McAfee Policy Auditor 5.2.
COPYRIGHT Copyright © 2008 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language in any form or by any means without the written permission of McAfee, Inc., or its suppliers or affiliate companies.
Contents Introduction. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4 Product components. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4 Finding documentation for McAfee enterprise products. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Introduction ® ® This guide describes installing McAfee Policy Auditor 5.2.0 for use with ePolicy Orchestrator version 4.0 Patch 5, or version 4.5. The Setup also installs McAfee Benchmark Editor 5.2.0, a tool that is used by Policy Auditor and other products managed by ePolicy Orchestrator.
Introduction Finding documentation for McAfee enterprise products • Analyzing the system for the presence of the specified machine state (vulnerability, configuration, patch state, and so on). • Reporting the results of this assessment. Finding documentation for McAfee enterprise products To access the documentation for your McAfee products, use the McAfee ServicePortal. 1 Go to the McAfee ServicePortal (http://mysupport.mcafee.com) and, under Support by Reading, click Product Documentation.
Introduction Product installation overview • Compliant — A message displayed when the system complies with the audit. • Incomplete — A message displayed when the results gathered are not complete because they exceed the violation limit. Product installation overview Policy Auditor is installed only in an ePolicy Orchestrator environment. An ePO management server and database must be in place.
System Requirements Before you install McAfee Policy Auditor, verify that each component meets the minimum system requirements. Server requirements Policy Auditor database considerations McAfee Agent versions supported Windows agent plug-in requirements Non-Windows agent plug-in requirements Distributed repositories Common Criteria considerations Server requirements You must meet all hardware requirements as outlined in the ePolicy Orchestrator product guide for your software version.
System Requirements Server requirements • Windows Server 2003 Web with Service Pack 2 or later • Windows Server 2003 R2 Enterprise with Service Pack 2 or later • Windows Server 2003 R2 Standard with Service Pack 2 or later • Windows Server 2008 Enterprise • Windows Server 2008 Standard NOTE: The installation is blocked if you attempt to install on a version of Windows earlier than Server 2003.
System Requirements Server requirements Operating system X86 support X64 support Other processors Notes Windows XP Professional X X Native 32- and 64-bit agent Windows Server 2003 Standard Edition X X Native 32- and 64-bit agent Windows Server 2003 Enterprise Edition X X Native 32- and 64-bit agent Windows Vista X X Native 32- and 64-bit agent Windows 2008 Server X X Native 32- and 64-bit agent Mac OS X 10.4 X X PowerPC Universal binary Mac OS X 10.
System Requirements Server requirements Agentless auditing system McAfee Vulnerability Manager 6.8 Notes • Works with the ePolicy Orchestrator 4.0 Patch 5 environment and the ePolicy Orchestrator 4.5 environment. • Does not require you to install Java. • Does not support all of the features of McAfee Agent 5.2. McAfee Foundstone 6.7 integration requirements Policy Auditor can register a McAfee Foundstone 6.7 server to conduct agentless audits.
System Requirements Policy Auditor database considerations Policy Auditor database considerations Using Policy Auditor with a database You need to install a database before you install Policy Auditor. If no database is present, the Policy Auditor Setup offers to install SQL Server 2005 Express. • Any of the following databases, if previously installed, meet this requirement. • MSDE 2000 (ePolicy Orchestrator 4.0 only). • SQL 2000 (ePolicy Orchestrator 4.0 only). • SQL Server 2005 Express with Patch 2.
System Requirements Policy Auditor database considerations Database Requirements Notes SQL Server 2005 Express • .NET Framework 2.0 You must acquire and install .NET Framework 2.0 SP2. • .NET Framework 2.0 Service Pack 2 Table 2: Additional software considerations Software MSXML 6.0 Notes You must acquire and install. 1 From the Internet Explorer Tools menu, select Windows Update. 2 Click Custom, then select Software, Optional. 3 Select MSXML6.
System Requirements Browsers supported SQL Server • Dedicated server and network connection — Use a dedicated server and network connection if managing more than 5,000 client computers. • SQL Server licenses — If using SQL Server, a SQL Server license is required for each processor on the computer where SQL Server is installed.
System Requirements Windows agent plug-in requirements Windows agent plug-in requirements Hardware and network requirements • Processor — Intel Pentium-class, Celeron, or compatible processor; 166 MHz processor or higher. • Free disk space (agent) — 300 MB. • Free disk space (products) — Sufficient disk space on client computers for each McAfee product that you plan to deploy. For more information, see the corresponding product documentation. • Free Memory — 20 MB RAM.
System Requirements Distributed repositories Distributed repositories • Free disk space — 100 MB on the drive where the repository is stored. • Memory — 256 MB minimum. Common Criteria considerations This page is intended for use by government agencies that are required to use only National Information Assurance Partnership (NIAP) Common Criteria validated security products.
System Requirements Common Criteria considerations employing ePolicy Orchestrator authentication only. McAfee is recommends that the network IT administrator assign passwords that meet the following requirements: • Must be at least 10 characters in length. • Must contain at least three of the following four character groups: • English uppercase characters (A-Z). • English lowercase characters (a-z). • Numerals (0-9). • Non-alphanumeric characters, such as !, $, #, %.
Installation of McAfee Policy Auditor This chapter provides instructions for installing the Policy Auditor extension on a system where ePolicy Orchestrator software has been installed. Policy Auditor 5.2.0 can be installed as a new installation or as an upgrade from earlier Policy Auditor versions. Be sure that you have read, understood, and complied with the requirements and recommendations in the System Requirements section. This summarizes the process of installing Policy Auditor.
Installation of McAfee Policy Auditor Installing Policy Auditor on ePolicy Orchestrator 1 Stop these ePolicy Orchestrator services, then change their startup type to Manual. • McAfee ePolicy Orchestrator Application Server. • McAfee ePolicy Orchestrator Event Parser. • McAfee ePolicy Orchestrator Server. 2 Install Policy Auditor on each cluster member according to the Installing Policy Auditor on ePolicy Orchestrator section. No configuration changes are required.
Installation of McAfee Policy Auditor Installing the McAfee Foundstone 6.7 extension 9 Verify that all information is correct, then start the installation. 10 When the installation is complete, click Finish. NOTE: After installing Policy Auditor, the content check-in requires 20 to 25 minutes. Allow approximately 30 minutes to pass after installation before using benchmarks or checks. Click Reporting | Server Task Log to verify that the new content has been checked in.
Installation of McAfee Policy Auditor Policy Auditor configuration 3 Follow the instructions in the Setup and the documentation for Foundstone ePO Data Integration Extension to complete the installation. Policy Auditor configuration This is a high-level overview of the configuration process you need to follow after installing Policy Auditor. All of the information can be found in the online help. 20 1 Go to the Configuring Benchmark Editor section under McAfee McAfee Benchmark Editor 5.2.
Index A agent plug-in, supported platforms 8 AIX 5.3 and 6.
Index Windows agent plug-in requirements 14 W 22 McAfee Policy Auditor 5.2.
