Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
This discussion is archived
930 Views 4 Replies Latest reply: Mar 12, 2013 2:17 AM by minion RSS
minion Apprentice 199 posts since
Mar 8, 2013
Currently Being Moderated

Mar 8, 2013 7:32 AM

policy not replicating in epo

Hi there guys,

 

Hope you guys can help with this one. New exclusions have been added in the On-Access Default Processes Policies but its not replicating to the agents. Think this might be because of database connection errors but not sure myself. Found the following line in the orion log:

 

2013-03-08 07:55:55,114 WARN  [http-50505-Processor21] element.QueryDashboardElementFactory  - Cannot create dashboard element with query. Reason: user not authorized to access table PAAuditBenchmarkResultView

 

Full logs attached.

 

Regards,

 

Stephan

 

Message was edited by: sgriesel on 3/8/13 7:21:19 AM CST

 

Message was edited by: sgriesel on 3/8/13 7:32:43 AM CST
Attachments:
  • jenkinski Newcomer 27 posts since
    Mar 4, 2013
    Currently Being Moderated
    1. Mar 8, 2013 6:03 PM (in response to minion)
    Re: policy not replicating in epo

    Stephan,

     

    The error you mention won't have anything to do with On-Access policies. The noted error would only have a potential effect on Policy Auditor.

     

    There are too many variables to know for sure. But if you're agent is communicating correctly (which it appears to be), there's probably an inheritance issue foobar. Or what many people forget to do is select 'Server' or 'Workstation' in the policy modifications.

     

    Sometimes the simple answers are the ones we forget about! BTW of course make sure your Apache (ePO Server) is running... that controls agent server comms but isn't necessary for logins and policy mods.

    -KJ

     

    Message was edited by: jenkinski on 3/8/13 6:02:23 PM CST

     

    Message was edited by: jenkinski on 3/8/13 6:03:05 PM CST
  • jenkinski Newcomer 27 posts since
    Mar 4, 2013
    Currently Being Moderated
    3. Mar 11, 2013 10:28 AM (in response to minion)
    Re: policy not replicating in epo

    Perhaps a little more details as to why you believe it is not replicating. What is being blocked/scanned? The assumptions are:

     

    The systems are communicating

    The systems don't have broken inheritance

    You are 'over writing client rules'

    The processes tab for default says to use 'one policy for all processes'

    It is in fact a VSE on-access block and not a HIPS, Artemis or firewall block

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • Correct Answers - 5 points
  • Helpful Answers - 3 points