+ Reply to Thread
Results 1 to 14 of 14

Thread: McAfee HBSS

  1. Senior Member
    Join Date
    Sep 2010
    Location
    Monterey, California
    Posts
    546

    Certifications
    Security+, HBSS, Oracle Solaris 10 Administration, Linux+
    #1

    Default McAfee HBSS

    I was told yesterday I need to come up to speed on McAfee's HBSS. In trying to locate some info on it, I found there is a certification for it. Anyone familiar with it? Thanks.
    Reply With Quote Quote  

  2. SS -->
  3. Senior Member
    Join Date
    Apr 2009
    Posts
    5,015
    #2
    I have to roll it out over the next few months. I thought about doing the EPO cert and the HIPS cert. Not very many Mcafee certified pros around here.
    Reply With Quote Quote  

  4. Senior Member
    Join Date
    Sep 2010
    Location
    Monterey, California
    Posts
    546

    Certifications
    Security+, HBSS, Oracle Solaris 10 Administration, Linux+
    #3

    Default How complicated is this?

    Quote Originally Posted by Bl8ckr0uter View Post
    I have to roll it out over the next few months. I thought about doing the EPO cert and the HIPS cert. Not very many Mcafee certified pros around here.

    How difficult is this software? A few week ago,someone installed the client. It didn't seem to take him long. Its monitored elsewhere, so we don't see anything.
    Reply With Quote Quote  

  5. Senior Member
    Join Date
    Jan 2006
    Location
    USA
    Posts
    585

    Certifications
    CISSP
    #4
    You can try vte.cert.org has some training on it. If you have a .gov or .mil account you can get the training free.
    Reply With Quote Quote  

  6. Senior Member
    Join Date
    Sep 2010
    Location
    Monterey, California
    Posts
    546

    Certifications
    Security+, HBSS, Oracle Solaris 10 Administration, Linux+
    #5

    Default What packages are required?

    Quote Originally Posted by Bl8ckr0uter View Post
    I have to roll it out over the next few months. I thought about doing the EPO cert and the HIPS cert. Not very many Mcafee certified pros around here.
    Have you looked into the installation yet? I'm on Solaris 10. I thought it was one package, but I searched for the HBSS download, grabbed the zip file, and it looks like it was the HIP only
    Reply With Quote Quote  

  7. Senior Member
    Join Date
    Sep 2010
    Location
    Monterey, California
    Posts
    546

    Certifications
    Security+, HBSS, Oracle Solaris 10 Administration, Linux+
    #6

    Default vte.cert.org

    Quote Originally Posted by wastedtime View Post
    You can try vte.cert.org has some training on it. If you have a .gov or .mil account you can get the training free.

    I do have an account, I checked out the site, it asked for a sponsor, so I will have to wait until tomorrow for that. Thanks.
    Reply With Quote Quote  

  8. Senior Member
    Join Date
    Apr 2009
    Posts
    5,015
    #7
    Quote Originally Posted by brownwrap View Post
    Have you looked into the installation yet? I'm on Solaris 10. I thought it was one package, but I searched for the HBSS download, grabbed the zip file, and it looks like it was the HIP only
    The install isn't so bad. I am going to start with the site advisor this week.
    Reply With Quote Quote  

  9. Senior Member
    Join Date
    Sep 2010
    Location
    Monterey, California
    Posts
    546

    Certifications
    Security+, HBSS, Oracle Solaris 10 Administration, Linux+
    #8

    Default What OS are you using?

    Quote Originally Posted by Bl8ckr0uter View Post
    The install isn't so bad. I am going to start with the site advisor this week.

    So much is geared towards Windows, but I am not using Windows.
    Reply With Quote Quote  

  10. Senior Member
    Join Date
    Apr 2009
    Posts
    5,015
    #9
    Quote Originally Posted by brownwrap View Post
    So much is geared towards Windows, but I am not using Windows.
    That install didn't look so bad either
    Reply With Quote Quote  

  11. Senior Member
    Join Date
    Sep 2010
    Location
    Monterey, California
    Posts
    546

    Certifications
    Security+, HBSS, Oracle Solaris 10 Administration, Linux+
    #10

    Default What packages are required?

    Quote Originally Posted by Bl8ckr0uter View Post
    That install didn't look so bad either

    So far I have downloaded McAfee Agent (MFE) and McAfee HIP. Anything else I need?
    Reply With Quote Quote  

  12. Senior Member
    Join Date
    Apr 2009
    Posts
    5,015
    #11
    Quote Originally Posted by brownwrap View Post
    So far I have downloaded McAfee Agent (MFE) and McAfee HIP. Anything else I need?
    You can't really run it as a local install. You need EPO. I know because I tried to run it that way.
    Reply With Quote Quote  

  13. Senior Member
    Join Date
    Sep 2010
    Location
    Monterey, California
    Posts
    546

    Certifications
    Security+, HBSS, Oracle Solaris 10 Administration, Linux+
    #12

    Default Is EPO only Windows?

    Quote Originally Posted by Bl8ckr0uter View Post
    You can't really run it as a local install. You need EPO. I know because I tried to run it that way.
    OK, I went back tothe downloads and found EPO on the 2nd page. Is it only windows?
    Reply With Quote Quote  

  14. Senior Member
    Join Date
    Apr 2009
    Posts
    5,015
    #13
    Quote Originally Posted by brownwrap View Post
    OK, I went back tothe downloads and found EPO on the 2nd page. Is it only windows?
    I am not 100% sure. I know the HIPS isn't. You might be able to run it on linux.


    EDIT: Guess not


    http://www.mcafee.com/us/products/ep...hestrator.aspx
    Last edited by Bl8ckr0uter; 03-14-2011 at 01:28 AM.
    Reply With Quote Quote  

  15. Junior Member Registered Member
    Join Date
    Aug 2013
    Posts
    1
    #14

    Default Host Based Security System (HBSS) via ePO (Policy Orchestrator)

    HBSS is a security suite consisting of 7 modules, independently deployed to implement a robust defense-in-depth host based security model. The modules in no particular order are: Host Based Intrusion Prevention (HIPs), Data Loss Program (DLP), VirusScan Enterprise (VSE), McAfee Agent (MA), Asset Baseline Monitor (ABM), McAfee Policy Auditor Content Update and McAfee Policy Monitor. Additional modules include Rogue Sensor Detection (RSD)

    Quick facts:

    - The ePO server, usually in the DMZ, but not always, responds to queries and requests from the McAfee agent

    - You can't have a working HBSS Enterprise solution without an ePO server and one or more clients with a McAfee agent installed and communicating

    - An ePO console, a dedicated client that uses web based access to the ePO server to configure tasks, run queries, update clients and other administrative duties. Typically, the ePO console is 1-2 workstations responsible for 10,000 clients.

    - HBSS can be deployed stand alone and responses can be configured for specific incidents
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks