8 Replies Latest reply on Apr 3, 2017 5:58 PM by johnmoe

    ENS as a single install?

    sjdelvecchio

      With VirusScan, if there was an issue with deploying from ePO we could always send the user to a Windows share and say install VSE using the Setup file, now with ENS and everything being a separately installed module (What a pain) I'd have to have them install the Platform, Threat Protection, Adaptive Threat Prevention, Firewall and Web Control all individually.

       

      Has anyone come up with a script or better way to install all of these in a single shot manually beyond using an ePO URL install?

        • 1. Re: ENS as a single install?
          tao

          Perhaps, create a winrar SFX of ENS with the following SFX commands:

           

          ;The comment below contains SFX script commands

          Path=%SystemRoot%\Temp\

          SavePath

          Setup="%SystemRoot%\Temp\ENS\setupEP.exe" ADDLOCAL="fw,tp,wc" [INSTALLDIR="install_path"][/qb][/qb!][/ l*v"install_log_path"]

          Silent=1

          Overwrite=1

           

          SetupEP command-line options (self-managed) Page 47:

          https://kc.mcafee.com/resources/sites/MCAFEE/content/live/PRODUCT_DOCUMENTATION/ 26000/PD26800/en_US/ens_1050_ig_0-00_en-…

           

          Host on a windows share: either GPO policy at logon or E-Mail out the windows share link

          • 2. Re: ENS as a single install?
            awbattelle

            We have created a task with all the steps required and it seems to work quite well.

            Here is a screenshot:

            DeployENS.jpg

            We are still testing it. and this is the one we got to work. We are still not sure if we need the /override"hips" line, or even exactly where it should go.

            Please test this yourself, and provide input.

            Thanks

            • 3. Re: ENS as a single install?
              sjdelvecchio

              This is an ePO deployment which we have, but I need a local manual install for when a tech wants to manually install ENS because they are under a time crunch and can't wait for ePO to deploy before disconnecting from the network or when ePO is having an issue reaching a machine because they now have a different IP address than when they first booted up (DNS issue).

              • 4. Re: ENS as a single install?
                awbattelle

                Guess you will have to script it then.

                • 5. Re: ENS as a single install?
                  tmckinney

                  I'm working on scripting myself.  I've managed a three step process I put into a batch file that installs (1) the agent (framepkg), (2) most of the suite, and (3) threat intelligence.  Essentially:

                   

                  framepkg.exe

                  setupEP.exe ADDLOCAL="tp,fw,wc" /quiet /passive

                  setupTIE.exe

                   

                  Obviously you would have to add paths to your share.  To install the suite, I have had to use the "Standalone" installer, but in conjunction with the *managed* agent from your ePO server, it should be the same as an ePO deployment via modules.  The 'ADDLOCAL="tp,fw,wc"' option adds in the modules after the "platform" is installed.  I'm still in the testing phase on this, so your mileage may vary.  Incidentally, the setupTIE.exe install tends to run quietly, but will show up as a module in the suite shortly after install.

                   

                  Note, the AMCore content (DATs, essentially) probably won't be updated initially, so you'll have to make sure your installer updates your install, or it's a lead balloon.

                  1 of 1 people found this helpful
                  • 6. Re: ENS as a single install?
                    johnmoe

                    If you're deploying the TIE module, I presume you have a TIE/DXL topology.  Don't forget to include the DXL client in your scripted install so the systems can communicate with TIE.  My SCCM command line for that install is just: "dxlsetup.exe /install /quiet /norestart"

                     

                    Also, if your Agent Repository policy is set to update from McAfee as a fallback (this needs to be in place when you generate the FramePkg.exe installer), then connectivity isn't needed back to ePO to get the AMCore (DAT) update; they should try to contact your ePO server, and when that fails, fallback to McAfee's servers.

                    • 7. Re: ENS as a single install?
                      sjdelvecchio

                      We're not using TIE, so I don't have to mess with it.

                      • 8. Re: ENS as a single install?
                        johnmoe

                        If you're not using TIE, then there's no need to install the TIE/ATP module into ENS, which simplifies your install.  :-)