• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 4393
  • Last Modified:

McAfee ePo 4.6.6 Export Policies and Audit Settings

I start at my company six months ago and took over there ePo 4.6.6 enviroment which wasn't documented.

Here are my questions.
1) Is it possible to run a report to view all active policies and there settings to make sure they meet the companie security requirements.

2) Is it possible to export the policies not McAfee groups into a test enviroment which runs a seperate server?

In a nutshell I am trying to find the best way to audit / view all current policies and a way to keep our test epo enviromen semi in sync policy wise
  • 2
  • 2
1 Solution
1) yes, it is called "Policy Catalog", pick ones that have reference count >0
2) yes, but it does not migrate to new version that way
btanExec ConsultantCommented:
Also best practices, can catch
- Main section on
a) "Managing endpoint security with policies and packages"
> By default all policies are inherited from the "My Organization" level, the highest point in the System Tree. This means all policies for all products flow downward into the groups and subgroups below it. Always set your policies at the My Organization level and let your policies flow downward. Probably from the "Menu | Policy | Policy Catalog", you can catch more of the overall Agent policy deployed to various assets/groups

b) "Reporting on your managed environment with Queries"
> The Query Builder and Report Builder creates and runs queries and reports that result in user-configured data in user-configured charts and tables. The data for these queries and reports can be obtained from any registered internal or external database in your ePolicy Orchestrator system.
> also on "Creating custom event queries" fro managed systems


also  - Settings for an existing policy are overwritten by an imported policy in ePO 4.x

and for DLP policy - https://kc.mcafee.com/corporate/index?page=content&id=KB60758&actp=search&viewlocale=en_US&searchid=1384520006363

- How to migrate ePO from a 32-bit system to a 64-bit system (or to a different installation path)
 - How to back up the ePO databases using OSQL commands
- How to back up and restore the ePO database using SQL Server Management Studio

Another ref worth looking is from commoncriteria portal - see the section 7 on "TOE
Summary Specification", specifically for policy, see "7.3.8 Product Policy Management" and "7.3.11 Benchmark Management"

compdigit44Author Commented:
thank you for the replies. I am not the greatest at ePO but learning. I do know wht policy catalog stores all of the policies for ePO. What I am looking for is a way to dump all active policies to a spread sheet or another format so I can view the setting of all policies at once.

i am asking this question because my manager asked me to produce a report for all active polices in ePO and there settings.
btanExec ConsultantCommented:
compdigit44Author Commented:
thanks, it to bad McAfee doesn have a tool that could do this....
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now