4 Replies Latest reply on Nov 17, 2008 10:18 PM by mrgui

    Offline install

      Hi,
      what type of installation set is suggessted for laptops online/offline for SafeBoot version 5.1.4(where the lpatops will be connected with the server atleast once in 15 days in the present implementation). Where can i find the documents related to that? I could not find in the Mcafee website.

      --Moorthi
        • 1. RE: Offline install
          if the device will be connected at time of install, use online, if not, offline.
          • 2. RE: Offline install
            Avoid offline installs if at all possible. They are nearly impossible to manage, in the fact that you would have to manually get the sbxfer.sdb from each machine. Additionally, you would not be able to easily publish updates to the software, with out replacing the sbxfer.sdb with an updated one (specifically for each machine).

            You could try a hybrid... where it installs offline, builds its own key, encrypts, but has a server defined for when it does synch. I haven't tried it, so let me know how that goes.

            Another problem with offline installs is that user accounts and passwords get very messed up, unless you are using some sort of standard account for all offline installs.
            • 3. RE: Offline install
              you might have missed something here - an "offline install" is exactly that - an offline >install<. It's assumed the device will be online at some point in the future for policy sync etc.

              the case of permanently offline machines is so very rare nowadays anyway, after all, who doesn't pick up email occasionally? Remember, the EEPC/EEFF products only require an IP connection to a dns name to do policy work.

              S.
              • 4. RE: Offline install
                The reason I mention that is because we actually have a few machines in a truly offline mode. We encrypt out Disaster Recovery testing servers prior to shipping to another facility (to prevent data loss or system tampering). Since the only true DR test assumes that all of the normal production systems are gone, they are never attached to a real network.