Does this mean that all of the local client rules that are in place on my machines will need to be recreated once HIPS 8.0 is installed? If so this represents a significant amount of work locally as by last count there were over 700 locally created HIPS rules on my machines.
Yes, local client rules do not migrate. Local client rules exist so that you can make decisions on how to add them to your ePO policy. They are not meant to be retained on the client permanently, as the last step before finalizing the HIPS policy tuning is to disable the "Retain existing client rules when this policy is enforced" option in the Firewall and IPS Options policies, therefore removing all client-side rules from every system (to enforce the ePO policy rules only).
If you have systems that require local client side rules, you need to add these rules to your ePO policy before you migrate to the Host IPS 8.0 product version.
Thanks for the response Kary. We do need to allow local HIPS client rules because of the environment I work in has a varying need for rules that I do not want on devices as a whole or selected group.
Sorry to rehash this but is there a way to copy out the local HIPS 7 rules and then import them back into HIPS 8 even on a machine by machine basis?
Hi. Local rules are meant to be temporary while you are building your ruleset. They do not migrate between versions and there is no way to export/import them locally or via ePO.
Thanks for humoring me once again!