In our organization, McAfee ePO server has been running fine until a couple of days ago. We’ve experienced a turnover in IT personnel and I have been changing different administrator names\passwords as part of security practice. After required changes done, restarted all the servers. Everything was fine except McAfee ePO web portal; I was not able to login.
It’s throwing below given errors:
DataChannel – Dependency scheduler had initialization error
LYNXSHLD1510 – dependency EPOCore had initialization error
AvertAlerts – Dependency scheduler had initialization error
While I was searching for the solution what if I lost McAfee ePO admin password and there were no additional accounts configured, some of the blogs on the internet mentioned that go tohttps://ServerName:8443/core/configand reset the ‘Admin’ password. This is not the correct solution to reset the ‘Admin’ password.
Some time ago I started attending trainings and discussions with industry experts, on McAfee ePO and started learning many things from them. During these sessions I came across some issues with McAfee 4.x and 5.x installation. I have uploaded solutions to some of these issues on my blog, please refer the following link:
One fine morning all of sudden I got a doubt, what if I lost McAfee ePO admin password and there were no additional accounts configured. I opened my laptop and started Googling for the solution. There were more blogs describing this issue, but none had a satisfied solution. After a rigorous search on the Internet, I found two good and easy solutions.
We believe that only one account, i.e. Admin account, is configured in McAfee ePO. But by default one more account exists in the McAfee ePO User Management, named system. This account is disabled by default. User ‘system’ account has administrative rights (see theImage-1).
This user (system) is by default non-editable through the web console (see the Image–2)
We have to enable the user ‘system’ through MS SQL.
Go to start –> All Programs –> MS SQL Server 2008R2 –> click on SQL Server Management Studio, expand Databases -> expand ePO Database –> expand Tables –>go todbo.OrionUsers –> right click ondbo.OrionUsers –>click on Edit Top 200 Rows.One window will open on the right side (see the Image-3)
Under the OrionUsers Table –>following changes will need to be done for the user ‘System’
Under Disabled –> default setting will be True, change it to False (click enter)
Under Interactive –>default setting will be False, change it to True (click enter)
Minimize the SQL window and Open the McAfee ePO web console and type username: system, Password:system
It will allow you to login. Click on MenuàUnder User Management –>click on Users –>Admin –>Rightside down click on Actions –>click on Edit (see the Image-4& Image -5)
Click on Change Authentication or Credential
Type Password and confirm Password and save (see the Image-6)
Log off and Login with Admin credentials. That’s it.
Now Open SQL and make the same changes in OrionUsers Table (Exactly as shown in the Image-7)
Under Disabled –>change it to True (click enter)
Under Interactive –> change it to False (click enter)
In solution 1, enabling of the user ‘system’ account through MS SQL resets Admin the Password.
In Solution -2, we will create a new account with Administrative rights using MS SQL and through new account will reset the Admin password.
Go to start –> All Programs –> MS SQL Server 2008R2 –>click on SQL Server Management Studio, expand Databases –> Click on ePO Database –> open a New Query, run the following query and execute
It will create a new user ‘epoadmin’, with the password: epoadmin
Open the McAfee ePO web console with username and passwordepoadmin
It will allow you to login.Click on Menu –>Under User Management –>click on Users –> Admin –> Rightside down click on Actions –> click on Edit and reset the Admin Password
Log off and Login with Admin credentials. That’s it.
NOTE: Use the above solutions when you don’t have any other option. Be sure you have got the required skills to modify SQL server. You can break your ePO server if you don’t know what you are doing. Don’t hold me responsible for your actions; think before you act and always make sure you have a backup 🙂
IMPORTANT: McAfee recommends that you implement account and password management policies such as:
Maintaining a backup administrator account
Creating individual accounts for each administrator
Adhering to corporate requirements for accounts and passwords
I had encountered three problems when installing McAfee ePO 4.5, 4.6 & 4.6.6 on Windows 2008 server standard edition R2.
Problem 1: SQL2005 backward compatibility: McAfee ePO comes with SQL 2005 express, however you will encounter a problem of unable to install the SQL 2005 backward compatibility on Windows 2008 server R2 standard edition. You have to install SQL 2008 otherwise ePO installation cannot be preceded.
Problem 2:8.3 naming conventionwas disabled:
You need to modify the registry to enable the 8.3 convention. 8.3 naming is needed for the tomcat service.
computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\FileSystem\NtfsDisable8dot3NameCreation from 2 to 0
Another method which is easier – is to use fsutil.exe.
Problem 3: Setup is unable to access UDP port 1434:
This problem will arise while installing all versions of McAfee ePO 4.5, 4.6. 4.6.6 and 5.0.
To resolve above error, we have to start SQL server browser service. By default SQL server browser is disabled. SQL Server Network Configuration protocols TCP/IP to be enabled, this protocol also by default disabled.
Go to Start->All programs->MS SQL Server 2008R2 ->Configuration Tools->click on Configuration Manager (for details see the image given below)
Once changes done we have to restart the SQL server service (see the below image)
That’s it, further click Next… Next finish the installation.
With SiteAdvisor software installed, your browser will look a little different than before. It adds small site rating icons to your search results as well as a browser button and optional search box. Together, these alert you to potentially risky sites and help you find safer alternatives.
It puts coloured icons next to your search results so you know the status of the site before you click on the link. Sites that are considered safe get a small green icon, sites that may be unsafe are labelled with a yellow icon to indicate caution, and sites known to be risky are marked with a red label. McAfee tests the sites for spyware, drive-by downloads, spam, scams, phishing, and other risks to determine their security rating.
These site ratings are based on tests conducted by McAfee using an army of computers that look for all kinds of threats (detailed below). The result is a guide to Web safety.