level 12
Report Inappropriate Content
Message 6 of 9
‎06-19-2015 01:39 AM

Re: Question about one of the Agent 5.0.1 known issues

Jump to solution

This is the KB article you need to read:

VirusScan Enterprise 8.8 could block McAfee processes after installing or updating McAfee products

https://kc.mcafee.com/corporate/index?page=content&id=KB84087&locale=en_GB&viewlocale=en_GB

Cheers,

Phil

View solution in original post

0 Kudos
Reply
Pmaquoi
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 7 of 9
‎06-19-2015 01:52 AM

Re: Question about one of the Agent 5.0.1 known issues

Jump to solution

Thanks, that's more clear like that.

just missing the maconfig.exe file  that is mentionned into the known issues but i'll add it if necessary

Perhaps one fine thing next time would be for intel security to let the community write release notes and known issues. Would be more clear.

😉

0 Kudos
Reply
wwarren
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 8 of 9
‎06-19-2015 06:51 AM

Re: Question about one of the Agent 5.0.1 known issues

Jump to solution 

Perhaps one fine thing next time would be for intel security to let the community write release notes and known issues. Would be more clear.

Part of me loves this idea, another part is stuck in logic loops trying to solve how it could possibly happen .

I got a little lost in trying to follow what you were saying about maconfig.exe. Are you saying it needs to be added to KB84087? (if you can post for me an Access Protection log example showing it was being blocked, it would help)

Regarding the "VSE 8.8.0 Patch 4 JTI Hotfix", that is HF929019 as mentioned. It could be written more verbosely as "VSE 8.8.0 Patch 4 JTI Hotfix 929019".

William W. Warren | S.I.R.R. | Customer Success Group | McAfee
0 Kudos
Reply
Pmaquoi
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 9 of 9
‎06-21-2015 11:24 PM

Re: Question about one of the Agent 5.0.1 known issues

Jump to solution

maconfig.exe is missing from the KB mentionned by PhilR.

But this file is listed as a fourth file into the known issue. So i will add it to the exclude list if necessary. not the case actually

For the "VSE 8.8.0 Patch 4 JTI Hotfix 929019", this is the perfect exemple of a "community rewrite" 😉

0 Kudos
Reply
You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community


Corporate Headquarters
6220 America Center Drive
San Jose, CA 95002 USA

Consumer Support   |   Enterprise Support   |   McAfee.com

Legal   |   Privacy   |   Copyright © 2020 McAfee, LLC