Loading...

Knowledge Center


Endpoint Security for Mac 10.x Known Issues
Technical Articles ID:   KB85855
Last Modified:  1/11/2019
Rated:


Environment

McAfee Endpoint Security for Mac (ENSM) Firewall 10.x
McAfee ENSM Threat Prevention 10.x
McAfee ENSM Web Control 10.x

For ENSM supported environments, see KB84934.

Summary

Recent updates to this article
Date Update
January 11, 2019 Updated the "ENSM product release information" section with ENSM 10.5.8.
December 5, 2018 Updated non-critical issue 1259847 as resolved in Data Loss Prevention Endpoint 11.1.0 Hotfix 3.
November 13, 2018 Updated for ENSM 10.5.7. Added non-critical issues: 1254777 and 1259847.
October 9, 2018 Updated for ENSM 10.5.6.
September 21, 2018 Added non-critical issue: 1254818. Added ENSM Web Control 10.5.5 Hotfix 1254818 and ENSM 10.5.5 (Repost) to the "ENSM product release information" section.

To receive email notification when this article is updated, click Subscribe on the right side of the page. You must be logged on to subscribe.


Contents
Click to expand the section you want to view:
Issue resolutions in updates and major releases are cumulative; Technical Support recommends that you install the latest version. To find the most recent release for your product, visit the Product Downloads site at http://www.mcafee.com/us/downloads/downloads.aspx.
 
ENSM Version Release to Support (RTS) General Availability (GA) Release Notes
10.5.8 N/A January 8, 2019 PD28170 (ENSM)
PD28171 (ENSM Threat Prevention)
10.5.7 N/A November 13, 2018 PD28100 (ENSM)
PD28101 (ENSM Threat Prevention)
10.5.6 N/A October 9, 2018 PD27994 (ENSM)
PD28047 (ENSM Threat Prevention)
10.5.5 Hotfix 1254818 (HF1254818) September 21, 2018 N/A Available from Technical Support (ENSM Web Control)
10.5.5 (Repost) N/A September 21, 2018 PD27954 (ENSM)
PD27957 (ENSM Threat Prevention)
10.5.0 Hotfix 1244068 (HF1244068) N/A July 10, 2018 PD27860 (ENSM)
PD27861 (ENSM Threat Prevention)
10.5.0 Hotfix 1229511 (HF1229511) July 10, 2018

NOTE: This hotfix is available only from Technical Support.
See the Related Information section below for contact details.
N/A Available from Technical Support (ENSM Web Control)
10.5.0 N/A June 12, 2018 PD27515 (ENSM)
PD27516 (ENSM Threat Prevention)
10.2.3 Hotfix 1238954 (HF1238954) June 20, 2018

NOTE: This hotfix is available only from Technical Support.
See the Related Information section below for contact details.
N/A Available from Technical Support
10.2.3 Hotfix 1226723 (HF1226723) N/A February 13, 2018 PD27525 (ENSM Threat Prevention)
10.2.3 Hotfix 1224891 (HF1224891) N/A February 13, 2018 PD27526 (ENSM Web Control)
10.2.3 Hotfix 1219497 (HF1219497) N/A January 9, 2018 PD27429 (ENSM)
PD27430 (ENSM Threat Prevention)
10.2.3 Hotfix 1218987 (HF1218987) N/A January 9, 2018 PD27431 (ENSM Web Control)
10.2.3 Hotfix 1217725 (HF1217725) N/A December 14, 2017 PD27416 (ENSM Threat Prevention)
10.2.3 Hotfix 1213993 (HF1213993) N/A November 14, 2017 PD27343 (ENSM Firewall)
10.2.3 N/A September 25, 2017 PD27255 (ENSM)
PD27256 (ENSM Threat Prevention)
10.2.2 Hotfix 1191059 (HF1191059) N/A June 15, 2017 PD27120 (ENSM Threat Prevention)
10.2.2 N/A March 31, 2017 PD26970 (ENSM)
PD26971 (ENSM Threat Prevention)
10.2.1 Hotfix 1159589 (HF1159589) N/A November 7, 2016 PD26756 (ENSM)
PD26757 (ENSM Threat Prevention)
10.2.1 N/A September 20, 2016 PD26691 (ENSM)
PD26692 (ENSM Threat Prevention)
10.2.0 N/A August 11, 2016 PD26510 (ENSM)
PD26512 (ENSM Threat Prevention)
10.1.1 N/A May 16, 2016 PD26496 (ENSM)
PD26497 (ENSM Threat Prevention)
10.1.0 N/A December 16, 2015 PD26215 (ENSM)
PD26217 (ENSM Threat Prevention)
10.0.0 N/A June 25, 2015 PD25950

Back to top

There are currently no critical issues.
Reference Number Related Article Found
ENSM Version
Resolved ENSM Version Issue Description
    10.5.7 As Designed Issue: After upgrading to ENSM 10.5.7, the file format of quarantined items changes to ZIP. As a result, if ENSM is reverted to a version earlier than 10.5.7, the restore from quarantine feature does not work for files in the new format.

Resolution: This behavior is as designed. To restore quarantined items, manually extract the quarantined items using the "Archive Utility" application on the Mac system.
1259847   10.5.6 DLP Endpoint 11.1.0 Hotfix 3 Issue: On a Mac system running ENSM 10.5.6 or later, installing Data Loss Prevention Endpoint (DLP Endpoint) 11.1.0.45 downgrades certain common components used by ENSM.

Workaround: Install DLP Endpoint 11.1.0.45 before installing ENSM.

Resolution: This issue is resolved in DLP Endpoint 11.1.0 Hotfix 3.
1254818   10.5.5 10.5.5 (Repost)
10.5.5 Hotfix 1254818
Issue: Global Threat Intelligence (GTI) connectivity is intermittent in ENSM Web Control.

Resolution: This issue is resolved in ENSM 10.5.5 (Repost) and ENSM Web Control 10.5.5 Hotfix 1254818.
  • If you have not deployed ENSM 10.5.5 Web Control, use ENSM 10.5.5 (Repost).
  • If you already deployed ENSM 10.5.5 Web Control, you can either uninstall the existing version and install ENSM 10.5.5 (Repost) or install ENSM Web Control Hotfix 1254818, which is available by contacting Technical Support.
1254777   10.5.5   Issue: Quarantined files that have unicode characters in their name do not display on the Quarantine screen.
1249594      10.5.5 As Designed Issue: User interface elements of 32-bit managed products do not display in the ENSM 10.5.5 64-bit console.

Resolution: This behavior is as designed. Upgrade the 32-bit managed products to their 64-bit variants. Only user interface elements of the managed products are not loaded. All functional features of the products must work as expected, because 64-bit ENSM provides backward compatibility support for 32-bit managed products.
1250801   10.5.5 As Designed Issue: Sometimes the following message displays in macOS Mojave when MERTool is invoked for collecting Minimum Escalation Requirements (MER) logs:
 
"McAfee Endpoint Security for Mac" would like to control the application "Terminal"

Resolution: This behavior is as designed. With macOS Mojave, Apple changed the way applications try to access another application. If you see such a message, it is safe to approve the request for ENSM to control the Terminal.
1250488   10.5.5 As Designed Issue: The ENSM console displays the following error message when ENSM 10.5.5 Threat Prevention is uninstalled and Management of Native Encryption and Data Loss Prevention are left on the system:
 
Your MAC is at Risk

Resolution: This behavior is as designed. Upgrade the 32-bit managed products to their 64-bit variants. ENSM 10.5.5 Threat Prevention must not be uninstalled before uninstalling other 32-bit managed products from the system.
1248901   10.5.5 As Designed Issue: ENSM 10.5.0 Threat Prevention on-access scan detection stops working after upgrading any other ENSM module, such as Firewall or Web Control, from 10.5.0 to 10.5.5.

Resolution: This behavior is as designed. When you upgrade to ENSM 10.5.5 from a previous version of the product, upgrade all modules of ENSM on the system.
1248528   10.5.5 As Designed Issue: Installing the standalone package of McAfee Agent 5.5.1 through the ENSM 10.5.5 standalone installer package (.dmg) on a system where ePolicy Orchestrator manages ENS changes the existing McAfee Agent manageability status from managed to unmanaged.

Resolution: This behavior is as designed. Perform ENSM 10.5.5 upgrades on an ePolicy Orchestrator-managed system, from ePolicy Orchestrator through a deployment task.
1248160   10.5.5 As Designed Issue: The ENSMac License ePolicy Orchestrator extension shows its version as 10.2.0.

Resolution: This behavior is as designed. There is no change to the ENSMac License ePolicy Orchestrator extension from 10.2.0 to 10.5.5. The same 10.2.0 license extension supports ENSM 10.5.5.
1244716   10.5.5 As Designed Issue: Sometimes spin dumps are logged to System Reports in macOS Mojave, for the Menulet and McAfee Endpoint Security for Mac application processes.

Resolution: This behavior is as designed.
  KB90267 10.2.3 10.5.0 Hotfix 1244068
10.2.3 Hotfix 1238954
Issue: Users see emails stuck in their outbox or slowness when sending emails using Apple Mail. This issue is experienced when ENSM Threat Prevention 10.2.3 or 10.5.0 is installed on macOS High Sierra running on an APFS partition. This issue does not occur when on-access scan is turned off.

Resolution: This issue is resolved in ENSM Threat Prevention 10.2.3 Hotfix 1238954 and ENSM Threat Prevention 10.5.0 Hotfix 1244068. See the related article for more information.
  KB90520 10.2.3 10.5.5 Issue: ENSM runs as a 32-bit application. When starting "McAfee Endpoint Security for Mac.app" for the first time on macOS High Sierra 10.13.4 and later, you see the following alert notifying you that the ENSM application is not optimized for Mac.

"McAfee Endpoint Security for Mac" is not optimized for your Mac.

Workaround: The alert appears only once. It does not impact the product functionality, so you can safely ignore the alert. For more information, see the Apple article at https://support.apple.com/en-in/HT208436.

Resolution: This issue is resolved in ENSM 10.5.5, which has native 64-bit binaries. See the related article for more information.
    10.2.3 As Designed Issue: ENSM Threat Prevention 10.2.2 cannot co-exist with the ENSM 10.2.3 Firewall and Web Control modules.

Resolution: This behavior is as designed. When you upgrade to ENSM 10.2.3 from a previous version of the product, upgrade all modules of ENSM on the system.
1215275   10.2.3 10.5.5 Issue: When you browse any blocked URL, the McAfee block page displays. If you leave the block page idle for some time and then click OK, it redirects to a page with OK and Continue buttons, but with no message displayed on the screen. This issue occurs with Safari 10.1.2 and later.

Resolution: This issue is resolved in ENSM 10.5.5.
1211992   10.2.3 As Designed Issue: During installation of ENSM Web Control 10.2.3 with Safari 11, the Preferences - Extensions pane is displayed to the user to enable Web Control, but it does not list Web Control.

Resolution: This behavior is as designed. The user has to close the Safari 11 browser and relaunch it, to see the Web Control extension and enable it.
1219538   10.2.2 As Designed Issue: On a Mac system running ENSM, on-demand scan policy settings do not display in the client UI.

Resolution: This behavior is as designed.
1185563   10.2.2 Unable to reproduce Issue: Access Protection violation events are reported immediately for Web Protection, after installation. This issue is intermittent. If you can reproduce this issue, contact Technical Support.
1181639   10.2.1 10.2.2
10.5.5
Issue: ProductConfig.xml gets corrupted when ENSM blades are installed on an existing installation of Data Loss Prevention, File and Removable Media Protection, Management of Native Encryption, or McAfee Client Proxy.

Resolution: This issue is resolved in ENSM 10.2.2 and 10.5.5.
1177587   10.2.1 10.2.2 Issue: The Functional Module Platform daemon (fmpd) crashes, after upgrading from McAfee Client Proxy 2.2.0 to McAfee Client Proxy 2.2.1.103 on a Mac system.

Resolution: This issue is resolved in ENSM 10.2.2.
1158287   10.2.1   Issue: You installed or upgraded to ENSM 10.2.1 on Mac OS X El Capitan 10.11.x or Mac OS X Yosemite 10.10.x. Then, after upgrading the operating system to Mac OS X Sierra 10.12, the product does not display a notification when it detects malware.

Workaround: After you upgrade the operating system to Mac OS X Sierra 10.12, restart the Mac system.
1154900   10.2.1 As Designed Issue: The Endpoint Security Web Control extension for the Safari browser is not installed on a Mac OS X Sierra 10.12 system.

Resolution: This behavior is as designed. When you install the Endpoint Security Web Control extension, you must click Trust when prompted.
1144747   10.1.0 10.2.0 Issue: Installing ENSM 10.1 after Data Loss Prevention Endpoint (DLP Endpoint) for Mac 10.0 has been installed, causes both ENSM and DLP Endpoint for Mac to stop working.

Workaround: To run both applications, install ENSM 10.1 first, and then install DLP Endpoint for Mac 10.0.

Resolution: This issue is resolved in ENSM 10.2.0.
1077269   10.0.0 10.2.2 Issue: Incorrect self-protection violation events are generated for Threat Prevention and Web Control locations, after product deployment.

Workaround: If the processes that are stopped during deployment are Mkdir, CP, or WebKitPluginHost, you can safely ignore the events. The event ID is 1092.

Resolution: This issue is resolved in ENSM 10.2.2.
1071362   10.0.0 MNE 2.1.0 Hotfix 1072394 Issue: When Management of Native Encryption (MNE) is installed with ENSM, the Encryption UI does not display any information.

Resolution: This issue is resolved in MNE 2.1.0 Hotfix 1072394.
1067096   10.0.0 MCP 2.1.0 Issue: On a Mac system running ENSM, installing McAfee Client Proxy (MCP) 2.0, downgrades certain common components that ENSM uses.

Workaround: Install MCP 2.0 before installing ENSM.

Resolution: This issue is resolved in MCP 2.1.0.
 1056455   10.0.0 DLP Endpoint 9.3 Update 5 Issue: On a Mac system running ENSM, installing Data Loss Prevention Endpoint (DLP Endpoint) 9.3, downgrades certain common components that ENSM uses.

Workaround: Install DLP Endpoint 9.3 before installing ENSM.

Resolution: This issue is resolved in DLP Endpoint 9.3 Update 5.
1019557   10.0.0   Issue: Multi-slot policies in Web Control, such as the Block and Allow List and Content Actions, are not supported on Mac systems.

Workaround: Assign a single policy to the Mac system or group.
    10.0.0   Issue: Management of Native Encryption (MNE) and Data Loss Prevention (DLP Endpoint) are not supported in ePO Cloud. Do not uninstall MNE and DLP Endpoint before installing ENSM from ePO Cloud.

Workaround: Use ePolicy Orchestrator On-Premise to manage MNE and DLP Endpoint with ENSM.

Back to top

Previous Document ID

KB84530

Rate this document

Beta Translate with

Select a desired language below to translate this page.

Glossary of Technical Terms


 Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.