mcafee agent after changing the computer

does it need to delete record from EPO when a computer changes with another machine with same host name
  or can it do automatically
techpAsked:
Who is Participating?
 
szichenCommented:
Hi techp,

This according to McAfee:. I suggest setting a server task for this. Refer to this link: https://thegr8thurston.wordpress.com/2010/04/16/duplicate-mcafee-agent-guids/


The McAfee Agent Global Unique Identifier is created when the agent is installed on a machine.  The GUID is specific to McAfee and cannot be changed by renaming the machine or running any tools such as SYSPREP.  If a machine is cloned and the registry keys referenced above are not removed the database will be populated with duplicate GUIDs for different machine names.  The data in the database is then falsified because it is not populated with the correct machine properties in the database tables.

Live Systems with Duplicate GUIDs

In the event that machines are already in the environment and possibly have duplicate GUIDs perform the following steps depending on the ePO Server Version.

ePO 4.0 Agents

Open Registry Editor
Click Start | Run type Regedit
Navigate to [HKEY_LOCAL_MACHINE\SOFTWARE\Network Associates\ePolicy Orchestrator\Agent]
Right-Click MacAddress and select Delete
Right-Click AgentGUID and select Delete
Restart the machine so that the Agent checks into the ePO server and creates a new Agent GUID.
ePO 4.5 Agents

Log into ePO via IE or Firefox
Select Menu | Automation | Server Tasks
Select Run on the task named Delete Agent GUID – remove systems with potentially duplicated GUIDs
Select Run on the task named Duplicate Agent GUID – clear error count
Issue a wakeup call to all the systems so that they check in and create new GUIDs if necessary.
0
 
szichenCommented:
If you have set ePO to synchronize with Active Directory then it should be done automatically when the task is run to sync with AD. Otherwise, the workaround is to delete the machines manually from the ePO system tree.
0
 
techpAuthor Commented:
hello szichen,

   if epo synchronize with AD , will it delete duplicate ? as like when a computer changes with another hardware , host name gets same but ip and mac are different
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

 
szichenCommented:
I believe in ePO they are mapped to the Mac Address so to answer your question, if a machine is not removed correctly from the network (i.e. removing it from the domain), it will still have entries in ePO and AD and therefore the duplicate entries will need to be removed manually. In order for the synchronization task to work automatically, the machines need to be removed from the network the correct way.
0
 
techpAuthor Commented:
what do you  mean by "the machines need to be removed from the network the correct way. "

 how to avoid duplicate entries ?
0
 
szichenCommented:
Techp,

If you remove the machines from the network by deleting it from AD, i.e no record exists in AD, and then the sync between ePO and AD runs, then the entry will be removed in ePO. However, you will have duplicate entries if you reload a machine with the same name without the record being removed from ePO i.e. before the sync with AD. In saying all this, it is hard to avoid duplicate entries. Every now and then we have to remove the duplicate entries from ePO manually. The best process is to delete the entry in ePO when deleting that machine. if you have a checklist for machine reloads, I suggest adding it to your checklist.
0
 
techpAuthor Commented:
hello szichen,

 cant it make automatic ?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.