McAfee ePolicy Orchestrator
July 01, 2003
Networks Associates, Inc.Product:
$22.93 per node (25 nodes)
- Ease of Use:
- Value for Money:
- Overall Rating:
Powerful reporting and auditing, multiple vendor support.
Some clumsiness in the interface.
For Windows-only sites, keep this on your shortlist.
McAfee is one of the best-known names in anti-virus, and we expected impressive results from testing ePolicy Orchestrator 2.5. The product is capable of managing several anti-virus solutions, including McAfee's own and Symantec's Norton, with support for others in the pipeline. Although policies for separate products are configured individually, the integrated management interface will immediately be useful to large enterprises with multiple anti-virus solutions.
The system has been designed with large environments in mind from the word go. You start by creating sites, which encompass Windows domains or IP subnets/ ranges. The software discovers connected clients quickly and makes it simple to push out client software and gather configuration information from PCs.
Repositories of policies and configurations are set up, which can propagate this data either to other repositories or to client systems, making it possible to manage even enormous organizations from a single console while delegating some administrative tasks. Policies can be set to override other management changes, including local configuration, meaning that user error can easily be identified and rectified.
All activities are controlled by creating tasks within the tree-structure of sites and clients. Tasks propagate downwards, but can't be dragged from one part to another, which can mean some irritating extra work unless you take extra time planning where you want tasks run. Avoid generic names for tasks - propagating downwards includes creating duplicates of existing jobs with the same name, rather than updating them with new settings.
A key strength of the ePolicy Orchestrator is its excellent reporting. Reports can be generated in database-table or HTML format; there is a huge variety of pre-configured reports, covering recent policy deployment, virus activity, policy violations, audit trails, etc.
Documentation was also very good, thorough and with plenty of helpful diagrams explaining each component and process, making what is in fact an extremely complex product remarkably easy to get used to.
For large companies looking to manage multiple anti-virus solutions, this is a very good option, though we are somewhat put off by its exclusive support for Windows environments, exacerbated by lack of a browser interface for remote management.
Sign up to our newsletters
SC Magazine Articles
- Long list of devices believed to be affected by NetUSB vulnerability
- Scammers target oil companies with sneaky attack
- CareFirst BlueCross BlueShield breached, more than one million individuals notified
- Study: Employees acknowledge risky security behavior, continue to engage in it
- Hack of airplane systems described in FBI docs raises security questions
- Hackers exploit Starbucks auto-reload feature to steal from customers
- Study: Nearly all SAP systems remain unpatched and vulnerable to attacks
- Former Nuclear Regulatory Commission employee arrested for alleged spear phishing campaign
- Millions of WordPress websites vulnerable to XSS bug
- FireEye first cybersecurity firm awarded DHS SAFETY Act certification
- Thousands of Bellevue Hospital Center patients notified of data breach
- Study: 86 percent of websites contain at least one 'serious' vulnerability
- Investigation ongoing in reported multimillion member Adult FriendFinder breach
- Report: $19M breach settlement between MasterCard, Target terminated
- FTC gives thumbs up to companies that cooperate during breach probes