Solved

Can't update McAfee ePO from 4 to 4.5

Posted on 2010-09-01
20
1,166 Views
Last Modified: 2013-12-09
I've been trying to get ePO updated from 4 to 4.5, I tried to run the 4.5 install but it said "Incompatible product detected so stop the install".  The minimum requirements for 4.5 is 4 with patch 3 or higher so I installed patch 6 while is the latest for 4.0 but still getting the same message.  Below are the relevant lines from the install log.

1: 13:30:10 ePO450CALog: Setup detected ePO 4.0 without Patch 3 or higher. This upgrade is not supported so stopping the install.
1: 13:30:10 ePO450CALog: Patch install NOT detected so skip patch number detection.
1: 13:30:13 ePO450CALog: FAILURE: Incompatible product detected so stop the install.


I found this article but this key exists and all the values check out.  I've tried incrimenting the version values to see if that's what the installer checks for but apparently not...

https://kc.mcafee.com/corporate/index?page=content&id=KB65548
0
Comment
Question by:ebooyens
  • 11
  • 9
20 Comments
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33576401
Are you logging into the machine as your EPOAdmin account or as the local administrator of the server to do the install?
0
 
LVL 4

Author Comment

by:ebooyens
ID: 33576456
Thanks, what I know about McAffe AV is dangerous so this might be the issue.  I'm logging on as the domain admin account but I can see this account is also a member of "ePO User Group" in AD.  I was able to do the 4.0 patch 6 install so would that be sufficient?
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33576499
No.  Log into the machine with the local administrator account (this should NOT be a DC, so you should be OK with this).  During the setup process, you will need to input info about the ePOAdmin account.  Again, this should NOT be your Domain Admin account, but it should be an account with sufficient privileges to install and modify software across all computers in your domain (and members of the Domain Admins group have that right).
0
NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

 
LVL 4

Author Comment

by:ebooyens
ID: 33576676
OK thanks.  But I'm not getting to that stage yet, any ideas on getting around this version check or why it thinks I don't have the right patch level?
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33576719
Well, for kicks, can you try to run the install again logged in as the local Administrator account?  ePO can be persnickety.
0
 
LVL 4

Author Comment

by:ebooyens
ID: 33576973
I just realised this is in fact a DC...  So is it a requirement of ePO to be installed on a member server?

I've re-installed 4.0 patch 6 now logged in as a different domain admin account but the 4.5 install still fails with the same error.

Thanks
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33577068
It is not a requirement, but it causes a LOT of extra traffic to the server, which can adversely affect the performance of AD.  It also changes how you install.

First, replace this line:

"InstallSource"="C:\\Documents and Settings\\Administrator\\Desktop\\ePO400P4\\"

with this:

"InstallSource"="C:\\Documents and Settings\\USER PROFILE PATH\\Desktop\\ePO400P4\\"

where USER PROFILE PATH is the correct location of the ePO installation media (assuming it is indeed, on your desktop).
0
 
LVL 4

Author Comment

by:ebooyens
ID: 33577399
So this is to the path of the 4.0 install files?  So in my case ePO400P6?

And this is the line in registry I assume?  I'm guessing from the double back-slashes that this would be if I did a registry import, so the actual registry entry should be single single back-slashes?

With the path pointing to the ePO400P6 folder with single slashes I still get the same I'm afraid.

I'm tempted to just uninstall and install 4.5 from scratch.
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33577755
Well, that is an option.  You can uninstall the server ePO software but retain the database.  You should be able to use the database you have to do your install of the new software.  How big is your deployment and how much customization of ePO policy do you have in place?
0
 
LVL 31

Accepted Solution

by:
Justin Owens earned 500 total points
ID: 33577769
Sorry... I accidently hit the TAB.

Another option would be to do an export of your custom policies (if you have any).  In this way you would be able to import them into a new install, if you choose that path.
0
 
LVL 4

Author Comment

by:ebooyens
ID: 33578054
Yeah, I think I'll just have to do that now.  The export sounds like a plan, could you run me roughly through where to find the ability to export?

Thanks
0
 
LVL 31

Assisted Solution

by:Justin Owens
Justin Owens earned 500 total points
ID: 33578633
This is from memory, as I don't have access to an ePO 4.0 server at the moment...

In the main dashboard, you should be able to get to your policy catalogue.  You can also get to individual policies from the "browser" type window showing your groups/folders.  Each policy which is not the McAfee default should be exported.

A decent resource of a real world scenario:

https://community.mcafee.com/message/55614


Justin
0
 
LVL 4

Author Comment

by:ebooyens
ID: 33578995
Thanks, I'll have a go
0
 
LVL 4

Author Comment

by:ebooyens
ID: 33595037
Right, so I've exported the important policies and made a backup of the security keys.  Any ideas on how to re-import these keys so the clients can start talking to the server?

Thanks!
0
 
LVL 4

Author Comment

by:ebooyens
ID: 33595086
Would help if I tried the EDIT button in the corner...
0
 
LVL 4

Author Comment

by:ebooyens
ID: 33595191
It seems I didn't export the keys in the right way so can't import them again.  Is there a simple way to get those system back on ePO or would I need to run something on the clients to get them registered again?

Thanks
0
 
LVL 31

Assisted Solution

by:Justin Owens
Justin Owens earned 500 total points
ID: 33596336
On the new server, just send out an Agent Wake Up call and force a new client install over the existing client.
0
 
LVL 4

Author Comment

by:ebooyens
ID: 33617427
Thanks for all the help on this, could I ask one last quick thing and I'll close this one then

I've pushed out the client to all machines, tried a number of ways, but there are still a couple of machines showing as unmanaged.  Is there a way I can just do the install manually from in front of the PC themselves to get them back as managed in ePO?

Thanks!
0
 
LVL 31

Assisted Solution

by:Justin Owens
Justin Owens earned 500 total points
ID: 33618012
Yes.  Use the ePO server to create an agent install package.  You can then copy that exe to any machine you need to manually run the install.

KB: https://kc.mcafee.com/corporate/index?page=content&id=KB51661

Justin
0
 
LVL 4

Author Comment

by:ebooyens
ID: 33618043
That's great, thanks all
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

For those of you actively in the Malware fightling business, we now have available an amazing new tool in the malware wars (first recommended to me by rpggamergirl (http://www.experts-exchange.com/M_3598771.html), the Zone Advisor for the Virus and …
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question