Specifications
This is not an exhaustive list and new products are constantly being added as McAfee expands its
solution portfolio. Because of the McAfee ePO server's modular architecture, you can instantly add new
product policies for management by ePolicy Orchestrator by checking in a product extension. An
extension is a zip file, released by McAfee or a partner vendor, that you simply check into ePolicy
Orchestrator so you can manage a product's policies. See McAfee Security Innovation Alliance (SIA)
for a list of partner vendors.
By default all policies are inherited from the "My Organization" level, the highest point in the System
Tree. This means all policies for all products flow downward into the groups and subgroups below it.
Always set your policies at the My Organization level and let your policies flow downward.
Try to find a middle ground for all your policies that apply to as many systems as possible in your
System Tree. This might not be realistic for all products, for example complex products like VirusScan
Enterprise or Host Intrusion Prevention System. But, less complex policies can apply to all systems,
for example the McAfee Agent policies govern all the settings for the McAfee Agent itself.
McAfee agent policy
The McAfee Agent policy is a universal policy that applies to every system in your environment,
becasue the agent is required for all other point-products.
See McAfee ePolicy Orchestrator 4.5 Product Guide for details about the McAfee Agent policy default
settings.
Agent to server communication interval (ASCI)
The agent-to-server communication interval (ASCI) dictates how often every McAfee Agent calls the
McAfee ePO server, and is one of the most important settings under the agent policy.
The ASCI is set to 60 minutes by default and:
8
Policies and packages
McAfee agent policy
56
McAfee
®
ePolicy Orchestrator
®
4.0 and 4.5 Best Practices Guide