I would start by building the new ePO. Then somewhere along the lines of:
- add the security keys from the old ePO's into the new
- add the seucrity key from the new in the old
- make sure port traffic comm is open between old/new server
- register the new ePO in the old
- export all your client tasks/server tasks/policies/queries/tree/tags/etc. and import them into the new
- Assign policies into new tree
- Starting transferring agents from old ePO's to new
There is more to it then that, and that's not the only way of doing it, but something you could do.
Remember, the Agent uses either the last known IP address, DNS name, or NetBIOS name of the ePO server. If you change any one of these, ensure that the Agents have a way to locate the server. The easiest way to do transfer machines is to retain the existing DNS record of the old ePOs and change it to point to the new IP address of the new ePO server. After the Agent is able to successfully connect to the new ePO server, it downloads an updated SiteList.xml with the current information.
That's really helpful - thank you.
Is there any downside to creating a fresh new server and install and then deploying the agents again. I know I would have to create the policies again but I think that would be fine.
The easiest way I've done it is to just build everything out, then just change the DNS record of the old epo to point to the new, then they will start pouring into the new. Just make sure you have the security keys from the old in the new.
But yeah, you could just re-deploy the agent from the new once its built, but just creating more work. I've found it easier to just build the new, configure it, then transfer or redirect via DNS.
Best way would be to build a new 2008R2 server and use the migration tool to migrate from 4.6.x on the old box to 5.1.2 on the new one.
Pay careful attention to SQL versions used by the old ePO installation and required by the new one.
Give the new box the same IP as the old and hopefully all would work just fine.
The Knowledge base does have an entry which covers registering servers and importing server keys here:
McAfee Volunteer Moderator
Certified McAfee Product Specialist - ePO