Preparation
Before you can target McAfee Drive Encryption 7.x or Endpoint Encryption:
Install the McAfee server/client software according to the installation instructions in the McAfee documentation.
If the McAfee server is using a self-signed certificate or a certificate not from a trusted certificate source, import the certificate into the Bravura Security Fabric server’s Windows certificate store.
If support for the verify or reset operation is required, add the Active Directory/LDAP system that the McAfee server is synchronized with as a source of profiles target system. Enable auto-association of accounts on the McAfee server.
Setting up a target system administrator
Bravura Security Fabric uses the logon credentials for the McAfee ePolicy Orchestrator to perform Bravura Security Fabric operations. The following permissions are required for password and account operations:
Permissions needed for ePO administrator user:
Queries and Reports: Use public groups
System Tree access: <Access to nodes where relevant users are>
Permissions needed for Drive Encryption or Endpoint Encryption:
Allow administrator recovery
Change and view user management
Permissions needed for retrieving McAfee ePolicy Orchestrator server version for serverinfo operation:
Global administrator privileges