Host IPS 8.0 time-based password is overwritten

Technical Articles ID: KB81286
Last Modified: 1/14/2020

Environment

McAfee Host Intrusion Prevention (Host IPS) 8.0 Patch 3 and 4

Problem

Host IPS ClientUI time-based passwords have an expiration date and time that the Host IPS administrator determines. The password is generated from the Host IPS policy in ePolicy Orchestrator (Host Intrusion Prevention, Client UI, General policy) and can be created for single or multiple systems that have the policy applied.

Sometimes, time-based passwords become invalid or expire before the configured expiration date and time.

Cause

A code update in Patch 3 and 4 causes the expiration date and time to be overwritten. This overwrite causes a previously issued time-based password to be invalid, or expired.

Solution

This issue is resolved in Host IPS 8.0 Patch 4 Hotfix 917046. For details, see Host IPS Hotfix 917046 Release Notes.

Workaround

You can only issue one Host IPS Client UI time-based password at a time.

Creating and issuing a successive Time-Based password causes the previous time-based password to be invalid, even though the expiration date/time is still valid.

Workaround Scenario 1

Create and issue a single Client UI time-based password for all systems, with an expiration date and time set.
Provide the same time-based password to all users who need it.

Workaround Scenario 2

Create and issue a single Client UI time-based password for all systems, with an expiration date and time set for a weekly basis.
Provide the same time-based password to all users who need it during that week.
Repeat for successive weeks.

NOTE: The previous week's time-based password is now invalid.

Workaround

The Host IPS Client UI administrator password is unaffected by this defect. In a critical situation, the administrator password can be issued to the user, and the administrator password can then be reset.

Related Information

KB79478 - Time-based password functionality does not work correctly with the Host IPS 8.0.3.762 extension.

Affected Products

Host Intrusion Prevention 8.0
Known Issue/Product Defect

Languages:

This article is available in the following languages:

English United States
Japanese

Glossary of Technical Terms

Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.

Knowledge Center

Environment

Problem

Cause

Solution

Workaround

Workaround

Related Information

Affected Products

Languages:

Glossary of Technical Terms

Title

Title

Featured Solutions

Explore Our Portfolio

Security Outcomes

Industries

Products

Featured Solutions

Explore Our Portfolio

MVISION Products

Services & Training

Threat Research

Our Researchers

Threat Landscape Dashboard

Tools

Contact Us

Resources

Downloads

Product Help

Connect with Us

Explore

Our Company

Our Efforts

Other Resources

Careers

Partnerships

Knowledge Center

Environment

Problem

Cause

Solution

Workaround

Workaround

Related Information

Affected Products

Languages:

Glossary of Technical Terms

Choose your region

Title

Title