Xerox McAfee User Manual
Version 2.0 June 2020 702P08318
McAfee® Embedded Control
McAfee® ePO™ Configuration Guide
© 2020 Xerox Corporation. All rights reserved. Unpublished rights reserved under the copyright laws of the United States. Contents of this publication may not be reproduced in any form without permission of Xerox Corporation.
Copyright protection claimed includes all forms of matters of copyrightable materials and information now allowed by statutory or judicial law or hereinafter granted, including without limitation, material generated from the software programs which are displayed on the screen such as styles, templates, icons, screen displays, looks, and so on.
Xerox® and Xerox and Design®, Phaser®, PhaserSMART®, PhaserMatch®, PhaserCal®, PhaserMeter™, CentreWare®, PagePack®, eClick®, PrintingScout®, Walk-Up®, WorkCentre®, FreeFlow®, Scan to PC Desktop®, MeterAssistant®, SuppliesAssistant®, Xerox Secure Access Unified ID System®, Xerox Extensible Interface Platform®, ColorQube®, ConnectKey®, Global Print Driver®, VersaLink®, AltaLink®, and Mobile Express Driver® are trademarks of Xerox Corporation in the United States and/or other countries.
Adobe® Reader®, Adobe® Type Manager®, ATM™, Flash®, Macromedia®, Photoshop®, and PostScript® are trademarks of Adobe Systems Incorporated in the United States and/or other countries.
Microsoft®, Windows Vista®, Windows®, and Windows Server® are trademarks of Microsoft Corporation in the United States and other countries.
McAfee®, ePolicy Orchestrator®, and McAfee ePO™ are trademarks or registered trademarks of McAfee, Inc. in the United States and other countries.
SGI® and IRIX® are trademarks of Silicon Graphics International Corp. or its subsidiaries in the United States and/or other countries.
Sun, Sun Microsystems, and Solaris are trademarks or registered trademarks of Oracle and/or its affiliates in the United States and other countries.
UNIX® is a trademark in the United States and other countries, licensed exclusively through X/ Open Company Limited.
Wi-Fi CERTIFIED Wi-Fi Direct® is a trademark of the Wi-Fi Alliance.
Table of Contents
1 McAfee Embedded Control..................................................................................................... |
5 |
McAfee Embedded Control Overview........................................................................................ |
6 |
Setting the Security Level......................................................................................................... |
7 |
Setting the Alert Options.......................................................................................................... |
8 |
2 McAfee ePO Security Event Alerts Configuration ............................................................... |
9 |
Process Overview.................................................................................................................... |
10 |
Configuring for Security Event Alerts in McAfee ePO......................................................... |
10 |
Downloading and Installing the Xerox Extensions for McAfee ePO ......................................... |
11 |
Providing License Keys in McAfee ePO .................................................................................... |
12 |
Changing the Agent Wake-Up Communication Port in McAfee ePO........................................ |
13 |
Changing the Maximum File Upload Size Limit on the McAfee ePO Server ............................. |
14 |
Creating and Assigning a Policy in McAfee ePO ...................................................................... |
15 |
Configuring the Automated Response in McAfee ePO ............................................................ |
16 |
Configuring McAfee ePolicy Orchestrator Server Settings........................................................ |
17 |
Designating Printers as Super Nodes ...................................................................................... |
18 |
Adding DNS Entries to One or More Existing Domains...................................................... |
18 |
Adding DNS Entries to a Single New Domain ................................................................... |
18 |
Ensuring that the Device is Managed in McAfee ePO.............................................................. |
19 |
3 Configure the McAfee ePO Proxy......................................................................................... |
21 |
Configuring Your McAfee ePO Proxy ....................................................................................... |
22 |
4 Remove and Reinstall McAfee ePO Extensions ................................................................. |
23 |
Removing and Reinstalling McAfee ePO Extensions ................................................................ |
24 |
McAfee® Embedded Control |
3 |
McAfee® ePO™ Configuration Guide
Table of Contents
4McAfee® Embedded Control McAfee® ePO™ Configuration Guide
|
1 |
McAfee Embedded Control |
|
This chapter contains: |
|
• McAfee Embedded Control Overview............................................................................................ |
6 |
• Setting the Security Level ............................................................................................................. |
7 |
• Setting the Alert Options.............................................................................................................. |
8 |
McAfee® Embedded Control |
5 |
McAfee® ePO™ Configuration Guide
McAfee Embedded Control
McAfee Embedded Control Overview
When McAfee® ePolicy Orchestrator™ (ePO) is installed on your server, use this guide to integrate Xerox Multifunction Printers that have the McAfee Embedded Control security feature.
McAfee Embedded Control consists of two security features:
•Enhanced Security maintains the integrity of printer software by monitoring system files and alerting you if an unauthorized change is made to a system file.
•Integrity Control is a software option that combines Enhanced Security features with the ability to monitor and prevent unauthorized executable files from running. To enable this option, you provide a feature installation key on the Feature Installation page. To obtain a Feature Installation Key, contact your Xerox representative.
You can configure the printer to send email alerts when a security event occurs. Several alert methods are available.
Email alerts can be sent directly to you or to a centralized management application, such as:
•McAfee® ePolicy Orchestrator™ (ePO)
•Xerox® CentreWare® Web
•Xerox® Device Manager
For details about McAfee ePO and McAfee Embedded Control, visit www.mcafee.com
6McAfee® Embedded Control McAfee® ePO™ Configuration Guide
McAfee Embedded Control
Setting the Security Level
Unless you have acquired McAfee Integrity Control, Xerox recommends that you keep the security level set to the default setting, Enhanced Security.
McAfee Embedded Control has two security levels:
•Enhanced Security
•Integrity Control
Note: Only set the security level if necessary. The printer comes standard with an Enhanced Security level, which is adequate in many cases.
1. |
In the Embedded Web Server of the multifunction printer, click Properties |
|
|
|
2. |
Click McAfee Embedded Control |
. |
|
|
3. |
To enable McAfee Embedded Control features, and configure Alert Feedback options, click Edit |
|
||
4. |
To set the Security Level, under Security Level, select Enhanced Security or Integrity Control |
. |
||
5. |
If you selected Enhanced Security as the security level, click Save |
. |
|
|
6. |
If you selected Integrity Control as the security level, click Next enter the software Feature |
|
||
|
Installation Key, then click Apply |
|
. |
|
Note: When you change the security level setting, the printer restarts. The process takes several minutes.
McAfee® Embedded Control |
7 |
McAfee® ePO™ Configuration Guide
McAfee Embedded Control
Setting the Alert Options
You can configure the printer to alert you when a security event occurs. |
|
|
|||
To set the alert options: |
|
|
|
||
1. |
In the Embedded Web Server of the multifunction printer, click Properties |
|
|
||
2. |
Click McAfee Embedded Control |
. |
|
|
|
3. |
To configure Alert Feedback options, click Edit |
|
. |
||
4. |
To configure the printer to send email alerts: |
|
|
||
|
a. |
Under Locally on the Device, click Email Alerts then Save |
. |
, |
|
|
b. |
Next to E-mail Alerts, under Action, click Edit |
|
. |
|
c.Under Recipient Group Addresses, enter valid email addresses for each applicable group 1, 2, or 3.
d. For each group with email addresses, select Enable Group |
. |
e.Under Recipient Group Preferences, for McAfee Embedded Control, select each group that
|
you want to receive alerts: Group 1 Group 2 and, Group 3 |
. |
|
f. |
Click Apply |
|
. |
g. |
At the prompt, click OK |
. |
|
5.Configure your alert feedback method.
• To configure the printer to send alerts to McAfee ePolicy Orchestrator Server, under McAfee
Remote Solutions, select McAfee's ePolicy Orchestrator Server |
. |
•If you use Xerox® CentreWare® Web to manage your printers, configure security alerts in Xerox® CentreWare® Web.
•If Xerox manages your printers, use Xerox® Device Manager to send security alerts from registered printers.
Note: When McAfee Embedded Control features are enabled, the printer also records security events in the audit log.
8McAfee® Embedded Control McAfee® ePO™ Configuration Guide
Loading...