Correct, using the .MSI file is not supported (and has caused installation issues); the McAfeeHIP_ClientSetup.exe must be used (even if deployed via non-ePO deployment methods). The supported methods of deploying the product are documented in the HIPS 8.0 Installation Guide, Page 35.
PD22891 - Host Intrusion Prevention 8.0 Installation Guide
Thanks Kary! I was thinking that was the case but wanted to be positive when I tell my management.
FYI, you actually can deploy the product via msi but you have to provide a transform and define the default required properties when doing so. The "bitness" detection logic in the wrapper (the .exe) isn't the most accurate so we circumvented the wrapper this way.
This likely isn't a supported method so do so at your own discretion.