Have you checked this support article? https://kc.mcafee.com/corporate/index?page=content&id=KB82389&actp=null&viewloca le=en_US&showDraft=false&platinum_status=false&locale=en_SG&bk=n
(Technical Articles ID: KB82389)
There's a bit to troubleshoot, but at least it seems like your cause can be narrowed down to invalid rule or data source setting.
The error you describe doesn't match the screen shot.
If it's a data source rollout problem,
Disable any custom rules, roll out policy
If its an SSH problem:
You may need to reset the keys on the IPS
Putty or ssh to the ESM and see if you can ssh to the IPS : ssh <ip address of IPS>
If it fails, there is a communication problem
ssh to the IPS (root, password)
run this command
cat /etc/NitroGuard/factory-id_rsa.pub > /root/.ssh/authorized_keys2
This will set the keys on the IPS back to default
Rekey the IPS from the ESM Console
I would remove the NSM and re-add it. then I would console into the ESM and try to ssh into the NSM and ensure the ESM has the ssh key for the NSM then try to rollout policy.