McAfee EPOCDE-AA-BA Product Guide - Page 271
Rogue System Detection permission sets, Interface settings
View all McAfee EPOCDE-AA-BA manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 271 highlights
Detecting Rogue Systems What are rogue systems 21 • Sensor-to-server communication port. • Server IP address or DNS name. • Whether the Rogue System Sensor is enabled. The server IP address default value is the address of the McAfee ePO server that you are using to install sensors. Rogue System Detection reports system detections to the specified server. When this server detects a system that has an agent deployed by an McAfee ePO server with a different IP address, that system is detected as a rogue because the agent is considered an alien agent. The sensor-to-server communication port server setting can be changed only during installation. Whichever port you have specified during installation must also be specified in the General tab of Rogue System Detection policies. Interface settings Interface settings determine whether sensors: • Do not listen on interfaces whose IP addresses are included in specific networks. • Only listen on an interface if its IP address is included on a network found during installation. • Only listen on interfaces whose IP addresses are included in specific networks. Specifying these settings allows you to choose the networks that the sensor reports on. Rogue System Detection permission sets Permission sets for Rogue System Detection determine what information a user group can view, modify, or create for Rogue System Detection. One or more permission sets can be assigned. By default, permission sets for global administrators are automatically assigned to include full access to all products and features. The permission sets and their available privileges for Rogue System Detection are listed in the following table. Permission set Rights Rogue System Detection • Create and edit Rogue System information; manage sensors. • Create and edit Rogue System information; manage sensors; deploy McAfee Agents and add to System Tree. • No permissions. • View Rogue System information. Rogue System Sensor • No permissions. • View and change settings. • View settings. McAfee® ePolicy Orchestrator® 4.6.0 Software Product Guide 271