McAfee HISCDE-AB-IA Product Guide - Page 25
Host IPS server tasks, Menu | Automation | Server Tasks, New Task
View all McAfee HISCDE-AB-IA manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 25 highlights
Managing Your Protection System management 5 Assign other permission sets as required: For this Host IPS feature Host IPS events Host IPS client IPS rules Host IPS client firewall rules Host IPS dashboards Host IPS queries Assign this permission set Host Intrusion Prevention - IPS, Event log, Systems, System Tree access Host Intrusion Prevention - IPS, Event log, Systems, System Tree access Host Intrusion Prevention - Firewall, Event log, Systems, System Tree access Dashboard, Queries Queries Host IPS server tasks Host Intrusion Prevention provides several preconfigured and configurable server tasks that you can set to run on a specified schedule or immediately as part of Host Intrusion Prevention protection maintenance. You can create custom Host Intrusion Prevention server tasks by clicking New Task and selecting one or more Host IPS properties on the Actions tab of the Server Task Builder. For more information on using and creating server tasks, see the ePolicy Orchestrator documentation. To work with an existing server task, click Menu | Automation | Server Tasks, then click the appropriate command under Actions. To create a custom server task, click New Task and follow the steps in the Server Task Builder wizard. Table 4: Preconfigured and custom server tasks Server Task Description Host IPS Property Translator (Preconfigured) This server task translates Host Intrusion Prevention client rules that are stored in the ePolicy Orchestrator database to handle Host Intrusion Prevention sorting, grouping, and filtering of data. This task runs automatically every 15 minutes and requires no user interaction. You can, however, run it manually if you need to see immediate feedback from actions on the client. Repository Pull (Custom) This server task allows you to create a custom task to retrieve packages from the source site and place them in the master repository. Select the Host IPS Content as a package type to retrieve content updates automatically. Run Query (Custom) This server task allows you to create a custom task to run Host Intrusion Prevention preconfigured queries at a specified time and schedule. Purge Threat Event Log (Custom) This server task allows you to create a custom task to purge threat event logs based on a Host Intrusion Prevention query. Select a Host IPS Events query to purge from the log. Export Policies (Custom) This server task allows you to download an xml file that contains the associated Host Intrusion Prevention policy. Export Queries (Custom) This server task allows you to create a Host Intrusion Prevention query output file that can be saved or emailed. McAfee Host Intrusion Prevention 8.0 Product Guide for ePolicy Orchestrator 4.5 25