McAfee ePO 4.5 and IIS?

sf09er
sf09er used Ask the Experts™
on
I'm upgrading from ePO 4.0 to 4.5. What McAfee calls "McAfee ePolicy Orchestrator 4.5.0 Server" service is really Apache, AFAICT.

If I stop the WWW Publishing Service (thereby taking Outlook Web Access offline), I can start the ePO service and my VirusScan clients will communicate with the server (McAfee functions normally). But it is not acceptable for my users not to be able to access OWA. So, I stop the ePO services, reset IIS, and OWA works again, but no ePO.

I would imagine that if I could change the ports that ePO uses to communicate with the agents, I could run both IIS and ePO on the same server without conflict. But this is not easily configurable, and McAfee support has been less forthcoming than I would like.

Anyone know how to make ePO and IIS play nicely together?

Thanks.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Author of the Year 2011
Top Expert 2006

Commented:
I was always fortunate enough to have a separate server set aside for all of my security applications and IIS was something that was always disabled.
Is there any way for you to re-arrange the applications on your servers to allow that?
(Not what you asked, I know).
:)

Author

Commented:
That might be an acceptable workaround if I were operating in a multiple-server environment. :)
Author of the Year 2011
Top Expert 2006

Commented:
Well, there is that!
:)

Standby to hear something from 'legalsrl' - he is a full-time partner with a company that does nothing but McAfee deployments & service.
Acronis in Gartner 2019 MQ for datacenter backup

It is an honor to be featured in Gartner 2019 Magic Quadrant for Datacenter Backup and Recovery Solutions. Gartner’s MQ sets a high standard and earning a place on their grid is a great affirmation that Acronis is delivering on our mission to protect all data, apps, and systems.

Author of the Year 2011
Top Expert 2006

Commented:
btw - I have nothing further to add, so please click on the "Request Attention" link in your original post and ask the Moderators to send out an 'Expert Alert'.
Doing so will notify the higher ranking Experts in both these Zones that you need extra attention.

I would also ask them to add "Server Antivirus" and "Enterprise Antivirus" Zones.

Author

Commented:
younghv, will do when I have a chance later or tomorrow. Thank you for your input! :)

For the benefit of those interested in McAfee's doc on changing ports in ePO 4:
https://kc.mcafee.com/corporate/index?page=content&id=KB51559
Commented:
I was able to resolve this issue not by changing ports, but by commenting-out the LISTEN line for port 443 in httpd.conf (~\Program Files\McAfee\ePolicy Orchestrator\Apache2\conf).

There is an option within ePO to disable the "agent-to-server communication secure port" (443) (Configuration > Server Settings > Ports), but evidently this doesn't *actually* disable it.

I hope this helps someone else.
Author of the Year 2011
Top Expert 2006

Commented:
sf09er,
Congratulations!
You just earned your first "Answer" on EE.
Since you have posted the actual solution, just click on the "Accept As Solution" link down in the bottom right corner of your last comment.
That will start the 4-day 'auto-close' process (to allow any Expert comments/complaints) and then your solution will be stored in the EE database of good answers.

Way to go.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial