Configure and deploy McAfee security products

Configure security products on your McAfee ePO server. Register your cloud accounts, encrypt volumes, and view reports for your systems.

Task

  1. Install the extension for McAfee Host Intrusion Prevention for Servers on your McAfee ePO server. This extension McAfee_HostIPS_Extension_924 is available on the desktop of your instance. You can remotely log on to your instance and install this extension.
  2. Install the hotfix 1063194 for McAfee ePO server. The files for this hotfix and the installation instructions are available in the folder EPOHF1063194 on the desktop of your instance. You can remotely log on to your instance and install this hotfix.
  3. Log on to the McAfee ePO server as an administrator.
  4. Select MenuSoftwareExtensionsInstall Extension, then browse to and select McAfee_HostIPS_Extension_924. Click OK.
    Your McAfee Host Intrusion Prevention for Servers extension is installed on the McAfee ePO server.
  5. Register your cloud account and discover your AWS cloud assets. Select MenuConfigurationRegistered Cloud Accounts and register your AWS account. For details, see Cloud Workload Discovery Product Guide.
  6. Select MenuSystemsCloud Workload Discovery to view your cloud asset information. This graphical visualization of your cloud accounts gives you visibility into your cloud infrastructure assets and their hierarchy. The left Issues pane highlights any immediate issues or violations on your firewall settings or your IP traffic settings.
  7. Secure the instances in your network by correcting your firewall settings. For details, see Remediation in Cloud Workload Discovery Product Guide.
  8. Download and install McAfee Agent on the systems that you want to secure. For details, see the product guide of McAfee Agent.
    If you have Active Directory available in your cloud, you can install McAfee Agent on your instances while you register your AWS cloud account. For details see Register AWS account in Cloud Workload Discovery Product Guide.
    Systems are changed to Managed on the System Tree.
  9. To deploy the PCS suite products to your group of systems, select MenuPolicyClient Task Catalog. Select Deploy PCS-Windows or Deploy PCS-Linux.
    For example, you can deploy PCS suite products to your AWS group of systems. All McAfee products in the PCS suite are installed on all the systems in this group.
  10. Select Data Protection for Cloud to see that it displays all zones from your registered AWS cloud account. You can encrypt volumes from here. For details, see Performing encryption in McAfee Data Protection for Cloud Product Guide.
  11. From Volume Tree, select Data Protection for Cloud to see the encryption status of EBS volumes. For details, see McAfee Data Protection for Cloud Product Guide.
  12. Select DashboardPublic Cloud to see the security summary of your EC2 instances and EBS volumes. Your instances are now protected with anti-virus, anti-malware, intrusion prevention, and file integrity monitoring.

Results

The dashboard is automatically updated to reflect the detailed security posture of new instances as they are launched on AWS. If the dashboard shows green on all charts, your instances and volumes are fully protected from threats. For details about dashboard, see Dashboards and monitors in Cloud Workload Discovery Product Guide. For details about EBS volumes, see McAfee Data Protection for Cloud Product Guide.