Unable to check in the Management of Native Encryption Extension
Last Modified: 2022-10-03 06:35:04 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Unable to check in the Management of Native Encryption Extension
Technical Articles ID:
KB88189
Last Modified: 2022-10-03 06:35:04 Etc/GMT Environment
Management of Native Encryption (MNE) 4.1 and later
SummaryThis article describes the necessity for using elevated permissions during the installation of MNE. Some administrators must make a business case for having the elevated permissions to install a product.
There's minimal impact to the security of the environment to elevate the permissions during the brief window it takes to install MNE. But, the permissions must be set back to Problem
The MNE extension fails to check in to ePolicy Orchestrator (ePO). The Cause
The administrator who checks in the package requires elevated permissions.
SolutionMNE differs from previous ePO-managed products because significant changes to the underlying ePO database structure must be implemented during the MNE installation.
Previous managed products use the standard ePO database structure and don't require accounts with the permissions needed to add tables and stored procedures. Because the MNE installer adds tables, stored procedures, and user-defined functions, it requires more rights to perform those tasks. Those rights must be associated with the user account under which the installation is initiated. ePO requires the Installation of MNE requires an account with sufficient permissions to perform the following actions:
Key Facts:
During normal use of the product, the permissions needed are consistent with the DBO role, which allows the user to use the product with limited permissions. Affected ProductsLanguages:This article is available in the following languages: |
|