This article highlights information from several documents and KB articles that address upgrade of the installation versions.
- KB84085 - FAQs for Data Loss Prevention Endpoint 11.x states that restarts are no longer needed after DLP is upgraded to versions later than 11.0.5. Installations to any operating system can't control all possible scenarios in which files or processes might be in use or locked by other processes. Other processes can include third-party security and other auditing software. In rare cases, installation or upgrade might trigger a reboot that DLP doesn’t require. So, it’s best to review the McAfee Agent General Policy, General tab option for how to handle reboot notifications. For more information about how to suppress or allow reboot notifications or to automatically enforce them, see the McAfee Agent 5.5.1 Interface Reference Guide.
- For the management interface, McAfee Enterprise has best practice steps that you can perform before the ePO extensions are upgraded. See KB91213 - Best practices for upgrading Data Loss Prevention Endpoint.
- For the management interface, when you update or upgrade the DLP extensions in ePolicy Orchestrator, McAfee Enterprise has provided methods to make sure that previous extension changes are complete. For guidance on how to make sure that the update or upgrade is also complete before you continue, see KB93662 - Data Loss Prevention ePolicy Orchestrator extension best practice for upgrades or updates.
- Security policies can impact users and require tuning and planning. So, McAfee Enterprise always recommends a small pilot test of any large change in security software. You can then follow the pilot test with a phased update across the remaining enterprise. New versions often have new features and abilities within the policies. For more information about best practices in tuning and implementing DLP Endpoint, see Data Loss Prevention Best Practices. After these practices are adopted and completed, McAfee Enterprise recommends a periodic review for opportunities to update the policies. You might need to remove or revise any classifications or rules that have become deprecated over time. These rules might be deprecated because of changes in industries or updates in security requirements.
