Product guide

c
In Network Settings, type Intel
®
ME BIOS Extension (MEBX) password for locally accessing the
MEBX settings (default is admin on a new system).
If you want to use mixed mode and created a password in Edit Server Settings to support host-based
configuration, type the same password in this field.
d
Select Enable Intel
®
AMT to respond to ping requests and Enable Fast Call for Help (within the enterprise network).
8
Click Finish to close Configuration Profile wizard.
The profile is added to the list of profiles.
See also
Create a configuration profile using Intel RCS on page 145
Generate certificates for Stunnel using Microsoft CA
Generate certificates from Microsoft CA to use with Stunnel configuration.
Before you begin
The steps that follow provide an example of the process used to generate the certificate.
For complete instructions on generating certificates, go to http://www.stunnel.org/?
page=howto and see Generating the Stunnel certificate and private key (.pem).
You can generate certificates on another system to avoid copying certification-dependent
software, executables, or binaries on the DMZ.
Don't perform this task if you're using the McAfee ePO Deep Command Root CA.
When you generate Stunnel certificates, follow these guidelines:
The private key size must not exceed 2048.
Don't include an email address.
Make sure that you enter the fully qualified domain name of the ePO Deep Command Gateway
server.
Make sure that the Web Server template is used when the certificate request is submitted for
signing by the CA.
Task
For option definitions, click ? in the interface.
1
Open a web browser, then access the CA server URL.
The CA server URL must include the server's FQDN followed by /certsrv. For example, http://
<Server FQDN>/certsrv.
2
Log on to the CA server as a domain administrator, click Request a Certificate | Advanced Certificate Request,
then click Create and submit a request to this CA.
3
Select the template created, the FQDN of the host system to install Stunnel, type a name, then
click Submit.
4
Click Install this certificate.
The certificate gets listed under Personal certificates for current user on the host.
5
Select certificate and export with private key.
A
Additional information
Set up the environment for Microsoft CA authentication
156
McAfee ePO Deep Command 2.1.0 Product Guide