McAfee EPOCDE-AA-BA Product Guide - Page 287
Default Rogue System Detection queries, Switch, Description, Query, Definition
View all McAfee EPOCDE-AA-BA manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 287 highlights
Detecting Rogue Systems Default Rogue System Detection queries 21 Switch --port Description Overrides the Server Port configuration setting in the registry that you specified during installation. This parameter takes effect only when running in command-line mode, which also requires the --console command-line switch. Sample syntax:sensor.exe --port "8081" --console --server "[server name]" or "[IP address]" Overrides the Server Name configuration setting in the registry that you specified during installation. This parameter takes effect only when running in command-line mode, which also requires the --console command-line switch. Sample syntax:sensor.exe --server "MyServerName" --console --uninstall --version Unregisters the sensor with the Windows Service Control Manager. Prints the version of the sensor and exits. Default Rogue System Detection queries Rogue System Detection provides default queries that you can use to retrieve specific information from your network. These queries can be modified or duplicated in the same manner as other queries in ePolicy Orchestrator. You can also create custom queries, display query results in dashboard monitors, and add those dashboard monitors to the Dashboards section in ePolicy Orchestrator. For more information on using dashboards, seeAssessing Your Environment With Dashboards. Rogue System Detection query definitions Query Active Sensor Response (Last 24 Hours) Passive Sensor Response (Last 24 Hours) Rogue Systems, By Domain (Last 7 Days) Rogue Systems, By OS (Last 7 Days) Rogue Systems, By OUI (Last 7 Days) Subnet Coverage Definition Returns the details of active sensors installed on your network in the last 24 hours, in pie chart format. Returns the details of passive sensors installed on your network in the last 24 hours, in pie chart format. Returns the details of systems detected on your network as rogue systems in the last seven days, grouped by domain, in table format. Returns the details of systems detected on your network as rogue systems in the last seven days, grouped by operating system, in pie chart format. Returns the details of systems detected on your network as rogue systems in the last seven days, grouped by organizationally unique identifier, in pie chart format. Returns the details of detected subnets on your network, in pie chart format. McAfee® ePolicy Orchestrator® 4.6.0 Software Product Guide 287