Im very new to this but i have a question.
Due to the latest update concerning the DAT version 6809 McAfee warned us that there was an issue if you had installed the earlier versions. More about it here:
Now im wondering if there is an easier way to look for clients who might have this issue. Is there any search function wich i can use? or do i need to just look for it manually?
You are not alone. We have over 73 systems reporting 0.0000. Testing performing and uninstall and then install of VSE 8.8i to see if that fixes the issue. We can't wait for McAfee to release the superdat. This could not have come at a worse time for us, as being a university we are the the middle of fall move-in for the students. Not too sure how to handle students with VSE 8.8 as they are unmanaged and won't be seen by ePO. What a mess this is for McAfee.
So the question now is how can we determine which machines actually have the extra.dat installed?
I don't see that listed as an option in ePO's available properties for query builds.
You can only query for hotfixes via SQL. Bring up studio management and execute the script below against the database. select ln.nodename as Hostname, pp.productversion as Version, pp.hotfix as Patch, ps.value as Hotfix from epoleafnode ln join epoproductproperties pp on ln.autoid = pp.parentid join epoproductsettings ps on pp.autoid = ps.parentid where ps.settingname = 'Fixes' and ps.value like '%793640%' order by hostname
Since we can run a report on events based on the extra.dat detection, why can't we just run a query for the existence of the extra.dat?
Hopefully we can get some feedback from the folks using the Web API tool.
I think this would be a very useful query...or am I the only one?
You have no Internet access and/or see error messages from McAfee on your computer
Mcafee has released this fix instructions...