FramePkg
  • Home
  • About
  • Procedures
    • ePO Upgrade
    • ePO Architecture
    • BackUp ePO
    • How To Uninstall McAfee Client Manually
    • McAfee Drive Encryption
    • TIE Guide - A to Z Steps
  • ePO
  • VSE
  • DLP
  • HIPS
  • Solutions
  • Tips
  • Videos
  • Online Updates

how to configure Device control to allow wifi when not connecting to the corporate (without lan) or on VPN

16/3/2017

0 Comments

 
The following will show how to configure a device control rule to allow computers to use wireless outside the organization with or without VPN and block the WIFI devices when the computer is in the corporate network (connected via cable).

​Go to Policy Catalog, edit the agent configuration->corporate connectivity.
Under "corporate VPN Detection" choose an IP Address and port that is available only when connecting via VPN.
Picture
Network Adapter is unmanaged by default, so you need to change it to Managed.
Go to DLP Policy Manager->Policy Assignment
Under your policy click on edit (Policy Setting)
Picture
Setting->Device Classes
Under Device Class name choose Network Adapter and click add
Click Save
Picture
Now we will create the Wifi Definition:

​Go to DLP Policy-> Definition-> Device Definitions


Picture
Action-> New -> Plug and play Device Definition
Picture
Choose a name for the WIFI Definition
On the right, click on Device class and choose "Network Adapter (Unmanaged)" or "Modems/Faxes"

Note: Don't worry about the "(Unmanaged)" we already changed it to Managed by the Rule Set

On the right click on "Device Friendly Name " and write all the patterns that WIFI devices can include in your organization.
Note: The picture shows my recommendation 
Picture
Now we will create a rule to allow Wifi for laptops
​Go to Rule set

Action -> New Rule -> Plug And Play Device Rule
Write a Name, click Ok to finish
Picture
​Click on the new rule set
Status Enable
DLP Version 10 - Choose Windows, remove MAC and choose severity level
Under Condition choose which Users the rule will applied to
Choose the WIFI Definition we created

If you need more exceptions, configure it on the exceptions tab
Picture
Under Reaction Choose the following:

Computer connected to corporate network:
Prevent Action - Block
User Notification: choose the popup to the user
Report Incident: choose if you want an incident or not
​
Computer disconnected from the corporate network:
Prevent Action - No Action
User Notification: choose the popup to the user
Report Incident: choose if you want an incident or not

Computer connected to corporate network using VPN:

Prevent Action - Block
User Notification: choose the popup to the user
Report Incident: choose if you want an incident or not
Picture
0 Comments

McAfee dlp - Drivers installation failed

12/9/2016

0 Comments

 
Problem:

DLP Endpoint Status Driver installation failed

McAfee Data Loss Prevention 9.4.x

Solution:

-Uninstall the DLP agent, you will need to restart the system
-Make sure all data of the DLP as been deleted, if not do the following:
1. Open the registry and search the version of the DLP endpoint and replace the value to a lower version(If the version is 9.4.214.12 change the value to 9.4.214.11)
2.  Go to C:\Program Files\McAfee , Delete the folder DLP
If you failed to delete all DLL file, restart the system and try delete the all files in the DLP folder
3. Reinstall the DLP Endpoint, restart the system.

The problem as been solved and the DLP Endpoint status changed from "Drivers installation failed" to "Agent is running..."

I have solve this issue with McAfee DLP Agent Version 9.4.214.12
McAfee Agent(MA) 4.8.x, 5.x, 5.0.x


0 Comments

Install mcafee dlp on a standalone

21/5/2016

0 Comments

 
How to Install McAfee Data Loss Prevention on a stand alone system with no connection to ePO Server

Follow those instructions:

Policy

Version 9.3.x and less - From DLP Policy in ePO console export the policy.
you will only need 2 files:
both file will need to with those names:(by extension)
-GlobalPolicy.opg
-GlobalPolicy.opgc

Version 9.4.x and less​ - To export the policy we want to enforce on the stand alone system we will go to managed system with McAfee DLP client installed.

From this location:
C:\ProgramData\McAfee\DLP\Temp\Policy
Copy those files:
-GlobalPolicy.opg
-Configuration.opg

Change the name of the file "
Configuration.opg" to "GlobalPolicy.opgc"

GO to the standalone system and install the McAfee DLP, make sure you install the correct one there is 32\64bit version, At the finish of the installtion you will require to restart the system DO NOT RESTART ! ! !

Open the registry(Start-> run -> regedit)
Go to:
HKEY_LOCAL_MACHINE\SOFTWARE\McAfee\DLP\Agent

Create a new key "PolicyInjection"
Under the new key "PolicyInjection" Create:

1. PolicyInjectionRefreshIntervalInSec = 00000003 (this value is type DWORD)
2. PolicyInjectionFolder = c:\Temp\PoIicy (this value is a string and can be any valid path on your machine.) 

Copy to the folder "C:\Temp\Policy" the 2 policy files: 
-GlobalPolicy.opg
-GlobalPolicy.opgc

Restart the system at list 2 times. 
0 Comments

DLP 9.X THE GLOBAL POLICY IS CURRENTLY BEING APPLIED BY ANOTHER USER

21/5/2016

0 Comments

 
Problem:

When trying to apply and deploy a new policy from dlp policy, there is an error:


the global policy is currently being applied by another user


Solution:

Clear the IE browser cache and settings. To clear the cache:

In Internet Explorer, go to Tools, Internet Options.
On the General tab, under Browsing history, click Delete.
On the Advanced tab, click Reset.


Close all browsers and try again.
HOW TO PURGE OLD MCAFEE DLP EVENTS
0 Comments

FAILED INSTALLING DLP ENDPOINT AGRENT

21/5/2016

0 Comments

 
Problem:
Failed to install Data Loss Prevention 9.x.
failed to deploy DLP agent from ePO and install it manually.

Solution:

Go to Add/Remove program and uninstall all the program start with Microsoft Visual C++.
After uninstall all the Microsoft Visual C++, Restart the system.

Open a command prompt and run the command:(depending on the operation systems)

DLPAgentInstaller.x64.exe /extract
DLPAgentInstaller.x32.exe /extract

On the folder the DLPAgentInstaller.x##.exe exists you will see those files:
DLPAgentinstaller.msi
DLPAgentinstaller.exe
En_visual_c_pp_2010_sp1_redistributable_package_x64_651767.exe
En_visual_c_pp_2010_sp1_redistributable_package_x86_651767.exe
Vcredist_keyview_x64.exe

Install:
1. En_visual_c_pp_2010_sp1_redistributable_package_x86_651767.exe
    or
    En_visual_c_pp_2010_sp1_redistributable_package_x64_651767.exe
2. Vcredist_keyview_x64.exe

3. DLPAgentinstaller.exe

If you failed to install the Microsoft Visual C++, if you have an error:
"
Error 1935.An error occurred during the installtion of assembly 'Microsoft.VC80.CRT,Type="win32",publicKeyToken="1fc8b3b9a1e18e3b" ,processorArchitecture="amd64"'. Please refer to Help and Support for more information"

Connect with Microsoft support  
​
HOW TO PURGE OLD MCAFEE DLP EVENTS
0 Comments

DLP - PRODUCT EVALUATION PERIOD HAS EXPIRED

21/5/2016

0 Comments

 
Issue:

The product evaluation period has expired. Please contact you system administrator

Cause:

When you installed the DLP extension you didn't update the license of DLP.
DLP is one of the only McAfee Products that need a license update in ePO server. 

Solution:

-Download the DLP product from the Partner site in McAfee website, the                               archive: McAfeeDeviceControlXXLicensed.zip
-Extract the archive and open the file McAfeeDC94LicenseKey.txt
-Inside copy the license XXXX-XXXX-XXXX-XXXX
-Log on to ePO server
-Go to Menu | DLP Policy | Help | Update License
-Click Update and copy the license key, click Apply
-The DLP Policy will need to restart and update

0 Comments
    Picture
    View my profile on LinkedIn

    Archives

    March 2017
    September 2016
    May 2016

    Ebates Coupons and Cash Back

    Categories

    All

    Buy me a coffee:)