ESConfigTool command-line options

Use these options with the ESConfigTool utility to create a file of preconfigured settings that you can import during installation of Endpoint Security.

Open a Command Prompt window, then run the ESConfigTool command using the appropriate command-line options.

Options are not case-sensitive.

Note: The access protection rule Unauthorized execution of EsConfigTool blocks the execution of EsConfigTool. Administrators can disable the rule and run EsConfigtool when needed and re-enable the rule when complete.

Example

ESConfigTool.exe /export C:\ENS\preconfigured.policy /module TP FW /unlock<password>

Exports settings for Threat Prevention and Firewall to the file C:\ENS\preconfigured.policy.

Basic options

ESConfigTool.exe /export <file_name> [/module <TP|FW|WC|ESP> ] /unlock <password> ] [/plaintext ]

ESConfigTool.exe /import <filename> [/module <TP|FW|WC|ESP> ] /unlock <password> [/policyname <name> ]

Unlock password is required to export and import policies if the user interface is locked.

Option Definition
/export <file_path_and_name> Saves settings to a file with the specified name and location.

Example:

/export C:\My Programs\Endpoint\preconfigured.policy

Exports settings to the file preconfigured.policy in the C:\My Programs\Endpoint folder.

Note: Save this file to a folder that is not protected by McAfee. The folder containing ESConfigTool is protected, so the export location should be a different, writable location.
/import <file_path_and_name>

Imports the settings from the specified file name.

The file must be encrypted.

/module <TP|FW|WC|ESP> Specifies which product module settings to export.
  • TPThreat Prevention
  • FWFirewall
  • WCWeb Control
  • ESP — Resources shared by product modules.

Example:

/module TP FW WC ESP

Exports settings for all product modules.

/unlock <password> Sets the password for unlocking the client UI.
Note: It is recommended that you lock the client interface with a password to avoid unauthorized access and configuration of policies.
/plaintext Specifies descriptive comments in human-readable format.