Loading...

Knowledge Center


McAfee support for Windows Server 2019 with upgrade from VirusScan Enterprise 8.8 Patch 9 to Endpoint Security 10.6.1 and Data Exchange Layer 4.1.2
Technical Articles ID:   KB91172
Last Modified:  1/18/2019

Environment

McAfee Endpoint Security (ENS) 10.6.1
McAfee VirusScan Enterprise (VSE) 8.8 Patch 9

Microsoft Windows Server 2019
Microsoft Windows Server 2012 R2

For details of ENS supported environments, see KB82761.
For details of VSE supported environments, see KB51111.

Summary

Introduction to Reference Configurations

Reference configurations are McAfee-recommended deployment scenarios that have undergone extensive testing to ensure proper sequencing. The scenarios reduce the need for restarts and improve ease of execution.

For more details about reference configurations and answers to frequently asked questions, see KB88274.

This reference configuration document is designed for customers who already have McAfee products deployed. This document was created by building a baseline system matching the most commonly deployed versions of McAfee products at that point in time, then upgrading to recently released product versions. The intent is to provide a roadmap for upgrading to recent releases. 

NOTE: Not all McAfee products are included in this document. It represents products that are commonly used. If your product mix is a subset of this configuration, you can skip over any product deployment that does not apply to your needs. The recommended products in this reference configuration do not necessarily represent the latest released versions of many McAfee products.


Before You Begin

Before beginning the deployment process, there are several preparatory actions that will help lead to a successful deployment process.

Review the latest release notes and known issues 
Although McAfee officially recommends this reference configuration, we might discover issues that could impact the success of your deployment. See the Recommended Product Configuration table for links to known issues for each product version. 

Plan for restarts 
Some operating system driver modules installed during product upgrades are only properly loaded into memory at runtime, and thus a restart is required to facilitate the loading of the new drivers. Limitations of the operating system require that only one version of these drivers be loaded at a time. Depending on which products you are installing, multiple restarts might be required. This deployment path has been optimized to minimize the number of required restarts, when updating all products listed in the sequence.

If you are planning to update only a subset of products, plan to restart after the updates are complete.

Adapt this guideline to your specific upgrade plan 
Your current deployment baseline might differ from the versions mentioned in the Recommended Product Configuration table. If some of your product versions are more recent than this provided baseline, still follow the recommended sequence. If you do not use some of the products in the list, you can skip that product.


Recommended Product Configuration
The table below lists commonly deployed products, determined based on telemetry samplings from a large set of customers. McAfee recommends that you deploy these products to take advantage of the recent product offering for Endpoint Security 10.6.1. This configuration has been extensively tested for cross-product compatibility using operating systems listed below.

Operating systems: Windows Server 2012 R2 upgrade to Windows Server 2019
 
Products Common Versions Recommended Versions Operating System Upgrade Known Issues
ePolicy Orchestrator (ePO) 5.3.2.156    
 
 
 
 
 
 
 
Window Server 2012 R2
To
Windows Server 2019
KB82675
Protection Workspace   Service Extension: 1.0.0.678
UI Extension: 1.0.0.671
 
Data Exchange Layer Broker (DXL Broker)   4.1.1.113
(Included in TIE server ISO)
KB89741
Threat Intelligence Exchange Server
(TIE Server)
  2.3.0.328 KB85172
McAfee Active Response Server
(MAR Server)
  Bundle: 2.4.0.134
Server: 2.4.0.158
KB88196
Advanced Threat Defense (ATD)   4.4.0 KB89507
Web SaaS   Configure to work with MCP  
McAfee Agent (MA) 5.0.6.220 5.5.1.388 KB90082
VirusScan Enterprise (VSE) 8.8.0 Patch 9
Client: 8.8.0.1804
   
Endpoint Security (ENS)
  • ENS Platform
  • ENS Threat Prevention
  • ENS Firewall
  • ENS Web Control
   
10.6.1.1068
10.6.1.1128
10.6.1.1045
10.6.1.1047
KB82450
McAfee Client Proxy (MCP)   2.3.5.243 KB83131
Data Exchange Layer Client (DXL Client)   4.1.2.107 KB89741
Adaptive Threat Protection (ATP)   Extension: 10.6.1.1037
Client: 10.6.1.1064
KB88788
McAfee Active Response Client
(MAR Client)
  2.4.0.158 KB88196
Host Intrusion Prevention System
(Host IPS)
8.0.0 Patch 10
Extension: 8.0.0.1169
Client: 8.0.0.4480
 
 8.0.0 Patch 12
Extension: 8.0.0.1193
Client: 8.0.0.4789
 
KB91008
Data Loss Prevention Endpoint
(DLP Endpoint)1
Extension: 11.0.200.21
Client: 11.0.200.100
   
Drive Encryption (DE) 7.2.1.16 Extension: 7.2.7.8
Client: 7.2.7.8
KB84502
McAfee Application and Change Control
(MACC)2
Extension: 8.0.0.231
Client: 8.0.0.875
   
 
1 DLP Endpoint is currently not supported on Windows Server 2019.
2 MACC is currently not supported on Windows Server 2019.

Installation Process
This section outlines the recommended order of operation:

NOTES:
  • Check in all extensions to ePO before upgrading the products.
  • Green boxes indicate server systems.
  • Dark blue boxes indicate when a product upgrade is recommended.
  • Light blue boxes indicate a new product deployment.
  • Boxes outlined in red indicate that a system reboot is required to enable that product.
Operating system: Windows Server 2012 R2 upgrade to Windows Server 2019

Rate this document

Languages:

This article is available in the following languages:

English United States
Spanish Spain
Japanese

Glossary of Technical Terms


 Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.