How to apply Microsoft Windows operating system patches when the Host Intrusion Prevention 8.0 client is enabled in protect mode
Technical Articles ID:
KB54778
Last Modified: 10/16/2020
Last Modified: 10/16/2020
How to apply Microsoft Windows operating system patches when the Host Intrusion Prevention 8.0 client is enabled in protect mode
Technical Articles ID:
KB54778
Last Modified: 10/16/2020 EnvironmentMcAfee Host Intrusion Prevention (Host IPS) 8.0
SummaryMcAfee recommends that you test new operating system Service Pack (SP) installations on Host IPS clients in Log mode in a non-production test area. Monitor these tests for any security events. After testing, create any appropriate exceptions if required. Or, enable IPS in Adaptive mode, which creates an IPS exception if it is required during the SP install.
The syntax for applying the exceptions must be defined as
For Host IPS 8.0, the new option Startup IPS protection enabled might interfere with the completion of SP updates during system restarts. If you experience this issue, disable this option before you restart after you apply updates:
Startup IPS protection enabled — Select this option to apply a hard-coded set of file and registry protection rules until the Host IPS service has started on the client.
For more information about the feature, see Host Intrusion Prevention 8.0 Product Guide. Affected ProductsGlossary of Technical Terms |
|