• SIGNA™ Hero 3.0T Service Methods
  • 5852800-8EN Revision 1.0
  • Object ID: 00000018WIA30DAA650GYZ
  • Topic ID: id_2025041 Version: 1.9
  • Date: May 12, 2020 3:04:50 PM

Installing McAfee ePolicy Orchestrator (ePO)

The customer takes on the responsibility of checking that they meet the product requirements, downloading the McAfee ePolicy Orchestrator (ePO) software, and configuring the server appropriately.

Prerequisites

Note: This task is to be performed by the customer IT. The information in this topic is just informational for the FE, and not for the FE to actually complete.
Personnel requirements
Required personsPreliminary requirementsProcedureFinalization
--60 minutes of customer IT time. The GE FE does not need to be on site.-
Required conditions
A Windows machine featuring appropriate hardware and system requirements for the latest McAfee ePO according to the system use case. Refer to the requirements here:
Administrator rights on said Windows machine.
Port 1434 open for traffic.
Local running SQL Server and Database.

Microsoft SQL Server is a relational database management system developed by Microsoft. As a database server, it is a software product with the primary function of storing and retrieving data as requested by other software applications—which may run either on the same computer or on another computer across a network.

About this task

The system requirements for ePO can be found in the ePO installation guide on the McAfee website. These steps are only to be referenced by the FE if the customer has questions.

Follow these instructions to install McAfee ePolicy Orchestrator on a remote Windows machine. McAfee ePO should be installed by first downloading the free trial version from the McAfee website, and inserting the license key provided by GEHC during the setup process in order to upgrade to the full licensed version of the software.

  • The McAfee free trial can be downloaded from the McAfee Enterprise ePolicy Orchestrator web page. https://www.mcafee.com/enterprise/en-us/products/epolicy-orchestrator.html
    Note: If the link does not work, navigate to the McAfee website and navigate to the Enterprise version of their software. Search for ePolicy Orchestrator to click the McAfee ePolicy Orchestrator link to navigate to where the Free Trial file is located.
  • The license keys can be found in your Option Key statement.

Procedure

  1. Download McAfee ePolicy Orchestrator from the McAfee website. If any updates are available, download them as well. The different ePO packages can be found here: https://www.mcafee.com/enterprise/en-us/products/epolicy-orchestrator.html
    Note: If the link does not work, navigate to the McAfee website and navigate to the Enterprise version of their software. Search for ePolicy Orchestrator to click the McAfee ePolicy Orchestrator link to navigate to where the Free Trial file is located.
  2. Locate downloaded software on your Windows machine and extract the compressed file into your preferred location.
    Note: If you try to run Setup.exe without first extracting the files, the installation will fail.
  3. Right-click the Setup.exe file in the installation folder, and select Run as Administrator.
  4. After the InstallShield Wizard starts, confirm your desired installation location and click Next. The wizard will now search for a SQL server.
  5. If your SQL was found in the search, select the desired server from the menu and click Next.
  6. If the installer is unable to find an SQL, a dialog box will ask if another search is desired. Click No to enter the SQL details manually.
  7. The Database Information step will require the server and database names, as well as an authentication method.
    1. Specify Database Server and Database Name: If SQL was found in search, select it from drop-down menu. If not, enter the name manually. If you are using dynamic SQL ports, enter name if the SQL server followed by a backslash and MSSQLSERVER. For example, if your SQL server is called SQLServer and you are using the default instance name of MSSQLServer, enter SQLServer\MSSQLSERVER. Then enter the existing database name associated with the SQL instance.
    2. Specify Database Server Credentials
      1. Windows Authentication: From the Domain menu, select the domain of the user account to use for accessing the SQL server from the menu. If required domain is not listed, type the domain name, user name, and password.
      2. SQL Authentication: Type the user name and password for your SQL Server. Make sure that the user provided has the appropriate administrative rights on the server.
        Note: SQL user name and password can be created and changed from SQL Object explorer if Microsoft SQL Server Management Studio is used, or through Command Line with the Microsoft Command Line Utilities. See https://docs.microsoft.com/en-us/sql/tools/sqlcmd-utility?view=sql-server-ver15 for more information.
    3. Click Next. The client will now attempt to connect to the SQL Server using the credentials provided.
      Note: If a dialogue box saying Setup was unable to access the SQL UDP port 1434 shows, click Ok and enter an open port number in the port field, or open UDP port 1434 from your Windows and Firewall Settings. Click Next.
      Figure 1. Database Information window
  8. The Pre-Installation Auditor now starts automatically. This is the client’s installation diagnosis tool, aiming to make sure proper data flow can occur between the SQL server and the ePO. Review the results and correct any failures or warnings. Refer to the documents linked by the client if needed. Click Rerun. After all checks have passed, click Finish.
    Figure 2. McAfee ePolicy Orchestrator Pre-Installation Auditor window
  9. In the HTTP Port Information step, review the port assignments and click Next. Make sure the assigned ports are not already in use. You can change some of the ports now, but after the installation is complete only the Agent wake-up communication port and Agent broadcast communication port can be changed. See the example below (your ports might differ).
    Figure 3. HTTP Port Information window
  10. In the Administrator Information step, enter the following information.
    1. User name and password to be used for the primary administrator account.
    2. Server recovery passphrase. This passphrase should be remembered, as it is needed to decrypt the Disaster Recovery Snapshot records and McAfee cannot recover it. It includes 14-200 characters, no backslashes, no spaces, no double quotation marks, and no characters below ASCII 32 or above ASCII 6535. Click Next.
    Figure 4. Administrator Information window
  11. In the Type License Key window, select License Key.
  12. Type one of the license keys found in your Option Key statement and click Next.
  13. Accept the McAfee End User License Agreement and click OK.
    Figure 5. McAfee End User Agreement License window
  14. From the Ready to install the Program dialog box, select whether you want to allow McAfee to collect system and software telemetry data, then click Install.
  15. When installation is complete, click Finish to exit the setup program.