Avatar of joukiejouk
joukiejouk
 asked on

McAfee VSE is in an unstable state. On-acess scan and Acess Protection are disabled

We have 400 Windows server 2003 machines within a container in ePO. The policy is set so that Acess protection is enabled as well as on-access scan.  We found that the servers when you do a remote desktop into them on-acess scan and access protection are disabled. When we try to enable them it would not allow us to. We've come to the conclusion that VSE  is in a broken state. We cannot do anything from EPO to administer it and we are having a bunch of error message when trying to uninstall it locally from the machine.  We've contacted McAfee support and they mentioned that we need to uninstall and reinstall and gave us a ripper tool to do so. The only problem is we would have to manually re-install McAfee for 400 machines. Is there a simpler  process to resolve this from an EPO standpoint?
Anti-Virus AppsOS SecurityWindows Networking

Avatar of undefined
Last Comment
btan

8/22/2022 - Mon
btan

Apoarently epo deployment task does not have a reinstall option. It simply has does an install or inplace upgrade. Looks like more of a batch job to do the removal..e.g. the batch script is maintained on the EPO server and shared out to the entire organization
http://www.bonusbits.com/wiki/HowTo:Reinstall_McAfee_Clients_with_McAfee-Clients_Batch_Script

The manual will not be an easy feat for huge deployment..
https://kc.mcafee.com/corporate/index?page=content&id=KB59996
joukiejouk

ASKER
Hello btan,

I like the first method you had mentioned, but I am not familiar with the process even after reading about it. Is there a video on this? I think that would help me more. Or maybe a reference with plenty of screenshot examples? I have some questions about it. Please see below.

2016-03-05_20-18-36.png
2016-03-05_20-24-03.png
btan

No such video to my best knowledge. Will be clearer if you can see the cmd content.

There are three main folder to point to and also the common network share server ip address.
https://github.com/LevonBecker/mcafee_clients/blob/master/McAfee-Clients.cmd
In that shared folder, just need to make the parent folder created store this cmd as well as its subscripts

 .. See those there..you can manually (instead of clone) create the same structure under your main folder containing the cmd files. See all the structure in
https://github.com/LevonBecker/mcafee_clients/find/master?q=

For the admin right, when you run the cmd the account login tends to be your user which will not be able to run as lesser privileges in OS. So need to run in admin
..e.g. From GPO , has something like in the Computer Config -> Start up Scripts GPO to run the cmd and have it installed by the 'System' account. See the below
http://www.howtogeek.com/school/using-windows-admin-tools-like-a-pro/lesson9/
This is the best money I have ever spent. I cannot not tell you how many times these folks have saved my bacon. I learn so much from the contributors.
rwheeler23
joukiejouk

ASKER
I'd really like to get your method going because it sounds like a savior solution, and less stress. However, I am really confused by the github method. Is there another article (not using github) on this? Or maybe, some screenshots about this?

At the moment, seems like VSE is in a broken state and only happening to Windows Server 2003 Servers.
ASKER CERTIFIED SOLUTION
btan

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.