I've recently deployed Microsoft DirectAccess (Server 2012 R2 and all Win 8.1 clients) and was under the impression that since the ePO agent uses the FQDN of the ePO server to communicate back to that server that agent communication should work over DirectAccess without Manage Out setup. I have ePO 5.3 deployed and this does not seem to be the case. In the Agent Monitor I typically see "Agent is connecting to ePO server" followed by "Agent failed to communicate with ePO Server" a few minutes later. I have verified that while this is happening I'm able to connect to the ePO server web interface. What am I missing here? Is "Manage Out" required?
From what I can tell, as we have the exact same issue, the McAfee agent first attempts to connect via the IPv4 address in ServerSiteList.xml - which obviously won't work via DirectAccess.
We have 'Manage Out' enabled, and it works great for everything EXCEPT ePO/McAfee Agent. ePO can send a wake-up to the DirectAccess clients, but they cannot communicate back, due to the IP4 requirement.
I don't know if there are any workarounds, but I'm going to be opening an incident with McAfee/Intel Support
UPDATE: I'm having fun with McAfee support. They seem to think this is a TCP port issue, which it most definitely is NOT. I've responded to them to attempt to explain the issue again. Hopefully this will get escalated to someone who understands how the agent actually communicates and how this is an issue with DirectAccess and IPv6 systems.
I've got an incident open with support. They initially responded with "open a product enhancement request", at which point I brought this to our McAfee partner and our McAfee rep directly.
I just received a confirmation that they're working on a patch for the agent and it should be available soon.
Good to know... We've been using DirectAccess for quite some time & haven't had these issues with McAfee Agent 4.8 (to ePO 5.1.1). Will have to make sure this is fixed before we upgrade.
Actually... YES! Sorry for not updating here. McAfee support issued a hotfix, HF1108716. This brought the agent version up to 126.96.36.1995.
They have since released additional patches for the agent, but we haven't yet tested if those patches include this fix. I would expect that they do.
UPDATE: The release notes for 188.8.131.523 seem to indicate this is fixed in that RTW patch. We have confirmed this with our testing.