ePO Cloud-managed systems lose ePO connectivity until a DAT update occurs
Last Modified: 2020-05-30 00:07:41 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
ePO Cloud-managed systems lose ePO connectivity until a DAT update occurs
Technical Articles ID:
KB92952
Last Modified: 2020-05-30 00:07:41 Etc/GMT Summary
Endpoint agents that have not connected to ePO Cloud since May 26, 2020, will lose connectivity to the service starting at 10:23 GMT on May 30, 2020. Communication will be restored on the endpoint's next content update.
Problem
Endpoint agents display a red status bar in the Agent Status Monitor and can't communicate with the ePO Cloud service until their next content update. New policies do not apply to affected systems and events from those systems do not report to ePO Cloud until communication is restored.
Cause
A root certificate used in the endpoint's TLS communication with ePO Cloud expires at 10:23 GMT on May 30, 2020. Systems that have not communicated with the service in the days before the certificate expiration will not have the updated certificate necessary to perform secure TLS communication with ePO Cloud. (Systems might not have communicated with the service because they were turned off or not online for the duration.)
Solution
When endpoints come online, they will perform an update task with a time randomization of 24 hours. This update will restore connectivity.
Workaround
To proactively restore connectivity, end users can use the Update Security action in the McAfee Agent system tray icon.
Affected ProductsLanguages:This article is available in the following languages: |
|