PURCHASE (AS A BOOKLET, A FILE ON THE PRODUCT CD, OR A FILE AVAILABLE ON THE WEBSITE FROM WHICH YOU DOWNLOADED THE SOFTWARE PACKAGE). IF YOU DO NOT AGREE TO ALL OF THE TERMS SET FORTH IN THE AGREEMENT, DO NOT INSTALL THE SOFTWARE. IF APPLICABLE, YOU MAY RETURN THE PRODUCT TO MCAFEE OR THE PLACE OF PURCHASE FOR A FULL REFUND.
Contents Introduction About the Common Criteria ....................5 Assumptions ........................6 Authorized Administrators .................... 6 Physical Access ......................6 Acronyms ......................... 6 Installation Guidelines and Preparative Procedures Overview .......................... 7 Downloading the TOE ......................7 Evaluated Configuration...................... 8 Functionality Not Included in the Evaluation ..............9 Verify Software .........................
Page 4
Operational User Guidance and Preparative Procedures Supplement for Common Criteria...
These assurance requirements call for documentation of installation procedures that provide assurance that the TOE is installed and configured in the evaluated configuration. This document serves as a supplement to the standard McAfee documentation set including the following: McAfee VirusScan Enterprise 8.8 Product Guide ...
Introduction Assumptions The McAfee VirusScan Enterprise 8.8 and ePolicy Orchestrator 4.5 (hereafter called “Target of Evaluation” or the “TOE”) has achieved Common Criteria Evaluation Assurance Level 2 and augmented by ALC_FLR.2 – Flaw Reporting Procedures. Please visit: http://www.commoncriteriaportal.org for more information on the Common Criteria.
The My Products page appears showing links for the products to which the customer is entitled. For example, if the grant number includes entitlement to McAfee VirusScan Enterprise, there will be an entry for the McAfee Active VirusScan. Select McAfee Active VirusScan.
Evaluated Configuration The evaluated configuration includes one or more instances of McAfee Agent and McAfee VirusScan Enterprise and an instance of McAfee ePolicy Orchestrator. Note that for the evaluated configuration, all user accounts defined in McAfee ePO must specify Windows authenticaltion (rather than McAfee ePO authentication).
Installation Guidelines and Preparative Procedures Verify Software The evaluated configuration includes one or more instances of McAfee Agent and VirusScan Enterprise and an instance of McAfee ePO. The following configuration should apply to the evaluated configuration: All user accounts defined in McAfee ePO must specify Windows authentication.
Extensions / VirusScan Enterprise when logged into ePolicy Orchestrator Updating System Software If the TOE is not running the evaluated version of software, the administrator should contact McAfee to obtain the appropriate license/grant for the evaluated software version. Install Database Capacity Monitor Extension The purpose of the feature is to enable the use of automatic responses to alert the administrator of the exhaustion of storage space being used by the SQL database.
Installation Guidelines and Preparative Procedures Install Database Capacity Monitor Extension Select Install Extension. Follow the prompts to install the downloaded extension. Once installed, verify that the version matches below: Creating and generating responses for Database is a three-part sequence. These steps require adjusting or reviewing database limits, setting up a server task and finally creating an Automatic Response.
Installation Guidelines and Preparative Procedures Install Database Capacity Monitor Extension Provide name and Enable the task. Select the “Check Database Size” action. Provide schedule settings. Review and save the server task. This server task creates entries in the EPOServerEvents table using the event id of ‘16081’ and contains information pertaining to the audit log entry and server information.
Page 13
Installation Guidelines and Preparative Procedures Install Database Capacity Monitor Extension Add the Event ID as a filter and specify ‘16081’ as the value: On the Aggregation tab of the Automatic Response builder screen, it should be noted that throttling should be used in order to not overload an overload system. From the Actions screen the user can specify the appropriate response;...
Page 14
Installation Guidelines and Preparative Procedures Install Database Capacity Monitor Extension Review settings and save the automatic response settings. Operational User Guidance and Preparative Procedures Supplement for Common Criteria...
The Common Criteria evaluated configuration is designed to be as flexible as possible in a deployment scenario. As such, the ongoing guidance for administrators is largely covered in the McAfee VirusScan Enterprise 8.8 software Product Guide. Administrators should read and configure the software according to the guidelines in available documentation and according to their site-specific security policies.