cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
ryan190
Level 9
Report Inappropriate Content
Message 1 of 2
‎06-28-2021 07:04 AM

Migration from VSE to ENS

Hi

I have been using ENS are years now but there are still a few very sensitive servers that I have running VSE

Im worried that if I install ENS it will block a few processes that could have a huge knock on.

Is there a way I can install ENS and have it enter a "allow all" state but still create logs that "would have blocked" if they were using a different set of rules?

VSE had this and i could see in the logs lots of "would have blocked" 

 

0 Kudos
Reply
1 Reply
rfranci
Employee
Employee
Report Inappropriate Content
Message 2 of 2
‎06-28-2021 11:45 AM

Re: Migration from VSE to ENS

Hi @ryan190 ,

Thank you for reaching us on community!

I would first recommend, migrating VSE policies to ENS by using 'endpoint upgrade assistance'. This would ensure that the same settings in VSE policies are configured for ENS as well . once the policy is migrated, you can assign this to the servers that you wish to upgrade from VSE  to ENS.

Also, i would recommend to check the VSE to ENS policy mapping o understand the policy migration :
https://docs.mcafee.com/bundle/endpoint-security-10.5.0-migration-guide-epolicy-orchestrator-windows...

In case if you want to just the current ENS policy to work with "would have blocked" event, you can enable "report " only for all the rules in ENS - > Access protection policy and ENS -> exploit prevention policy . But, do note that this could be a major security risk to change all rules to "allow ".

I hope you find this helpful!
- Rohit Francis

0 Kudos
Reply
You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use our Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from product experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by employees.
Join the Community
Join the Community

TrellixSkyhigh Security | Support Trellix.com SkyhighSecurity.com

Legal Privacy Copyright © 2023 Musarubra US LLC