AnyConnect and McAfee VirusScan

Similar Messages

• Mac os x 10.5 , filevault and McAfee Virusscan mac 8.6

  some users at Ohio State University are having problems with this product set. with filevault turned on, after logging in to filevault, or giving their userid/password, and it starts up, they navigate to various files and all of a sudden the rolling beach ball comes up and their are more or less locked up. One user reports: I had file vault turned on, opened Mail, it commenced downloading new messages and
  as it was doing that I was browsing my folders of old email in the
  program. The beach ball came up, I could move the mail window but not
  use it. I couldn't get other programs to run either, this continued
  from roughly 12:45 pm until about 130pm.
  Mcafee cited KB report 3162553 (set on access scan to "on write"), which one user said alleviated the problem, but for others they still lock up. when filevault is not started the problem goes away.
  has anyone seen anything like this? I work with site licensing and so am reporting this on behalf of others.

  I am running a Mac OS X 10.5.8 and would like to simply purchase the I Work ( $ 79.00 one in disk form ) from the mac store and run it. 
  iWork costs $79 on the Apple online store. But it's a bit cheaper buying it from the Mac App Store (you have to buy them individually for about $20 each). The only catch is the Mac App Store is a program that comes with OS X 10.6, so you'd need to upgrade OS X on your Mac.
  Will my ( now older ) computer run it and will it recognize my pages documents that exist on my computer?
  Pages 4.1 requires OS X 10.6.6 or newer. So you'd need to update your Mac from OS X 10.5.8 to 10.6.6.
  Dale

• I have a MacBook that had Mcafee on it and went to great lengths to get it off.  Unfortunately after running all the remove scripts and support from mcafee, in my console it still shows com.apple.launchd{1} with message (com.mcafee.virusscan.VshieldEPoint

  I have a MacBook that had Mcafee on it and went to great lengths to get it off.  Unfortunately after running all the remove scripts and support from mcafee, in my console it still shows com.apple.launchd{1} with message (com.mcafee.virusscan.VshieldEPointInterface[7881]) Exeted with exit code:1  Then the next line says will start in 10 seconds and it repeats endlessly.

  Hi there,
  You're running an old version of Safari. Before troubleshooting, try updating it to the latest version: 6.0. You can do this by clicking the Apple logo in the top left, then clicking Software update.
  You can also update to the latest version of OS X, 10.8 Mountain Lion, from the Mac App Store for $19.99, which will automatically install Safari 6 as well, but this isn't essential, only reccomended.
  Thanks, let me know if the update helps,
  Nathan

• Can load the page with McAfee VirusScan Enterprise 8.5.0i turn on

  I need help on this, my problem is when I enable McAfee VirusScan Enterprise 8.5.0i's Access Protection on and Safari doesn't loads, but when I disable it, it load perfectly, so what i'm asking is, how can I surf the internet with Access Protection is enable for McAfee VirusScan Enterprise 8.5.0i, I hope that the full version of Safari 3 doesn't do this, and yes, my computer have met the requirements.
  Thanks for your support.
    Windows XP Pro   Custom Made
    Windows XP Pro   Custom Made

  Dominique,
  Thank you for the detailed problem description. Although you posted it some ten hours ago I have just now finished reading it.
  Form pages must be built so they can operate correctly when inline validation errors are displayed. The assumption (by the engine) is that session state (and package state) as it exists at the point the validations are performed is sufficient (and correct) to support the redisplay of the page without the need to fire on-load processes or computations. Session state or package state changes made by after-submit computations or after-submit/before computations/validations processes that prevent correct page behavior on the "validation redisplay" must be avoided.
  The condition types Inline Validation Errors Displayed/No Inline Validation Errors Displayed can be used for on-load events/controls (processes, computations, regions, items, ...) for which you need finer control over this behavior.
  Also, you can forgo the use of after-submit computations when the resulting alteration of session state would be inimical to proper "validation redisplay" behavior and use On Submit - After Computations and Validations processes instead.
  I hope I have understood your situation and that this answer adequately answers your questions.
  Scott

• McAfee VirusScan 8.5 DAT file versions...

  Hey:-) Does anyone out there happen to know if there is a way to send a unix command that will extract the DAT file version from a machine running McAfee VirusScan 8.5? In Virex 7.7 and prior you could do this by searching the receipts folder. The newer 8.5 version appears to handle the DAT files in a different manner. Any ideas?
  Chris
  17" MacBook Pro   Mac OS X (10.4.8)  

  I am just a adding a reply to my previous post to see if anyone has an answer.
  Chris
  Ti-Book

• IKEv2 AnyConnect and Pool allocation via RADIUS

  I am configured a CSR1000V (03.09.00a.S.153-2.S) for AnyConnect with IKEv2. I am storing username and IKEv2 authorization policy on the RADIUS server. Clients are dropped into their own iVRFs through RADIUS attributes passed back to the NAS.
  e.g. in FreeRadius (2.1.12), the following is defined (home is the 'group') in username@group format.
  home                    Cleartext-Password := "cisco"
                               Cisco-AVPair += "ip:interface-config=vrf forwarding CUST-A",
                               Cisco-AVPair += "ip:interface-config=ip unnumbered loopback100",
                                Framed-Pool = "CUST-A-POOL"
  matt@home               Cleartext-Password := "test123"
  Group and user authorization information is then merged and cloned onto the virtual template:
  crypto ikev2 name-mangler EXTRACT-GROUP
  eap suffix delimiter @
  crypto ikev2 profile FlexVPN-IKEv2-Profile-1
  match fvrf IPSEC-FVRF
  match identity remote key-id FlexAnyConnect
  identity local dn
  authentication remote eap query-identity
  authentication local rsa-sig
  pki trustpoint cacert.org
  dpd 60 2 on-demand
  aaa authentication eap FlexVPN-AuthC-List1
  aaa authorization group eap list FlexVPN-AuthZ-List-1 name-mangler EXTRACT-GROUP
  aaa authorization user eap cached
  virtual-template 1
  interface Virtual-Template1 type tunnel
  no ip address
  tunnel mode ipsec ipv4
  tunnel vrf IPSEC-FVRF
  tunnel protection ipsec profile FlexVPN-IPsec-Profile-1
  However, it appears that the RADIUS attribute specifying the pool is ignored; I can see the RADIUS attribute (IETF 88) passed back to the NAS in the RADIUS debugs:
  *Aug 16 21:36:39.384 BST: RADIUS:  Framed-IP-Pool      [88]  13  "CUST-A-POOL"
  However, the crypto debugs state that an IP address cannot be assigned:
  *Aug 16 21:36:39.435 BST: IKEv2:Failed to allocate IP addr
  <snip>
  Payload contents:
  AUTH NOTIFY(INTERNAL_ADDRESS_FAILURE)
  If the Framed-Pool is removed and a Framed-IP-Address defined instead for the user, then the address is assigned. The CUST-A-POOL is defined locally on the NAS. Is there anything I am missing? Can any more detailed debugs be generated?
  Cheers,
  Matt

  Marcin,
  Thank you for your response; sending "ipsec:addr-pool" does work. I did a bug scrape, but didn't find this (if I try to view it in the new Bug Tool, I get "Insufficient Permissions to View Bug"), but it was possible to paste the Bug ID into the old Bug Toolkit to get the detail.
  As an aside, I also found that "include-local-lan" doesn't appear to work with IKEv2 AnyConnect and isn't likely to be fixed; according to CSCud65859, the workaround is to use split-tunneling ("ipsec:route-set=prefix prefix/len").
  Cheers,
  Matt

• AnyConnect and Pre-Shared Keys

  Hello,
  I am extremely new to AnyConnect and VPN, so I have a few questions for you guys. I am trying to configure an AnyConnect Client on Android to connect to my ASA 5505 via IPSEC. It's configured with (I believe) IKEv1 with pre-shared key and group identifier. I think IKEv2 is certificate based only, and I am not using certificates at this time. I can't seem to find any settings in the app to configure it this way... Can the AnyConnect client connect to this type of connection? If so, what may I be missing? I can configure the default VPN client built into Android and it works fine, but I am being told to use the AnyConnect client. If you need more info, let me know, I'm not sure what to put on here to give the info needed to help. Thanks!

  Believe I found my answer:
  Cisco AnyConnect VPN
  Q. I see that the Cisco AnyConnect Secure Mobility Client supports IPsec. Will Cisco AnyConnect Secure Mobility Client work with Cisco VPN 3000 Series concentrators?
  A. No. Cisco VPN 3000 Series concentrators support IPsec/IKEv1. Cisco AnyConnect Secure Mobility Client Version 3.0 and greater supports IPsec/IKEv2 connectivity but not IPsec/IKEv1.
  From http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5743/ps5699/ps10884/qa_c67-712937_ns1049_Networking_Solutions_Q_and_A.html
  If there is a workaround or something, please let me know. If not, oh well!

• Need help if you run Windows 7 and McAfee

  As I posted to other thread, I was not able to do auto-updating of CS5 since CS5 was installed.  The problem seems to be related to firewall settings.
  I am running windows 7 and McAfee Security Center.   I turned off Firwall from McAfee.  But I am getting the same error.
  As shown in the top figure, it show Firewall was turned off by McAfee (see red arrows).
  When I opened windows firewall, it described that these settings are managed by McAfee (see below).
  What I see is that Under domain Profile, windows firewall is off (red arrow).  But Firewall in both  private and public profiles are on (see blue arrows in the above figure).
  What I want is to turn off McAfee firewall in order to perform CS5 autoupdating.
  Could someone help me with my problem?  
  Hummer

  What exactly is a firewall:
  at its basic level, a firewall is a barrior that is designed to keep threats out.
  Some firewalls do a better job then others but ultimately its the "people" behind the firewall that is responsable for security.
  Many firewalls have both incoming and outgoing rules to help keep PC's safe.
  McAfee intigrates into the operating system, thats why it changes the windows firewall rules and why you see the windows firewall is no longer manageable by normal means. it may even hook in a use portions of the windows firewall and expends windows built in security from that point.
  Before you attempt to uninstall it, I highly recommend you put everything back to its normal running state, then after uninstalling from add remove programs also use their removal tool to insure all registry enteries are also removed. This "should" put everything back to factory default settings for windows firewall rules.
  http://service.mcafee.com/FAQDocument.aspx?id=TS100507
  I am of the opinion that McAfee, in its quest to secure its "customers", customers PC's with the least amont of end user interaction, it became blind to the fact that sometimes you need to reset everything back to factory default and simply start over, It may even be there but its not easly found or wasn't last i used it. Even their virus scanner is difficult to disarm once activated. They hook into many aspects of the operating system in an effort to keep you safe weather you like it or not.
  An old saying comes to mind, Freedom comes with a Price.
  I'll not say McAfee software is bad, I think they lost touch with the end user is all, They are more interested in the dollar then the end user. The ISP's line their pockets and are their real customers, you didn't really think the software was free did you? What the big ISP's want in there for security is what they tend to put in there. Almost all ISP's in the states provide free McAfee or Nortons security with their service plans and every new PC has either one in there "free"
  I would personally try to uninstall McAfee completly, if that fixes the issue you can always put it back if you choose or some other security suite.

• Force client cert only for anyconnect and not for ssl-clientless?

  I need to configure different authentication for anyconnect clients and clients logging in using the ssl portal in the browser.
  I want both AAA and certificate for anyconnect but i want ONLY aaa for the ssl portal (clientless)
  I tried using two tunnel groups with different authentication settings but i need the same alias available for both clientless and anyconnect and when i tried that it said i cant have two with the same alias.

  Did you ever get an answer to this question?
  It seems you should be able to set up a two different client profiles.  Under Authentication, ssl-client would would specify "Both" and the sslclientless would specify AAA.  You would likely have to duplicate much of the other work but the requirement would be satisfied.

• Zesm and mcafee

  We are having horrible performance issues with zesm and mcafee 8.7 with epo installed on our windows xp workstations. PC utilization is fine, but simply the operation of windows is unusable with both applications installed. (firefox takes minutes to load... removal of zesm takes 1/2 hour to unload) Once unloaded pc works fine.
  Curious if anyone has ran into this....

  Originally Posted by scornell
  We are having horrible performance issues with zesm and mcafee 8.7 with epo installed on our windows xp workstations. PC utilization is fine, but simply the operation of windows is unusable with both applications installed. (firefox takes minutes to load... removal of zesm takes 1/2 hour to unload) Once unloaded pc works fine.
  Curious if anyone has ran into this....
  What version of the Endpoint Client are you using?
  I came across this during testing with the 3.x client. I would also add exceptions to EPO for endpoint:
  C:\Program Files\Novell\ZENworks Security Client
  STEngine.exe
  STUser.exe
  Simon.

• Why do your updates delete my toolbars and mcafee site advisor?

  dude i am sick of this happening. every time you send me an update you eradicate my yahoo toolbar along with all my quick launch apps. and my mcafee site advisor also gets taken from me. one more update like this and i'm deleting mozilla.

  This is not a mcafee issue. Its a mozilla update issue. Every time i get an update from mozilla i have to download my yahoo toolbar and mcafee site dvisor all over again. Anyway lets drop it because mozilla obviously doesnt care. Thanks for nothing mozilla.

• Just upgraded my firefox and received a message that the security program McAffee and my Skype program were not compatable and were disabled. Does this mean I have to delete firefox to have skype and McAfee?

  When I upgraded firefox, my skype and McAfee were disabled. Received a message that they were not compatible with the new version of firefox.

  Must be the "hang at exit" problem. You already know how to do Step1; now just determine which Add-on (Extension or Plugin) is causing the problem.<br /><br />
  #Stop the Firefox process:
  #*[http://kb.mozillazine.org/Kill_application Mozillazine - Kill application]
  #*Windows 7 users click [http://www.techrepublic.com/blog/window-on-windows/reap-the-benefits-of-windows-7s-task-manager/2576 here]
  #Why Firefox may hang:
  #*[http://support.mozilla.com/en-US/kb/Firefox+hangs Firefox hangs] (see Hang at exit)
  #*[http://kb.mozillazine.org/Firefox_hangs Firefox hangs (Mozillazine)] (see Hang at exit and Closing Firefox properly)
  #*[https://support.mozilla.com/en-US/kb/Firefox+is+already+running+but+is+not+responding Firefox is already running but is not responding]
  #Use Firefox Safe Mode to find a problem with an Extension or Plugin:
  #*Don't check anything when entering Safe Mode, just continue
  #*If the problem does not occur in Safe Mode it is probably and Extension or Plugin causing the problem
  #*See:
  #**[[Safe Mode]] and [http://kb.mozillazine.org/Safe_Mode Safe Mode (Mozillazine)]
  #**[http://support.mozilla.com/en-US/kb/Troubleshooting+extensions+and+themes Troubleshooting extensions and themes]
  #**[http://support.mozilla.com/en-US/kb/Troubleshooting+plugins Troubleshooting plugins]
  #**[http://support.mozilla.com/en-US/kb/Basic+Troubleshooting Basic Troubleshooting]
  '''If this reply solves your problem, please click "Solved It" next to this reply when <u>signed-in</u> to the forum.'''

• Why does Adobe think we want addons Chrome and McAfee added to a simple FLASH update???????????

  Presenting an update with addons like Chrome and McAfee to be installed nefariously directly run from the site is not good.  Downloading the file after unchecking the box that I don't want  mcafee messing up my computer one can install the update without that garbage.  I don't want Chrome either..  Sure I have used it in the past but I don't want it now.  It is just about impossible to use the web these days without flash activated unless you are an people and don't get it anyway.   Trying to piggyback that unwanted software on top of a Flash update is not cool!  Its bad enough 3rd party downloads come with  things like that but whats next some adware?    Please rethink your update policies as getting that stuff installed is doing no one that doesn't want it any favors at all.

  Adobe does not think that anyone wants these 3rd-party add-ons.  However, they have to fund a development team for the free software they provide; that's why/how they try to recover some of that funding. 
  I can understand they need money for their product yet they are the ones that bought macromedia and supported it on the web for years.  I can remember when pdf files were new so new it stopped BART from allowing it through the network I was on.  Do they not make enough money off of Photoshop?  I realize if a network wants to support flash on macs they need to buy a another server option to make it work.  I just find it deplorable the way it is done.  In fact the check box is somewhat skillfully camouflaged on the update page.
  Updates should not come with trickery in the update choice to tick the correct switch off (check box) to not have 3rd party unwanted choices.   The difference between the save vs run update from their site makes a difference in which way it comes to you as the default run from the adobe site is it comes with mcafee and chrome browser not the OS.  This is not useful for the average jo computer user that has no clue. 
  What is next Babylon toolbar?    Have you ever seen the video of John McAfee explaining how to uninstall mcafee av? Perhaps you would understand the frustration of the users that encounter this.
  How To Uninstall McAfee Antivirus - YouTube
  This is a user forum; it is not "our" policy!
  It may be your forum but its at adobe.com and supposedly the place found to ask questions.  Its the only place I could find without writing a letter to adobe. 
  At least a dozen times every day someone posts the links to the offline installers, which are not bundled with any 3rd-party software.  Why not use these instead of complaining...?
  You might put up some links too the offline installers,  however why should I trust some offline installer that may have adware, malware, or some other chumpware silkroped to it?  
    On top of that its adobe's updater that is notifying the user of update needed.      It appears the updates can come two different ways from adobe and may depend on if it is updating for ie or mozilla too.

• Anyconnect and any HIPS

  So I find out that all my problems with HIPS and Anyconnect are due to incompatibility between McAfee HIPS and Cisco. Has anyone else seen this? Is there a workaround?                  
  Running Windows 7 x64
  Have tried verions 3.0.x, 3.1.x of Anyconnect

  Hi Daniel
  It's a bit tricky if you want a granular authentication and authorization, but it works.
  I'm running an ASA with IPSec, SSL Client and Clientless SSL.
  Each of those VPNs with username/one-time-password and certificate based authen.
  The main challenge is to build up a clean structure of Profile Maps, Connection Profiles, Group Policies and Dynamic Access Policies.
  Feel free to ask further questions...
  Stephan

• Samsung Tab 10.1 WiFi Balck 2014 Edition - Anyconnect and IPSec don't work

  I have an employee with a Samsung Tab 10.1 2014  black wifi only edition tablet. She has tried to use both an IPsec connection and the Anyconnect for ICS+ (and the Anyconnect normal Android client and also the OpenConnect open source alternative to Anyconnect).
  The problematic behavior is the same on any VPN connection. The vpn client connects and then no traffic makes use of it. I can see the VPN session on the firewall and it shows no decrypted/decapsulated packets. Additionally, the tablet loses all internet access once the VPN connects (whether it is IPsec or Anyconnect) even though the VPN is set to use split tunneling (and I can see in the connection details that it is only set to tunnel a couple of /24 networks in the 10.x.x.x range).
  I have at least 20 other users that use the same VPN session groups with a variety of Windows, iOS and Android devices and so far, this Samsung tablet is the only problem.
  I have tried different accounts on this tablet and I have tried this employee's account on other devices and the problem remains only on the tablet. Her account works great logging in on my Samsung Galaxy S4 using both IPsec and Anyconnect client software. My account shows the same problem as her account when used on her tablet.
  I have applied all available updates on her tablet, it is currently running Android 4.4.2 and there are no updates available from Samsung for it.
  My phone is running 4.4.4 but the client app versions are the same on both devices.
  She has even exchanged the tablet for a replacement of the same model.
  Can anyone suggest any additional troubleshooting or cause for this problem?
  Basically it is as if the vpn client software works fine but the Android operating system simply ignores it except to stop all internet access.

  The warranty entitles you to complimentary phone support.
  If you bought the product in the U.S. directly from Apple (not from a reseller), you have 14 days from the date of delivery in which to exchange or return it for a refund. In other countries, the return policy may be different. If you bought from a reseller, its return policy applies.