My McAfee “Shield” has a Red Background / Red Brackets
KB ID 0000201 Problem Occasionally you may look at the McAfee shield in your taskbar and see that it has a red surround. Solution Don’t Panic! This is completely normal, it happens if McAfee has a message for you, in any one of the following scenarios, 1. The system has detected and cleaned a Virus. 2. A file action has been blocked (Or has been set to report). 3. An access protection rule has been broken. To see...
Installing Groupshield 7.0.2 with Antispam on Exchange 2010
KB ID 0000287 Problem Without reading a lot of readme files and head scratching, its confusing which Groupshield package you need, and what does what. Solution 1. Download and extract GSE702ENL.zip 2. From within the extracted files run setupsetup.exe > Next > Next. 3. Change Licence expiry type to “Perpetual” (or 1 or 2 year as appropriate) > Tick “I Accept…” OK > Next > Next. 4. Complete...
Event ID 2098
KB ID 0000325 Problem Event ID 2098 Failed to write to the Product Log. 80040230:McEFILEIOERROR This is usually caused by a fault in the Groupshield databases, you need to generate new ones. Solution 1. Click Start > run > services.msc {enter} > Locate the “McAfee Groupshield” > right Click > Stop. 2. Navigate to C:Program FilesNetwork AssociatesMcAfee GroupShieldbin > Locate detecteditems.bin and...
Mail Error “Corrupt Content Alert”
KB ID 0000370 Problem Seen when receiving mail though an Exchange server running McAfee Groupshield version 7 Solution 1. On the server in question launch the Groupshield Management console > Select On-Access > Master Policy. 2. Select “Corrupt Content”. 3. Edit. 4. Change the drop down to “Allow Through” > Save. 5. Finally make sure you click “Apply”. Note: I’ve seen posts...
McAfee Groupshield – Adding Email Disclaimers
KB ID 0000432 Problem With Exchange 2007 and 2010 you can add a disclaimer with a transport rule. But if you are still using Exchange 2003 then you don’t have that luxury. I had a client with a broken Groupshield 6 installation today, and his main concern was his disclaimers. (You can longer get Groupshield 6 so I had to install version 7). Solution 1. Open the Groupshield console. 2. Select Policy Manager > Gateway >...
McAfee Update Error “SDStbRes.dll: The specified module could not be found.”
KB ID 0000421 Problem Seen with McAfee 8.8i when attempting to update via the McAfee SDAT file. Seen on Windows 7, Server 2008 R2, Server 2008, and Server 2003. Error: SDStbRes.dll: The specified module could not be found. When trying to update from McAfee you see the following error. Solution I was on the verge of ringing McAfee with this, but in the end I managed to update by simply applying the daily XDAT not the SDAT....
Groupshield 7 – Blocking Keywords
KB ID 0000438 Problem You would like Groupshield to block email containing certain keywords, for example you are getting a lot of spam containing certain words and phrases, in either the the subject line or message body. Solution Related Articles, References, Credits, or External Links NA
McAfee ePO 5.1 – Adding an LDAP Server
KB ID 0000926 Problem On a new installation, while trying to get some ePO groups to sync with Active Directory, I was getting LDAP errors, that suggested I need to setup an LDAP server. That’s fine but it took me ages to find out where that was done! Solution 1. Connect to to ePO > Registered Servers > New Server. 2. Change the server type to LDAP Server (well hidden McAfee, thanks for that!) > Give it a name >...
McAfee ePO – Client Firewall Exceptions to Allow Agent Deployment
KB ID 0000952 Problem It’s been a while, since I deployed ePO, and as I’ve got a big McAfee roll-out coming up I thought I’d better run it up on the test bench and see how much it’s changed since version 4. As the prospective client is going to use Server 2012 and Windows 8, that’s what I tested it with. Despite my best efforts the the McAfee agent (8.6) refused to deploy to the clients as long as I had...
Cannot Remove McAfee – ‘McAfee Agent cannot be removed while it is in managed mode’
KB ID 0000960 Problem If you have the McAfee Agent installed, (particularly if it was deployed via ePO), when you try and remove it you will see this error; Now normally you would just setup a new deployment task in ePO and set it to remove the agent(s), or replace the agent with a newer one. But what if ePO has been removed? Or the client will never be on the ePO network again? Solution Open a command window, (run as administrator)...