Installation command-line interface for Endpoint Security 10.7.x

Use the command-line interface to customize installation of Endpoint Security 10.7. You can specify commands when creating McAfee ePO deployment tasks. You can also run setupEP.exe using a third-party tool or the Windows command prompt on the endpoint.

Syntax: Deployment task options

When creating a deployment task in McAfee ePO, in the Command line box, you can enter the commands listed in the Deployment task and setupEP.exe command-line options table.

When using the setupEP.exe command line on the endpoint, or installing on the endpoint using a third-party tool, the command-line syntax for installation is:

installation_path\setupEP.exe [ADDLOCAL="tp,fw,wc,atp"] [ command_args setupEP_command_args]
  • installation_path — The folder where you extracted the installation package.
  • command_args — Commands in the Deployment task and setupEP.exe command-line options table.
  • setupEP_command_args — Commands in the setupEP.exe command-line options table

These options are available when installing with a deployment task in McAfee ePO or by running setupEP.exe from the command line on the endpoint.

Options are not case sensitive.

Deployment task and setupEP.exe command-line options
Option Parameters Description Notes
CAVA="thread_count" thread_count — (Optional) Specifies the number of scanning threads to use. Installs Endpoint Security with support for the Common AntiVirus Agent (CAVA). Requires Threat Prevention. Required when upgrading from a previous version of Endpoint Security with CAVA.

This option disables the blocking cache in the on-access scanner, increases the number of on-access scanning threads to 200, and enables network scanning, to ensure that all files from CAVA are scanned. You can also specify a different number of scanning threads.

See How to install Endpoint Security with support for CAVA (KB88973) for more information.

INSTALLDIR="path" path Specifies where to install the product files on the endpoint. The installer creates an Endpoint folder at the specified location and installs the product to this folder.

By default, product files are installed in the folder C:\Program Files\McAfee\Endpoint Security.

/log"path"

/l"path"

path Specifies where to save the installation log files for tracking installation events. The installer creates an Endpoint folder at the specified location and saves the log files to this folder.

By default, log files are saved in the Windows System TEMP folder C:\windows\Temp\McAfeeLogs.

/l*v"path" path Specifies where to save the installation log files and verbose (more descriptive) logging entries.
/nocontentupdate Does not automatically update product content files on the endpoint as part of the installation process.

Content files include the latest AMCore, Exploit Prevention, and Adaptive Threat Protection content files required for Endpoint Security.

Caution: Update content files to ensure that the endpoint is fully protected. If you don't update them during installation, schedule an update as soon as possible.
/override"program" hipsMcAfee Host Intrusion Prevention Overrides and removes the specified conflicting product.
/quarantinefolder="path" path Specifies the location of the Quarantine folder where detected threats are placed. The folder path is limited to 190 characters.

By default, the Quarantine folder is located in the folder <SYSTEM_DRIVE>\Quarantine.

These additional options are available when running setupEP.exe from the command line on the endpoint.

setupEP.exe command-line options
Option Parameters Description
ADDLOCAL="tp,fw,wc,atp"
  • tpThreat Prevention
  • fwHost Intrusion Prevention
  • wcWeb Control
  • atpAdaptive Threat Protection
Specifies individual product modules to install in silent mode.

Before you can install atp, tp must be installed.

Best practice: For optimal performance and protection, install the same version of the Endpoint Security modules or upgrade all modules to the latest version.

Tip: When using ADDLOCAL, there are no endpoint notifications or user interactions. It behaves like /qn is specified. To change this behavior, you can specify /q! or /qb.

/qn or /quiet

/qb! or /passive

/qb

  • qb! — Shows only a progress bar. Users cannot cancel the installation while it is in progress (passive mode).
  • qb — Shows a progress bar and a Cancel button. Users can cancel the installation while it is in progress, if needed.
  • qn — Hides all installation notifications (silent mode). Users have no interaction.

    Note: When using ADDLOCAL to install, this is the default behavior and you do not need to specify it.

Specifies how users interact with the installer.
/import file file Imports settings from the specified file.
/module <TP,FW,WC,ATP,ESP>
  • TPThreat Prevention
  • FWHost Intrusion Prevention
  • WCWeb Control
  • ATPAdaptive Threat Protection
  • ESP — Resources shared by product modules.
Applies imported settings to the specified product modules.
/nopreservesettings Does not save your product settings when upgrading to Endpoint Security.

By default, settings are preserved.

/policyname name name Assigns the specified settings to endpoints where the product is installed.
/unlock password

password Unlocks the client interface using the specified password.

Examples: Deployment task and setupEP command-line options

To run these example commands:

  • In McAfee ePO — On the Create Deployment Task page, type options in the Command line box.
  • On the endpoint — Open a command prompt in Windows, then change to the location where you extracted the installation package.
  • In a third-party deployment tool — When creating a deployment task, for the installation command line enter setupEP.exe with the options required for your environment.

    Best practice: Use setupEP.exe ADDLOCAL="tp,atp,fw,wc" to install all the product modules on endpoints without displaying notifications or interrupting user activity.

To... Add these options in the deployment task Run this command from the command line
Install Host Intrusion Prevention and Web Control (and Common, if needed). ADDLOCAL="fw,wc" setupEP.exe ADDLOCAL="fw,wc"
Install the product modules using a third-party deployment tool. By default, there are no notifications on the endpoint or user interaction. ADDLOCAL="tp,atp,fw,wc" setupEP.exe ADDLOCAL="tp,atp,fw,wc"
Install the product modules under D:\Installed Programs\Mcafee\Endpoint Security instead of the default location (C:\Program Files\McAfee\Endpoint Security). INSTALLDIR="D:\Installed Programs" setupEP.exe INSTALLDIR="D:\Installed Programs"
Save product log files under D:\Log Files instead of the default location (C:\Windows\Temp\McAfeeLogs). /l"D:\Log Files" setupEP.exe /l"D:\Log Files"
Save product log files under D:\Log Files and specify verbose logging. /l*v"D:\Log Files" setupEP.exe /l*v"D:\Log Files"
Remove McAfee Host Intrusion Prevention automatically during installation. /override"hips" setupEP.exe /override"hips"
Create a Quarantine folder at D:\reports\Quarantine instead of the default location (<SYSTEM_DRIVE>\Quarantine). /quarantinefolder="D:/reports" setupEP.exe /quarantinefolder="D:/reports"
Install Threat Prevention with support for CAVA and increase the number of on-access scanning threads to 220. ADDLOCAL="tp" CAVA="220" setupEP.exe ADDLOCAL="tp" CAVA="220"
Install Adaptive Threat Protection (and Threat Prevention and Common) automatically without updating the product content files during installation. ADDLOCAL="atp" /nocontentupdate setupEP.exe ADDLOCAL="atp" /nocontentupdate
Import settings from the file called mysettings. setupEP.exe /import mysettings
Import settings from the file called mysettings to Threat Prevention and Host Intrusion Prevention. setupEP.exe /import mysettings /module TP,FW
Install the product modules using a third-party deployment tool. By default, there are no notifications on the endpoint or user interaction. setupEP.exe ADDLOCAL="tp,atp,fw,wc"