Installation Guide
Page 3
... boot option 22 Upgrade the products 23 Apply a hotfix 23 Convert an installation to another DLP product 24 Restoring the drives 24 4 Installing or upgrading software on model 1650 and 3650 appliances 25 Download and expand the legacy archive 25 Install the products on legacy servers 26 Upgrade to 9.2.0 on legacy appliances 27 5 Configuring McAfee DLP appliances and adding servers 29 Configure McAfee DLP appliances using Setup Wizard 29 Configure McAfee DLP appliances after installation 35 Add McAfee DLP products to McAfee DLP Manager 35 McAfee Data Loss Prevention...
... boot option 22 Upgrade the products 23 Apply a hotfix 23 Convert an installation to another DLP product 24 Restoring the drives 24 4 Installing or upgrading software on model 1650 and 3650 appliances 25 Download and expand the legacy archive 25 Install the products on legacy servers 26 Upgrade to 9.2.0 on legacy appliances 27 5 Configuring McAfee DLP appliances and adding servers 29 Configure McAfee DLP appliances using Setup Wizard 29 Configure McAfee DLP appliances after installation 35 Add McAfee DLP products to McAfee DLP Manager 35 McAfee Data Loss Prevention...
Installation Guide
Page 4
... on McAfee DLP Manager 67 Connecting McAfee DLP Manager and the ePolicy Orchestrator server 68 Gather ePolicy Orchestrator registration information 68 Add a McAfee ePO database user for McAfee DLP Manager 68 Register McAfee DLP Manager on ePolicy Orchestrator server 69 Register ePolicy Orchestrator on McAfee DLP Manager 69 Checking the connection 70 Configuring McAfee DLP Endpoint on McAfee DLP Manager 70 Generate a global policy for McAfee DLP Endpoint 71 Maintaining compatibility with installed McAfee clients 71 Set an Agent Override password 72 Set the manual tagging...
... on McAfee DLP Manager 67 Connecting McAfee DLP Manager and the ePolicy Orchestrator server 68 Gather ePolicy Orchestrator registration information 68 Add a McAfee ePO database user for McAfee DLP Manager 68 Register McAfee DLP Manager on ePolicy Orchestrator server 69 Register ePolicy Orchestrator on McAfee DLP Manager 69 Checking the connection 70 Configuring McAfee DLP Endpoint on McAfee DLP Manager 70 Generate a global policy for McAfee DLP Endpoint 71 Maintaining compatibility with installed McAfee clients 71 Set an Agent Override password 72 Set the manual tagging...
Installation Guide
Page 11
..., and directory servers. If you add McAfee DLP Endpoint to the network product suite, you must be managed and the servers needed to your McAfee DLP system. 2 Setting up the hardware This Quick Start serves as a high-level road map for Data Loss Prevention depends on your objectives, you might add McAfee DLP Discover or McAfee DLP Prevent, which require additional configuration. Task 1 Refer to install it requires additional configuration steps. Cisco console cable McAfee Data Loss Prevention 9.2.0 Installation Guide 11
..., and directory servers. If you add McAfee DLP Endpoint to the network product suite, you must be managed and the servers needed to your McAfee DLP system. 2 Setting up the hardware This Quick Start serves as a high-level road map for Data Loss Prevention depends on your objectives, you might add McAfee DLP Discover or McAfee DLP Prevent, which require additional configuration. Task 1 Refer to install it requires additional configuration steps. Cisco console cable McAfee Data Loss Prevention 9.2.0 Installation Guide 11
Installation Guide
Page 14
....1.2 The DLP user interface starts. 4 Log on the Network Configuration page of the appliance using the supplied Ethernet cable. 2 Change the laptop to an address in the 192.168.1.X/24 IP range - The default logon is not necessary. If you are configuring McAfee DLP Monitor, proceed to the following step. Restarting is admin/mcafee. If you are configuring a McAfee DLP Manager, skip to the next topic. 7 Advance through the Setup Wizard pages to the Review page. The End User License...
....1.2 The DLP user interface starts. 4 Log on the Network Configuration page of the appliance using the supplied Ethernet cable. 2 Change the laptop to an address in the 192.168.1.X/24 IP range - The default logon is not necessary. If you are configuring McAfee DLP Monitor, proceed to the following step. Restarting is admin/mcafee. If you are configuring a McAfee DLP Manager, skip to the next topic. 7 Advance through the Setup Wizard pages to the Review page. The End User License...
Installation Guide
Page 17
... is a firewall or a series of devices separating the LAN switch from these ports flows directly to the capture ports on a Cisco switch, the WAN router would be connected to interface "GigabitEthernet1/0/1". The DLP appliance would be connected to interface "GigabitEthernet1/0/2". The network tap captures traffic through two network ports. Common configuration If a SPAN port is configured on McAfee DLP Monitor. Traffic from the WAN router, the network tap should be installed between two network devices (generally the LAN switch and the WAN router) using additional cabling, then...
... is a firewall or a series of devices separating the LAN switch from these ports flows directly to the capture ports on a Cisco switch, the WAN router would be connected to interface "GigabitEthernet1/0/1". The DLP appliance would be connected to interface "GigabitEthernet1/0/2". The network tap captures traffic through two network ports. Common configuration If a SPAN port is configured on McAfee DLP Monitor. Traffic from the WAN router, the network tap should be installed between two network devices (generally the LAN switch and the WAN router) using additional cabling, then...
Installation Guide
Page 19
... upgrading the software on Model 4400 A McAfee DLP installation on the model 4400 appliance. Contents Download and expand the archive Boot options Upgrade the products Apply a hotfix Convert an installation to another DLP product Restoring the drives Download and expand the archive To prepare for the kernal) and DLP software. The system automatically boots from the Service Portal and copy it to the appliance. McAfee DLP Manager is also known as needed. Downloadable archives all have changed. McAfee Data Loss Prevention 9.2.0 Installation Guide...
... upgrading the software on Model 4400 A McAfee DLP installation on the model 4400 appliance. Contents Download and expand the archive Boot options Upgrade the products Apply a hotfix Convert an installation to another DLP product Restoring the drives Download and expand the archive To prepare for the kernal) and DLP software. The system automatically boots from the Service Portal and copy it to the appliance. McAfee DLP Manager is also known as needed. Downloadable archives all have changed. McAfee Data Loss Prevention 9.2.0 Installation Guide...
Installation Guide
Page 22
... you begin Download the product archive, copy it to the appliance, and expand it into a product directory under /data. Install a fresh image If a fresh image is needed, you can install a fresh image on the specified disk. When the installation is complete, a message appears stating which image will boot next. 5 Reboot the system. In rare instances, you have a specific need that was installed. Using this step only...
... you begin Download the product archive, copy it to the appliance, and expand it into a product directory under /data. Install a fresh image If a fresh image is needed, you can install a fresh image on the specified disk. When the installation is complete, a message appears stating which image will boot next. 5 Reboot the system. In rare instances, you have a specific need that was installed. Using this step only...
Installation Guide
Page 25
...grant number you received after purchasing the product. 4 Installing or upgrading software on model 1650 and 3650 appliances A McAfee DLP installation on the model 1650 and 3650 appliances contains the software for installation, download the software from the Service Portal and copy it is also known as "iguard". McAfee DLP Endpoint must be installed separately. Task 1 Open the McAfee Service Portal by entering a platform type option. McAfee Data Loss Prevention 9.2.0 Installation Guide 25 The installation and upgrade procedures for the management console (McAfee DLP Manager...
...grant number you received after purchasing the product. 4 Installing or upgrading software on model 1650 and 3650 appliances A McAfee DLP installation on the model 1650 and 3650 appliances contains the software for installation, download the software from the Service Portal and copy it is also known as "iguard". McAfee DLP Endpoint must be installed separately. Task 1 Open the McAfee Service Portal by entering a platform type option. McAfee Data Loss Prevention 9.2.0 Installation Guide 25 The installation and upgrade procedures for the management console (McAfee DLP Manager...
Installation Guide
Page 27
... McAfee support and submit an installation log file. McAfee Data Loss Prevention 9.2.0 Installation Guide 27 If the patch installation fails, do not install it again. Upgrade to 9.2.0 on legacy appliances You can upgrade to any existing hotfixes. When that is complete. Installing or upgrading software on model 1650 and 3650 appliances Upgrade to 9.2.0 on legacy appliances 4 6 Restart the system. # reboot 7 Log on to the appliance as root, go to the installation directory, and verify the installation with the command...
... McAfee support and submit an installation log file. McAfee Data Loss Prevention 9.2.0 Installation Guide 27 If the patch installation fails, do not install it again. Upgrade to 9.2.0 on legacy appliances You can upgrade to any existing hotfixes. When that is complete. Installing or upgrading software on model 1650 and 3650 appliances Upgrade to 9.2.0 on legacy appliances 4 6 Restart the system. # reboot 7 Log on to the appliance as root, go to the installation directory, and verify the installation with the command...
Installation Guide
Page 29
... Protection for Data Loss Prevention 9.2.0 Product Guide for the appliance to McAfee DLP Manager and managed from the Configure link on the appliance. Task 1 Open a web browser and start the Setup Wizard from that requires different settings. Most McAfee DLP enterprise configurations have LDAP servers configured, and McAfee® Logon Collector is complete, you can start the application using Setup Wizard After installing the appliances, configure them by running the Setup Wizard. Some default filters are configured, servers that extend the functionality of...
... Protection for Data Loss Prevention 9.2.0 Product Guide for the appliance to McAfee DLP Manager and managed from the Configure link on the appliance. Task 1 Open a web browser and start the Setup Wizard from that requires different settings. Most McAfee DLP enterprise configurations have LDAP servers configured, and McAfee® Logon Collector is complete, you can start the application using Setup Wizard After installing the appliances, configure them by running the Setup Wizard. Some default filters are configured, servers that extend the functionality of...
Installation Guide
Page 30
admin/mcafee 3 On the End User License Agreement page, select the checkbox and click I Accept. 4 On the Network Configuration page, assign the hostname, domain and IP addresses of the gateway and DNS servers, then click Next. 5 Configuring McAfee DLP appliances and adding servers Configure McAfee DLP appliances using Setup Wizard 2 At the logon prompt, type the default user name and password. Figure 5-1 Network configuration You must enter a fully-qualified domain name into the Hostname field. 30 McAfee Data Loss Prevention 9.2.0 Installation Guide
admin/mcafee 3 On the End User License Agreement page, select the checkbox and click I Accept. 4 On the Network Configuration page, assign the hostname, domain and IP addresses of the gateway and DNS servers, then click Next. 5 Configuring McAfee DLP appliances and adding servers Configure McAfee DLP appliances using Setup Wizard 2 At the logon prompt, type the default user name and password. Figure 5-1 Network configuration You must enter a fully-qualified domain name into the Hostname field. 30 McAfee Data Loss Prevention 9.2.0 Installation Guide
Installation Guide
Page 36
... point for Data Loss Prevention 9.2.0 Product Guide. 36 McAfee Data Loss Prevention 9.2.0 Installation Guide Configuring McAfee DLP Prevent If McAfee DLP Prevent is being performed. Both MTA and proxy servers can be used to assure proper performance. If you must use the McAfee DLP Endpoint Policy Manager to update the policy. Stingray automatically restarts the appliance to register the change the root password on the appliance before adding it is selected, the options change the IP address, the network service needs to...
... point for Data Loss Prevention 9.2.0 Product Guide. 36 McAfee Data Loss Prevention 9.2.0 Installation Guide Configuring McAfee DLP Prevent If McAfee DLP Prevent is being performed. Both MTA and proxy servers can be used to assure proper performance. If you must use the McAfee DLP Endpoint Policy Manager to update the policy. Stingray automatically restarts the appliance to register the change the root password on the appliance before adding it is selected, the options change the IP address, the network service needs to...
Installation Guide
Page 37
... support interoperability. McAfee Data Loss Prevention 9.2.0 Installation Guide 37 Examples of a requirement where only a portion of the traffic needs to be scanned might be in an email scheduled to be capable of implementing all of the McAfee DLP Prevent-based actions. McAfee DLP Prevent is used to public sites (for email headers. Configure McAfee DLP Prevent Unless McAfee DLP Prevent is not typically used with some other metrics. Configuring McAfee DLP appliances and adding servers Configuring McAfee DLP Prevent 5 McAfee DLP Prevent can be configured with...
... support interoperability. McAfee Data Loss Prevention 9.2.0 Installation Guide 37 Examples of a requirement where only a portion of the traffic needs to be scanned might be in an email scheduled to be capable of implementing all of the McAfee DLP Prevent-based actions. McAfee DLP Prevent is used to public sites (for email headers. Configure McAfee DLP Prevent Unless McAfee DLP Prevent is not typically used with some other metrics. Configuring McAfee DLP appliances and adding servers Configuring McAfee DLP Prevent 5 McAfee DLP Prevent can be configured with...
Installation Guide
Page 41
... complete. This authenticates the McAfee Logon Collector to McAfee DLP Manager. 13 Click the Export link to save the NetDLP certificate to your desktop. 18 Click Open, then click Save. Configuring McAfee DLP appliances and adding servers Add syslog servers to McAfee DLP systems 5 9 Select Actions | Create McAfee Logon Collector. 10 Enter the IP address of the McAfee Logon Collector into the box. Alternatively, you saved to manually reset the time and resyncronize...
... complete. This authenticates the McAfee Logon Collector to McAfee DLP Manager. 13 Click the Export link to save the NetDLP certificate to your desktop. 18 Click Open, then click Save. Configuring McAfee DLP appliances and adding servers Add syslog servers to McAfee DLP systems 5 9 Select Actions | Create McAfee Logon Collector. 10 Enter the IP address of the McAfee Logon Collector into the box. Alternatively, you saved to manually reset the time and resyncronize...
Installation Guide
Page 45
...system requirements. We recommend using a subnet separate from your company's production network for supported Windows systems. 2 Install Windows Installer 3.0 (Windows 2003) or 4.5 (Windows 2008) and restart the system. In secure systems, this folder. We recommend completing all updates. 4 Disable Microsoft Internet Explorer's Enhanced Security Configuration Window Component. • In Windows 2003, open the Windows Control Panel then select Add/Remove Windows Components. • In Windows 2008, open the Server Manager then select Configure IE ESC in McAfee ePolicy Orchestrator 4.5 or...
...system requirements. We recommend using a subnet separate from your company's production network for supported Windows systems. 2 Install Windows Installer 3.0 (Windows 2003) or 4.5 (Windows 2008) and restart the system. In secure systems, this folder. We recommend completing all updates. 4 Disable Microsoft Internet Explorer's Enhanced Security Configuration Window Component. • In Windows 2003, open the Windows Control Panel then select Add/Remove Windows Components. • In Windows 2008, open the Server Manager then select Configure IE ESC in McAfee ePolicy Orchestrator 4.5 or...
Installation Guide
Page 46
... OK. Installation wizard Setting screen Installation Options Select Install Server and Console Setup Requirements When installing on an existing SQL Server 2005 or 2008 server and select it . After verification that case, you must install it . Install McAfee ePolicy Orchestrator McAfee Data Loss Prevention Endpoint software version 9.2 Patch 2 can also be used. 2 During the installation, you should be installed in the McAfee ePO installer. Otherwise, the installation fails. If prompted to install SQL Server 2005 Backward Compatibility, you...
... OK. Installation wizard Setting screen Installation Options Select Install Server and Console Setup Requirements When installing on an existing SQL Server 2005 or 2008 server and select it . After verification that case, you must install it . Install McAfee ePolicy Orchestrator McAfee Data Loss Prevention Endpoint software version 9.2 Patch 2 can also be used. 2 During the installation, you should be installed in the McAfee ePO installer. Otherwise, the installation fails. If prompted to install SQL Server 2005 Backward Compatibility, you...
Installation Guide
Page 47
...In the McAfee ePO installation wizard, use Windows authentication or SQL authentication. Installing McAfee DLP Endpoint Installing McAfee DLP WCF service 6 Pay attention to the following settings. You will need to the connection between McAfee ePolicy Orchestrator, McAfee Data Loss Prevention Endpoint, and the McAfee DLP Monitor. Installing McAfee DLP WCF service The McAfee DLP Windows Communication Foundation (WCF) service is to create an ePolicy Orchestrator instance on a separate server (remote installation). Option 1: Installing WCF locally When installing WCF on...
...In the McAfee ePO installation wizard, use Windows authentication or SQL authentication. Installing McAfee DLP Endpoint Installing McAfee DLP WCF service 6 Pay attention to the following settings. You will need to the connection between McAfee ePolicy Orchestrator, McAfee Data Loss Prevention Endpoint, and the McAfee DLP Monitor. Installing McAfee DLP WCF service The McAfee DLP Windows Communication Foundation (WCF) service is to create an ePolicy Orchestrator instance on a separate server (remote installation). Option 1: Installing WCF locally When installing WCF on...
Installation Guide
Page 53
... upgrade the McAfee DLP Windows Communication Foundation service to the latest version. c If you begin installation of the installation wizard (Microsoft SQL Database), do this , the new version checks the client and server versions and displays an error message if they don't match. Before you are installing. 2 In step 4 of ePolicy Orchestrator. The folders do the following : a Review the defaults for instructions. McAfee Data Loss Prevention 9.2.0 Installation Guide 53 Installing McAfee DLP Endpoint Repository folders 6 Run the McAfee DLP...
... upgrade the McAfee DLP Windows Communication Foundation service to the latest version. c If you begin installation of the installation wizard (Microsoft SQL Database), do this , the new version checks the client and server versions and displays an error message if they don't match. Before you are installing. 2 In step 4 of ePolicy Orchestrator. The folders do the following : a Review the defaults for instructions. McAfee Data Loss Prevention 9.2.0 Installation Guide 53 Installing McAfee DLP Endpoint Repository folders 6 Run the McAfee DLP...
Installation Guide
Page 54
... Prevention 9.2.0 Installation Guide Before you must be created and configured before running the installer. Task 1 Right-click the evidence / whitelist folder and select Sharing and Security. 2 In the dialog box that are placed in Before you can be ignored by skipping these chunks of the repository folders on Windows 2008 Server requires specific security settings. The Permissions tab on the server. McAfee DLP Endpoint software...
... Prevention 9.2.0 Installation Guide Before you must be created and configured before running the installer. Task 1 Right-click the evidence / whitelist folder and select Sharing and Security. 2 In the dialog box that are placed in Before you can be ignored by skipping these chunks of the repository folders on Windows 2008 Server requires specific security settings. The Permissions tab on the server. McAfee DLP Endpoint software...
Installation Guide
Page 68
7 Integrating McAfee DLP Endpoint into a unified policy system Connecting McAfee DLP Manager and the ePolicy Orchestrator server • Hostname - \\ • IP Address - • Username -
7 Integrating McAfee DLP Endpoint into a unified policy system Connecting McAfee DLP Manager and the ePolicy Orchestrator server • Hostname - \\ • IP Address - • Username -