cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Agent Handler Repository

I have an internet facing Agent Handler to which systems connect when they are over Internet. So when these systems can't reach the EPO Master repository they contact the Agent Handler and get the updates from Agent handler which itself caches its repository from the EPO Master Repository. Suppose in Repository policy, I disable the EPO repository and add McAfee HTTP as fallback. Then the systems when on internet, can't access EPO & Agent Handler repositories but take updates from McAfee HTTP right?

Also here only EPO repository is disabled, means systems after taking updates from Mcafee HTTP will still connect with Agent Handler (since it is configured as the handler for these systems) and the updated info will reflect in the EPO. RIght?

2 Replies
Hem
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 2 of 3

Re: Agent Handler Repository

I have an internet facing Agent Handler to which systems connect when they are over Internet. So when these systems can't reach the EPO Master repository they contact the Agent Handler and get the updates from Agent handler which itself caches its repository from the EPO Master Repository. Suppose in Repository policy, I disable the EPO repository and add McAfee HTTP as fallback. Then the systems when on internet, can't access EPO & Agent Handler repositories but take updates from McAfee HTTP right?

Answer: Yes, correct.

 

Also here only EPO repository is disabled, means systems after taking updates from Mcafee HTTP will still connect with Agent Handler (since it is configured as the handler for these systems) and the updated info will reflect in the EPO. RIght?

Answer: Correct. We are disabling only Repository option. Other features will completely work like communication etc.

cdinet
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 3 of 3

Re: Agent Handler Repository

Keep in mind that the only updates you will get from the http site are the content updates - amcore, dats, etc.  Any product patches would need to go to the epo repository.  There is also a default internal agent task that runs at midnight every night to pull any updates for the agent msgbus certs and that will send a failed update event back to epo because it can't reach epo repository to run the detection script.  What is the purpose for not allowing agents to use the epo as master repo (including agent handler in dmz)?

Was my reply helpful?
If this information was helpful in any way or answered your question, will you please select Accept as Solution in my reply and together we can help other members?

You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community