Knowledge Center

McAfee support for Windows Server 2019 with upgrade from VirusScan Enterprise 8.8 Patch 9 to Endpoint Security 10.6.1 and Data Exchange Layer 4.1.2
Technical Articles ID:   KB91172
Last Modified:  1/18/2019


McAfee Endpoint Security (ENS) 10.6.1
McAfee VirusScan Enterprise (VSE) 8.8 Patch 9

Microsoft Windows Server 2019
Microsoft Windows Server 2012 R2

For details of ENS supported environments, see KB82761.
For details of VSE supported environments, see KB51111.


Introduction to Reference Configurations

Reference configurations are McAfee-recommended deployment scenarios that have undergone extensive testing to ensure proper sequencing. The scenarios reduce the need for restarts and improve ease of execution.

For more details about reference configurations and answers to frequently asked questions, see KB88274.

This reference configuration document is designed for customers who already have McAfee products deployed. This document was created by building a baseline system matching the most commonly deployed versions of McAfee products at that point in time, then upgrading to recently released product versions. The intent is to provide a roadmap for upgrading to recent releases. 

NOTE: Not all McAfee products are included in this document. It represents products that are commonly used. If your product mix is a subset of this configuration, you can skip over any product deployment that does not apply to your needs. The recommended products in this reference configuration do not necessarily represent the latest released versions of many McAfee products.

Before You Begin

Before beginning the deployment process, there are several preparatory actions that will help lead to a successful deployment process.

Review the latest release notes and known issues 
Although McAfee officially recommends this reference configuration, we might discover issues that could impact the success of your deployment. See the Recommended Product Configuration table for links to known issues for each product version. 

Plan for restarts 
Some operating system driver modules installed during product upgrades are only properly loaded into memory at runtime, and thus a restart is required to facilitate the loading of the new drivers. Limitations of the operating system require that only one version of these drivers be loaded at a time. Depending on which products you are installing, multiple restarts might be required. This deployment path has been optimized to minimize the number of required restarts, when updating all products listed in the sequence.

If you are planning to update only a subset of products, plan to restart after the updates are complete.

Adapt this guideline to your specific upgrade plan 
Your current deployment baseline might differ from the versions mentioned in the Recommended Product Configuration table. If some of your product versions are more recent than this provided baseline, still follow the recommended sequence. If you do not use some of the products in the list, you can skip that product.

Recommended Product Configuration
The table below lists commonly deployed products, determined based on telemetry samplings from a large set of customers. McAfee recommends that you deploy these products to take advantage of the recent product offering for Endpoint Security 10.6.1. This configuration has been extensively tested for cross-product compatibility using operating systems listed below.

Operating systems: Windows Server 2012 R2 upgrade to Windows Server 2019
Products Common Versions Recommended Versions Operating System Upgrade Known Issues
ePolicy Orchestrator (ePO)    
Window Server 2012 R2
Windows Server 2019
Protection Workspace   Service Extension:
UI Extension:
Data Exchange Layer Broker (DXL Broker)
(Included in TIE server ISO)
Threat Intelligence Exchange Server
(TIE Server) KB85172
McAfee Active Response Server
(MAR Server)
Advanced Threat Defense (ATD)   4.4.0 KB89507
Web SaaS   Configure to work with MCP  
McAfee Agent (MA) KB90082
VirusScan Enterprise (VSE) 8.8.0 Patch 9
Endpoint Security (ENS)
  • ENS Platform
  • ENS Threat Prevention
  • ENS Firewall
  • ENS Web Control
McAfee Client Proxy (MCP) KB83131
Data Exchange Layer Client (DXL Client) KB89741
Adaptive Threat Protection (ATP)   Extension:
McAfee Active Response Client
(MAR Client) KB88196
Host Intrusion Prevention System
(Host IPS)
8.0.0 Patch 10
 8.0.0 Patch 12
Data Loss Prevention Endpoint
(DLP Endpoint)1
Drive Encryption (DE) Extension:
McAfee Application and Change Control
1 DLP Endpoint is currently not supported on Windows Server 2019.
2 MACC is currently not supported on Windows Server 2019.

Installation Process
This section outlines the recommended order of operation:

  • Check in all extensions to ePO before upgrading the products.
  • Green boxes indicate server systems.
  • Dark blue boxes indicate when a product upgrade is recommended.
  • Light blue boxes indicate a new product deployment.
  • Boxes outlined in red indicate that a system reboot is required to enable that product.
Operating system: Windows Server 2012 R2 upgrade to Windows Server 2019

Rate this document


This article is available in the following languages:

English United States
Spanish Spain

Glossary of Technical Terms

 Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.