McAfee HISCDE-AB-IA Product Guide - Page 145
Stopping Host IPS services, Command-line syntax
View all McAfee HISCDE-AB-IA manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 145 highlights
Appendix B - Troubleshooting Clientcontrol.exe utility The utility records its activities to ClientControl.log at: C:\Documents and Settings\All Users\Application Data\McAfee\Host Intrusion Prevention; or C:\ProgramData\McAfee\Host Intrusion Prevention on Windows Vista, Windows 2008, and Windows 7. To enable logging, modify HKLM\Software\McAfee\HIP in the registry by adding the DWORD type FwLogLevel entry with a value of 0x7. Stopping Host IPS services The /stop parameter stops Host IPS services if the user has administrative authority to stop services. If the user has authority to stop services on the computer, the following occurs: • Host IPS services are turned off. The Host IPS checkbox on the IPS Policy tab is automatically deselected. • Host IPS services are not stopped. An entry is made in ClientControl.log. • The McAfee Agent enforces policies at next policy enforcement interval. • If the McAfee Agent enforces policies while you are engaged in an activity that requires that protection be disabled (e.g. patching Windows), your activity might be blocked by the enforced policies. Even if stopping Host IPS services is successful, policy settings might allow the McAfee Agent to restart them at the next Agent-Server Communication Interval (ASCI). To prevent this: 1 In ePolicy Orchestrator, open the Host Intrusion Prevention: General policy. 2 Select the Advanced tab. 3 Deselect Perform product integrity check. 4 Run an agent wake-up call. Command-line syntax Conventions: • [ ] means required. • [xxx, ...] means one or more. • < > means user-entered data. Major arguments: Only one of the following major arguments is allowed per invocation: • /help • /start • /stop • /log • /engine • /export However, you can specify more than one log option when changing log settings. Running the utility with the /help command provides the most up-to-date help information and notes. Usage: clientcontrol [arg] Argument definitions: • /help McAfee Host Intrusion Prevention 8.0 Product Guide for ePolicy Orchestrator 4.5 145