McAfee EPOCDE-AA-BA Product Guide - Page 70
Designating an ASSC key pair as the master, Using the same ASSC key pair for all servers and agents
View all McAfee EPOCDE-AA-BA manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 70 highlights
7 Configuring advanced server settings Managing security keys 3 If you want existing agents to use the new key, select the key in the list, then click Make Master. Agents begin using the new key after the next agent update task is complete. If the server manages 4.6 agents, make sure the 4.6 Agent Key Updater package has been checked into the master repository. In large installations, generating and using new master key pairs should be performed only when you have specific reason to do so. McAfee recommends performing this procedure in phases so you can more closely monitor progress. 4 After all agents have stopped using the old key, delete it. In the list of keys, the number of agents currently using that key is displayed to the right of every key. 5 Back up all keys. Designating an ASSC key pair as the master Use this task to change which key pair, listed in the Agent-server secure communication keys list, is specified as the master. Do this after importing or generating a new key pair. For option definitions, click ? in the interface. Task 1 Click Menu | Configuration | Server Settings, select Security Keys from the Setting Categories list, then click Edit. The Edit Security Keys page appears. 2 From the Agent-server secure communication keys list, select a key , then click Make Master. 3 Create an update task for the agents to run immediately, so that agents update after the next agent-server communication. Ensure that the agent key updater package is checked in to the master repository and has been replicated to all distributed repositories that are managed by ePolicy Orchestrator. Agents begin using the new key pair after the next update task for the agent is complete. At any time, you can see which agents are using any of the agent-server secure communication key pairs in the list. 4 Back up all keys. Using the same ASSC key pair for all servers and agents Follow this process to ensure that all McAfee ePO servers and agents use the same agent-server secure communication (ASSC) key pair. If you have a large number of managed systems in your environment, McAfee recommends performing this process in phases so you can monitor agent updates. 1 Create an agent update task. 2 Export the keys chosen from the selected McAfee ePO server. 3 Import the exported keys to all other servers. 4 Designate the imported key as the master on all servers. 5 Perform two agent wake-up calls 70 McAfee® ePolicy Orchestrator® 4.6.0 Software Product Guide