Table of Contents
Advertisement
1
Introducing McAfee ePolicy Orchestrator Software version 4.6.0
Components and what they do
Components and what they do
The ePolicy Orchestrator software is comprised of these components.
•
McAfee ePO server — The center of your managed environment. The server delivers security
policies and tasks, controls updates, and processes events for all managed systems. The ePolicy
Orchestrator server includes these subcomponents:
•
Apache server — Along with the event parser, this component is responsible for communicating
with the McAfee Agent. Together, these two components receive updated events and properties
from agents, and send updated policies and tasks.
•
Application server — This component hosts the user interface and server task scheduler.
•
Event parser — This component works in conjunction with the apache server to communicate
events and properties from the agent to the server, and send policies and tasks from the server
to the agent.
•
Database — The central storage component for all data created and used by ePolicy Orchestrator.
You can choose whether to house the database on your McAfee ePO server or on a separate
system, depending on the specific needs of your organization.
•
McAfee Agent — A vehicle of information and enforcement between the ePolicy Orchestrator server
and each managed system. The agent retrieves updates, ensures task implementation, enforces
policies, and forwards events for each managed system. It uses a separate secure data channel to
transfer data to the server. A McAfee Agent can also be configured as a SuperAgent.
•
Master repository — The central location for all McAfee updates and signatures, residing on the
ePolicy Orchestrator server. Master repository retrieves user-specified updates and signatures from
McAfee or from user-defined source sites.
•
Distributed repositories — Local access points strategically placed throughout your environment for
agents to receive signatures, product updates, and product installations with minimal bandwidth
impact. Depending on how your network is configured, you can set up SuperAgent, HTTP, FTP, or
UNC share distributed repositories.
•
Remote Agent Handlers — A server that you can install in various network locations to help
manage agent communication, load balancing, and product updates. Remote Agent Handlers are
comprised of an apache server and an event parser. They can help you manage the needs of large
or complex network infrastructures by allowing you more control over agent-server communication.
•
Registered servers — Used to register other servers with your ePolicy Orchestrator server.
Registered server types include:
•
LDAP server — Used for Policy Assignment Rules and to enable automatic user account creation.
•
SNMP server — Used to receive an SNMP trap. You must add the SNMP server's information so
that ePolicy Orchestrator knows where to send the trap.
•
Database server — Used to extend the advanced reporting tools provided with ePolicy
Orchestrator software.
•
Ticketing server — Before tickets can be associated with issues, you must have a registered
ticketing server configured. The system running the ticketing extension must be able to resolve
the address of the Service Desk system.
Depending on the needs of your organization and the complexity of your
network, you might only need to use some of these components.
®
16
McAfee
ePolicy Orchestrator
®
4.6.0 Software Product Guide
Advertisement
Chapters
Table of Contents
