McAfee PASCDE-AB-IA Product Guide

McAfee PASCDE-AB-IA - Policy Auditor For Servers Manual

Get McAfee PASCDE-AB-IA - Policy Auditor For Servers PDF manuals and user guides View all McAfee PASCDE-AB-IA manuals
Add to My Manuals
Save this manual to your list of manuals

McAfee PASCDE-AB-IA manual content summary:

  • McAfee PASCDE-AB-IA | Product Guide - Page 1
    McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 2
    INSTALL THE SOFTWARE. IF APPLICABLE, YOU MAY RETURN THE PRODUCT TO MCAFEE OR THE PLACE OF PURCHASE FOR A FULL REFUND. 2 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 3
    plug-in 22 The agent plug-in and how it works 22 Supported platforms 22 How content is managed 24 Install and uninstall the agent Auditor agent plug-in 24 Uninstall the agent plug-in 25 Send a manual wake-up call to a group of systems 25 Display the system Guide for ePolicy Orchestrator 4.6 3
  • McAfee PASCDE-AB-IA | Product Guide - Page 4
    Data Import server task 29 Server support 29 Configure McAfee Vulnerability Manager Troubleshoot missing audit results 37 How to handle mismatched McAfee Vulnerability Manager certificates 37 Troubleshoot an audit 43 Run an audit manually 43 Disable an audit 44 Delete audits 44 Audit whiteout
  • McAfee PASCDE-AB-IA | Product Guide - Page 5
    Contents Create, edit, and delete Service Level Agreements 45 How viewing audit results works 46 Exporting audits and audit results 47 Export reporting 62 Create and apply a file integrity monitoring policy 63 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 5
  • McAfee PASCDE-AB-IA | Product Guide - Page 6
    debug tool 83 Display help 84 Run an audit 84 Run a benchmark 85 Run a check 85 Save debug information 86 6 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 7
    Statement of CVSS implementation 90 Statement of XCCDF implementation 90 Statement of OVAL implementation 90 Appendix B: Common Criteria requirements 92 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 7
  • McAfee PASCDE-AB-IA | Product Guide - Page 8
    an audit is, when you should use it, and why you should use it. • The supported deployment solutions based on the type(s) of systems you want to audit. • The system classifications that written for the target audience. The information in this guide is intended primarily for two audiences: • Network
  • McAfee PASCDE-AB-IA | Product Guide - Page 9
    troubleshooting. After a product is released, information about the product is entered into the McAfee online KnowledgeBase. 1 Go to the McAfee Technical Support ServicePortal at http://mysupport.mcafee.com. 2 Under Self Service Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 9
  • McAfee PASCDE-AB-IA | Product Guide - Page 10
    allows you to demonstrate compliance to auditors while the Findings feature helps you to find solutions to audit issues. 10 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 11
    to create simple benchmarks and fill in the rule values manually or import them from an existing system. • McAfee . • Agent debug support - The McAfee Policy Auditor agent plug-in includes a tool to help you solve problems on managed systems. software Product Guide for ePolicy Orchestrator 4.6 11
  • McAfee PASCDE-AB-IA | Product Guide - Page 12
    audit check failed and provides information about how to fix the problem. • PACore - The primary portion of the software that controls agent plug-in expands the ability of the McAfee Agent to support McAfee Policy Auditor. When audits are deployed to systems with the Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 13
    | Automation | Issues To prioritize, assign, and track issues. Issues can also be associated with tickets in a third-party ticketing server. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 13
  • McAfee PASCDE-AB-IA | Product Guide - Page 14
    to McAfee Policy Auditor functionality. Other McAfee products might use the same classifications, but with different characteristics or requirements. 14 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 15
    you can audit them without installing an agent. Unmanaged systems cannot be audited when they are disconnected from the network. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 15
  • McAfee PASCDE-AB-IA | Product Guide - Page 16
    the word Successful. McAfee recommends that you keep the default settings, because most users find them appropriate and intuitive. 16 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 17
    database maintenance tasks run before stopping. Default Scoring Model McAfee Policy Auditor supports the four standard eXtensible Configuration Checklist Description Format (XCCDF) scoring models. to allow other McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 17
  • McAfee PASCDE-AB-IA | Product Guide - Page 18
    group to each permission set. When you create a new permission set, the McAfee Policy Auditor permission group is added 18 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 19
    on how they interact, see How users, groups, and permission sets fit together in the McAfee ePolicy Orchestrator 4.6 Software Product Guide. Default permission sets McAfee Policy Auditor includes seven default permission sets that provide permissions for McAfee Policy Auditor and related
  • McAfee PASCDE-AB-IA | Product Guide - Page 20
    Management • Create, edit, view, and purge assigned issues McAfee Policy Auditor • View audits and assignments • Grant and modify waivers 20 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 21
    Permission Set page appears. 3 Select the appropriate options, then click Save. 4 Repeat for all appropriate sections of other permission sets. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 21
  • McAfee PASCDE-AB-IA | Product Guide - Page 22
    Policy Auditor server. Contents The agent plug-in and how it works Supported platforms How content is managed Install and uninstall the agent plug-in The -in returns the results to the server. Supported platforms The McAfee Policy Auditor agent plug-in supports a number of Windows, Linux, and Unix
  • McAfee PASCDE-AB-IA | Product Guide - Page 23
    Using the McAfee Policy Auditor agent plug-in Supported platforms Operating system X86 support X64 support Other Notes processors AIX 5.3 TL8 SP5 Power5, Power6 AIX 6.1 TL2 SP0 Power5, 32- and 64-bit agent McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 23
  • McAfee PASCDE-AB-IA | Product Guide - Page 24
    them in McAfee Benchmark Editor. See the McAfee Benchmark Editor Product Guide for information about how to do this. The master repository is updated McAfee Policy Auditor agent plug-in Uninstall the agent plug-in Send a manual wake-up call to a group of systems Install the McAfee Policy Auditor
  • McAfee PASCDE-AB-IA | Product Guide - Page 25
    systems Send manual wake-up calls to a System Tree group to verify that the McAfee Agent and ePolicy Orchestrator server are communicating. This is useful when you make policy changes and want agents to download the update. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator
  • McAfee PASCDE-AB-IA | Product Guide - Page 26
    Before you begin Before sending the agent wake-up call to a group, make sure that wake-up support for the systems' groups is enabled and applied on the General tab of the McAfee Agent policy only), then click Save. 26 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 27
    Auditor and McAfee Vulnerability Manager support uniform system management under ePolicy Orchestrator software. Managed and unmanaged system are supported the same way: • contain both managed and unmanaged systems. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 27
  • McAfee PASCDE-AB-IA | Product Guide - Page 28
    Linux 5.0, 5.1 AIX 5.3, 6.1 Asset Discovery scans ePolicy Orchestrator software supports the manual and automatic importing of systems into the System Tree. When McAfee Vulnerability and performing cleanup tasks. 28 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 29
    to run after the PA: Maintain Audits Server task has finished running. Server support Before configuring McAfee Vulnerability Manager server, it is important to understand how McAfee server with McAfee Policy Auditor McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 29
  • McAfee PASCDE-AB-IA | Product Guide - Page 30
    Vulnerability Manager Enterprise Manager. Before you begin Using single sign-on requires that you create a McAfee Vulnerability Manager workgroup. 30 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 31
    of the ePolicy Orchestrator database server. This requires configuring the service to run as a domain user that has access to the ePolicy Orchestrator database server. 4 Select Active in the Scheduler pane. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 31
  • McAfee PASCDE-AB-IA | Product Guide - Page 32
    , offline), then the test connection will fail. A successful test connection is not required for saving your Registered Server information. 32 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 33
    combine General Filter and Criticality Filter searches. Click the Search button to return a list of assets matching your search criteria. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 33
  • McAfee PASCDE-AB-IA | Product Guide - Page 34
    this task, then click Next. The summary page appears. 8 Review the summary information before saving this task. 9 Click Save. 34 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 35
    or any combination of the three methods to include or exclude systems. When finished, click Next. The Settings tab appears. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 35
  • McAfee PASCDE-AB-IA | Product Guide - Page 36
    , and MVM Data Import server task to give the system enough time to conduct audits and assemble result data. 36 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 37
    mismatched McAfee Vulnerability Manager certificates Troubleshoot missing audit results Configure McAfee server task, and MVM Data Import server task can all be run manually from the interface. If systems are not being audited because they are Product Guide for ePolicy Orchestrator 4.6 37
  • McAfee PASCDE-AB-IA | Product Guide - Page 38
    Configuring agentless audits How to handle mismatched McAfee Vulnerability Manager certificates Troubleshoot mismatched McAfee Vulnerability Manager certificates Use this task to re-establish to complete the setup. 38 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 39
    Activate benchmarks Create an audit Run an audit manually Disable an audit Delete audits Audit whiteout and blackout periods Service Level Agreements Exporting audits and audit results Export and their structure. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 39
  • McAfee PASCDE-AB-IA | Product Guide - Page 40
    three ways to run an audit. The software runs audits under these situations: • You manually run an audit. When you manually run an audit, the audit runs during the next whiteout period. • The audit is amount of time. 40 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 41
    the Sarbanes-Oxley standard. Labels are applied with the McAfee Benchmark Editor extension or are contained in McAfee-supplied benchmarks. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 41
  • McAfee PASCDE-AB-IA | Product Guide - Page 42
    Actions | Activate. The benchmark is activated and appears in the list of available benchmarks when you create an audit. 42 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 43
    Summary page appears. 8 Review the information, then click Save. Run an audit manually You can manually run an audit when you need to view results before the next scheduled audit. Task during the next whiteout period. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 43
  • McAfee PASCDE-AB-IA | Product Guide - Page 44
    whiteout and blackout periods. Set whiteout and blackout periods Set whiteout and blackout periods for running audits on systems. 44 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 45
    discovers a system matching the tag that requires a patch matching the severity level. Click Save. 5 You can edit or delete a Service Level Agreement. Option Edit SLA Definition Edit the Service Level Agreement McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 45
  • McAfee PASCDE-AB-IA | Product Guide - Page 46
    managing audits How viewing audit results works Option Delete SLA Definition Delete the Service Level Agreement How viewing audit results works McAfee Policy Auditor software offers a of rules that failed the audit. 46 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 47
    a file that conforms to the XCCDF results schema. Export an audit to a file that conforms to the OVAL results schema. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 47
  • McAfee PASCDE-AB-IA | Product Guide - Page 48
    Creating and managing audits Export audits 3 The File Download dialog box appears. Click Save. The Save As dialog box appears. 4 Give the export ZIP file an appropriate name and click Save. 48 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 49
    it generates information about system compliance that includes a compliance score. The software supports the four scoring models described in the National Institute of Standards and Technology on a Windows 7 system. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 49
  • McAfee PASCDE-AB-IA | Product Guide - Page 50
    the rules is weighted because the audit benchmark developer considered it to be more important than the other rule. 50 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 51
    . The Edit Policy Auditor page appears. 4 Select the scoring model from the Default Scoring Model drop-down box. 5 Click Save. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 51
  • McAfee PASCDE-AB-IA | Product Guide - Page 52
    exemption waivers are independent of benchmarks or rules, the interface does not give you the opportunity to select them. 52 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 53
    80%. If the rule that failed is granted a suppression waiver, the rule results are excluded and the score is 100%. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 53
  • McAfee PASCDE-AB-IA | Product Guide - Page 54
    waiver status as of the selected date. The status may change according to the date you select for filtering. 54 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 55
    . Before you begin You must have a group with a subgroup that contains waivers. Task For option definitions, click ? in the interface. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 55
  • McAfee PASCDE-AB-IA | Product Guide - Page 56
    exception and suppression waivers, select a benchmark and one or more rules. • Exemption waivers do not require a benchmark and a rule. 56 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 57
    Expired. Deleting waivers You can delete a waiver before it takes effect. You can only delete waivers with a status of Upcoming. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 57
  • McAfee PASCDE-AB-IA | Product Guide - Page 58
    a status of Upcoming and click View. 3 Click Delete Waiver. The deleted waiver no longer appears on the Waivers tab. 58 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 59
    bandwidth. To learn more about supported systems, see: • Managed Systems in the Using the McAfee Policy Auditor agent plug-in section. • Platforms supported by the McAfee Policy Auditor with a file on another system. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 59
  • McAfee PASCDE-AB-IA | Product Guide - Page 60
    generates an event notifying you of the change. The monitored attributes differ between the various supported operating systems.The software monitors these attributes on all operating systems. • File size (in links. 60 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 61
    six versions, including the file baseline, of text files from managed systems. The software does not support versioning for non-text files. NOTE: The actual text files are not stored in the software Software section. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 61
  • McAfee PASCDE-AB-IA | Product Guide - Page 62
    characters The file version comparison feature supports files containing only single-byte characters in the filename and contents. It does not support file comparison for files containing double you of the change. 62 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 63
    install the McAfee Policy Auditor agent plug-in on all systems that are to be monitored. For instructions on how to do this, see Managing the McAfee Policy Auditor agent plug-in. When adding, is selected by default. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 63
  • McAfee PASCDE-AB-IA | Product Guide - Page 64
    a file has changed, whether the file's entitlements have changed, and stores changes for supported text files . Edit Max versioned file size (1-4 MB) Remove Change the configuration of the of the selected file. 64 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 65
    select the Events tab. 2 Select a versioned file event, then click Actions | Compare. The Select two files for comparison page appears. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 65
  • McAfee PASCDE-AB-IA | Product Guide - Page 66
    the Events tab. 2 Select the file events to purge, then click Actions | Purge. The Action: Purge dialog box appears. 66 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 67
    date. PA: File Integrity Events By System/Event Type Display a an aggregated count of file integrity events grouped by system. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 67
  • McAfee PASCDE-AB-IA | Product Guide - Page 68
    rolled up by a server task, do not include benchmark results in the report because it will not contain data. 68 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 69
    available) • Rollup method • Incremental • Full Benchmark Version Rollup • Purge • No purging • Purge all • Filter (none available) • Rollup method • Incremental • Full McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 69
  • McAfee PASCDE-AB-IA | Product Guide - Page 70
    ) • Rollup method • Incremental • Full Group Tree Rollup • Purge • No purging • Purge all • Filter (none available) • Rollup method • Incremental • Full 70 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 71
    . You can use these reports or use them as starting points to create new reports to fit your organizational needs. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 71
  • McAfee PASCDE-AB-IA | Product Guide - Page 72
    . Task For option definitions, click ? in the interface. 1 Set up your servers according to the Multi-server rollup querying section in your ePolicy Orchestrator Product Guide. Register each server with the reporting server. 72 McAfee Policy Auditor 6.0 software Product
  • McAfee PASCDE-AB-IA | Product Guide - Page 73
    : Audit Patch Check Result 3 Configure and enable the Roll Up Data (Local ePO Server) server task on the reporting server. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 73
  • McAfee PASCDE-AB-IA | Product Guide - Page 74
    How findings work McAfee Policy Auditor reports Findings, which are enhanced results, for supported checks. Findings appear in interface pages and queries and include additional information about why three subtypes. 74 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 75
    column. The System Rules - Failed page appears. 3 Under the Result column, click fail for a rule. The Rule Details page appears. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 75
  • McAfee PASCDE-AB-IA | Product Guide - Page 76
    Findings in reports for the check in this audit. Show Findings in reports for the check in this audit. 76 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 77
    them. When you log into the ePolicy Orchestrator software, these are the visible McAfee Policy Auditor dashboards. • PA: Compliance Summary McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 77
  • McAfee PASCDE-AB-IA | Product Guide - Page 78
    entitlement changes. • PA: File Integrity - All Events - Displays a count of the File Integrity Events grouped by the baseline date. 78 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 79
    Results - List of unprocessed finding results. • PA: Unprocessed Finding Results By System - Pie chart unprocessed finding results grouped by system. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 79
  • McAfee PASCDE-AB-IA | Product Guide - Page 80
    monitors providing a high-level overview of information about the database, unprocessed audit results, unprocessed findings results and agent events. 80 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 81
    classified by status. • PCI Req 5: Use AV or App Whitelisting - Displays rules from audits that fail with a result of error. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 81
  • McAfee PASCDE-AB-IA | Product Guide - Page 82
    a dashboard that is refreshed at a user-configured frequency, so you can use your most useful queries on a live dashboard. 82 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 83
    . Command enginemain.exe -u enginemain -n Description Opens the graphical version of the tool on Windows systems. Opens the interactive console version of the tool on all supported systems. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 83
  • McAfee PASCDE-AB-IA | Product Guide - Page 84
    of the tool on Windows systems. Displays help for the interactive console version of the tool on all supported systems. Run an audit Run a audit on a system and save the results to a file. Task specified in step 1. 84 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 85
    file. 1 Enter resultFile to specify the path and name of the audit results file. Example: resultFile c:\test\results.xml McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 85
  • McAfee PASCDE-AB-IA | Product Guide - Page 86
    the ZIP file, then click OK. Interactive Enter saveDebug.The file is saved in the agent plug-in folder. 86 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 87
    version 1.1. Security content conforming to the SCAP standard can be used by any product supporting the standard and the results can be shared between these products. SCAP is a collection Only during installation McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 87
  • McAfee PASCDE-AB-IA | Product Guide - Page 88
    content conforming to the SCAP standard can be used by any product that supports the standard and the results can be shared among these products. McAfee Policy references, such as advisories or OVAL identification. 88 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 89
    identify the CCE system configuration settings. McAfee Policy Auditor version 6.0 incorporates and supports version 5.0 of the Common Configuration Enumeration (CCE) standard. Previous versions of as CPE-Compatible. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 89
  • McAfee PASCDE-AB-IA | Product Guide - Page 90
    McAfee Benchmark Editor uses the Checks interface to import and export OVAL definitions and other formats supported by XCCDF. These checks can be filtered based on OVAL IDs, platforms, or any other OVAL in XML format. 90 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 91
    that they or auditors can review any changes in the state of a system over time. McAfee Policy Auditor version 6.0 provides fully integrated support for OVAL versions 5.7, 5.8, and 5.9. Previous versions of McAfee Policy Auditor have been certified by Mitre as OVAL-Compatible. McAfee Policy Auditor
  • McAfee PASCDE-AB-IA | Product Guide - Page 92
    The use of HTTPS protects against eavesdropping and man-in-the-middle attacks. HTTPS and SSL support the use of X.509 digital certificates from the server so that a user can authenticate the sender can be created. 92 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 93
    SQL Server database is exhausted. When this notification is received, the administrator should purge the database. The appropriate version of the ePolicy Orchestrator software Product Guide provides information about purging and archiving the database. McAfee Policy Auditor 6.0 software Product
  • McAfee PASCDE-AB-IA | Product Guide - Page 94
    an audit 84 save debug information 86 audience for Policy Auditor Product Guide 8 audit creation and editing activate a benchmark for use in audit ) 40 introduction 10 missing audit results 36, 37 no results 40 run manually 43 run on demand 42 set whiteout and blackout periods 44 specify criteria
  • McAfee PASCDE-AB-IA | Product Guide - Page 95
    12 agent-server communication 25 concept 22 deploying 24 managing content 24 overview 22 supported platforms 22 uninstall 25 Policy Auditor permission sets default 19 edit 21 how they work 18 Policy Auditor Product Guide audience 8 Policy Auditor server settings edit 18 what they control 16 Policy
  • McAfee PASCDE-AB-IA | Product Guide - Page 96
    what's new agent debug support 11 agent support for new platforms 11 Benchmark PA:Maintain Foundstone audits 28, 36, 37 service level agreements create, edit, and delete specify criteria 41 unmanaged systems 14 T troubleshooting, Policy Auditor 36, 37, 38 mismatched Guide for ePolicy Orchestrator 4.6
  • McAfee PASCDE-AB-IA | Product Guide - Page 97
    agent plug-in 24 manual 25 uninstall Policy Auditor agent plug-in 25 what's new, Policy Auditor agent debug support 11 agent support for new platforms 11 audit failure status reporting 11 server performance improvements 11 support for OVAL 5.7 - 5.9 11 support for SCAP 1.1 11 X XCCDF export audit
  • McAfee PASCDE-AB-IA | Product Guide - Page 98
    Index 98 McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
McAfee Policy Auditor 6.0 software
Product Guide for ePolicy Orchestrator 4.6