Knowledge Center

For Home and Home Office Support, visit the Consumer Support Site »

HomeKnowledge CenterDownloadsService RequestsToolsPrograms and PoliciesMy AccountLog In

Begin your search by entering a search term or a product. Entering both may provide more relevant search results. Search Tips

Search Term:

Recent Searches

Match:

Product:

Select from list

Version:

Reset|Share This Search

Search Tips

If your search does not return expected results, use this information. An effective search might take a few attempts.

Build an Effective Search
Use Knowledge Center Features
Use Search Operators

Build an Effective Search

The search engine is not case sensitive. For example, you will get the same results searching for whitelist, Whitelist, or WHITELIST.

Punctuation and special characters are ignored. Avoid characters such as `, ~, :, @, #, $, %, ^, &, (, ), =, +, <, >.

Be Concise.
Example 1 (wordy): I've whitelisted YouTube videos but they're still getting blocked. What's wrong?
Example 2 (concise): whitelist YouTube videos

Be Specific.
Example 1 (broad): configure
Example 2 (specific): configure http proxy

Use quotation marks for exact phrase matching.
Example: "failed to start subsystem"

Use multiple sets of quotation marks to search for multiple exact strings.
Example: "database backup failed" "OSQL commands"

Use Knowledge Center Features

The Knowledge Center allows you to filter and narrow your results to get a better match.

Match: Select whether to match any term in the search string or to match the string exactly as typed.

Product: Select a product to narrow the scope of the search.

My Products: When you choose "Select from list" above the Product text box, you will see a list of the products you have configured in your profile.

Product Groups: Certain products such as SIEM and Endpoint Security include multiple component products. The Product Groups allow you to make a single selection that includes all of the associated component products.

Version: To narrow the search further, specify a version.

Reset: Applied too many filters? Click Reset and clear everything.

Recent Searches: The Knowledge Center keeps track of your last 10 searches.

Share This Search: If you build a search that gets very good results, you can copy the link and then email it to yourself or someone else.
Note: Do not use Share This Search if you have multiple products defined in My Products and you ran your search using All My Products. The person you share the search with may not have the same products defined, and the search will run on a different list of products.

Filters: Each type of content (Knowledge Base, Communities, Patches, Videos & Podcasts) has a set of filters you can use to narrow search results. For example, the filter types for Knowledge Base content are: Content Source, Content Type, Plugins and Components, Products, Tools and Utilities, and Last Modified Date, with more specific filters under each type. Filters and filter types that do not contain any relevant content for your search will not be shown.

Sort By: You can sort the search results by Most Relevant, Most Recent, or Most Viewed. For Most Viewed, use the drop-down to select the period of time (7, 15, 30, or 90 days)

Related Search: This option at the top of the results list allows you to narrow your search to document titles across all content sources. This can be useful to further limit the number of results.

Use Search Operators

You can use Boolean operators. The operators must be all caps.

Use NOT to exclude a word.
Example: Sensor fails NOT hardware

Use NOT to exclude a phrase. You must put the phrase in quotation marks and in parentheses.
Incorrect: Single sign on NOT "Endpoint Encryption"
Incorrect: Single sign on NOT (Endpoint Encryption)
Correct: Single sign on NOT ("Endpoint Encryption")

Use AND to include a word.
Both terms must match in every document that returns.
Example: dat update AND Linux

Use parentheses to ensure the phrase (dat update) is executed before the AND operator.
Example: (dat update) AND Linux

Search Results Feedback »

All Results (54058)

Knowledge Base (475)

Communities (53530)

Updates

Streaming Media (53)

Favorites

Sort By:

Most Relevant

Most Recent

Most Viewed

	Default Exploit Prevention actions taken based on signature severity level with Endpoint Security and Host Intrusion Prevention (KB90369) McAfee Endpoint Security (ENS) Threat Prevention 10.x McAfee Host Intrusion Prevention (Host IPS) 8.0. The following tables show the default actions that Exploit Prevention takes when a signature is triggered based on the signature severity level and Last Modified Date:3/12/2018
	Endpoint Security modules installed on a system are not reported as installed in ePolicy Orchestrator (KB88867) In some circumstances ENS incorrectly notifies the McAfee Agent that an ENS module is shutting down although the module is not shutting down.. McAfee Endpoint Security (ENS) Firewall 10.5.0, 10.2.0, 10.1.x McAfee ENS Threat Prevention 10.5.0, 10.2.0, Last Modified Date:7/19/2018
	Access Protection reports enabled in the Endpoint Security console, when disabled via policy in ePolicy Orchestrator (KB90109) You installed ENS Threat Prevention 10.5.3 and disabled Access Protection via policy in ePO.. McAfee Endpoint Security (ENS) Threat Prevention 10.5.3. After disabling Access Protection via policy in ePolicy Orchestrator (ePO), once enforced on the Last Modified Date:1/31/2018
	Unexpected error (when loading the Adaptive Threat Protection Events page in ePolicy Orchestrator) (KB90144) McAfee Endpoint Security (ENS) Adaptive Threat Protection (ATP) 10.5.3 ePO Extension. After upgrading the ENS ATP Extension to version 10.5.3, an Unexpected error might display when you access the Adaptive Threat Protection Events page in ePolicy Last Modified Date:1/30/2018
	Protecting against modified Petya and BadRabbit ransomware variants (KB89540) McAfee products that use DATs NOTE: This article applies only to McAfee business and enterprise products. If you need information or support for McAfee consumer or small business products, visit https://service.mcafee.com . Consumer article for Petya Last Modified Date:7/19/2018
	System crash (blue screen) with BugCheck D1 "DRIVER_IRQL_NOT_LESS_OR_EQUAL" occurs with Endpoint Security, McAfee Agent, or VirusScan Enterprise (KB87810) A reference count mechanism was not decrementing appropriately and led to memory address wrapping and accessing invalid memory.. McAfee Agent 5.0.4.283, 5.0.3, 5.0.2.333 McAfee Endpoint Security (ENS) Firewall 10.2.0, 10.1.1, 10.1.0 McAfee ENS Threat Last Modified Date:7/19/2018
	List of and best practices for Endpoint Security Dynamic Application Containment rules (KB87843) McAfee Endpoint Security (ENS) 10.5.x, 10.2.x. Dynamic Application Containment (DAC) rules in the McAfee Default policy are set to report only to reduce false positives. Adaptive Threat Protection provides two additional predefined Dynamic Last Modified Date:4/27/2018
	Endpoint Security 10.5.2 Access Protection and Self Protection are in a "not responding" state (KB89810) The Access Protection (AP.xml) and Self Protection (SP.xml) policy XMLs are corrupt.. McAfee Endpoint Security (ENS) Threat Prevention 10.5.2. The following error is reported on an affected client: Access protection module is not running Log entries Last Modified Date:11/8/2017
	How on-demand scan compliance is determined (KB90853) McAfee Endpoint Security (ENS) Threat Prevention 10.x. A system is considered compliant for on-demand scans based on any of the following criteria: Threat Prevention was installed less than seven days ago. The on-demand scan Full Scan task completed Last Modified Date:8/27/2018
	Random blue screen (system crash) with references to BugCheck 133, DPC_WATCHDOG_VIOLATION related to the mfefirek.sys driver (KB89771) The McAfee driver mfefirek.sys is performing validation checks that are intended only for debug settings. This driver provides firewall and network packet inspection capabilities.. Installed ENS 10.5.3, Host IPS 8.0 Patch 10, or VSE 8.8 Patch 9 or Last Modified Date:3/20/2018