Featured

Current Versions

Welcome to Trellix and Skyhigh Security!

Last Updated: 12 Oct 2022

Provides Support for Monterey, Big Sur ~~and Catalina~~ (vendors provide support for N-1 only).
All products use Rosetta 2 on Apple Silicon (M1) Macs.
All products use system extensions ~~– except MCP on Catalina, which uses a Kext~~.

	Name	Type	Version	ePO Extension	Release Date	Release Notes	Min. OS Version
TA	Trellix Agent for Mac	ePO Package	MVePO: 5.7.7.385 ePO: 5.7.7.378	5.7.7.35	MVePO: 09 Aug 2022 ePO: 26 Jul 2022	MVePO: Link ePO: Link	10.13
DXL	DXL Client	bundled w/MA	6.0.3.847	6.0.0.259	26 Jul 2022		10.13
ENSM	Endpoint Security for Mac	Standalone	10.7.8.186 SCP version: 10.7.8.262	10.7.0.988 (platform) 10.6.1.106 (license)	12 Oct 2021 SCP version: 31 May 2022	Link	10.15.6
TP	ENSM Threat Prevention	ePO Package /Standalone	10.7.8.128	10.7.0.1155	12 Oct 2021	Link	10.15.6
FW	ENSM Firewall	ePO Package	10.7.8.115	10.7.0.1025	12 Oct 2021		10.15.6
WC	ENSM Web Control	ePO Package	10.7.8.119	10.7.0.1077	12 Oct 2021		10.15.6
ATP	ENSM Adaptive Threat Protection	ePO Package	10.7.8.131	10.7.0.1040	12 Oct 2021		10.15.6
MNE	Management of Native Encryption	ePO Package /Standalone	5.2.2.11	5.2.2.15	11 Oct 2022	Link	10.15.6
SCP	Skyhigh Client Proxy	ePO Package /Standalone	4.4.0.128 (Big Sur or later) ~~3.2.0.267 (Catalina)~~	4.4.0.74 (Big Sur or later) ~~3.2.0.189 (Catalina)~~	31 May 2022	Link	11.2 (Big Sur or later) ~~10.15.6 (Catalina)~~
FRP	File and Removable Media Protection	ePO Package	5.4.3.58	5.4.3.170	11 Oct 2022	Link	10.15.6
DLP	Data Loss Prevention and Device Control	ePO Package	11.9.100.182	11.9.100.27	20 Aug 2022	Link	10.15.6
MVEDR	MVISION Endpoint Detection and Response	ePO Package	3.5.2.1104	3.5.2.1104	16 Dec 2021	Link	10.15.6

How to Deploy Agent/Smart Installer with MDM

A frequently asked question of Mac-using McAfee customers is how do I deploy a .sh script to Macs? MDMs generally can only only deploy .pkg or .dmg files to Mac. The answer is to use a packaging utility to wrap the .sh file inside a .pkg file. MDMs typically provide a packaging tool, or you can use of the many open-source packaging utilities.

McAfee has posted instructions on how to build a .pkg for use with Jamf Pro MDM – KB94262 – Deploying McAfee products with Jamf Pro software.

For others, the basic steps are:

Obtain the agentpackages.zip (contains install.sh) or McAfeeSmartInstall.sh from your ePO admin.
Place the file where you want it installed – I recommend /tmp as the file will get cleaned up after a reboot.
Open your packaging tool and drag-n-drop the file into the tool window. This will place the file in the appropriate installed location.
Change the owner to root, group to wheel, and permissions to 755 (owner – all, group – read and execute, others – read and execute).
Add version number to package filename. In on-prem epo, version numbers are important, while in MVISION ePO, version numbers aren’t so important. You will be upgrading your agent package at some point and it helps to be able to tell the current version from the new version!
Build your package and upload to your MDM for distribution. We always recommend signing packages but doing so is outside the scope of this post.

The MDM will need to execute the script that the package wrote to disk. You can either do this by running the command in a policy from MDM or via a .pkg postinstall script. The postinstall script is outside the scope of this post, but Rich Trouton has an excellent post here that dives into the technical aspects of installer packages.

As for the run command method, the MDM will need to run:
• For install.sh: /private/tmp/install.sh -i
• For McAfeeSmartInstall.sh: /private/tmp/McAfeeSmartInstall.sh

NOTE: There is currently a bug in the smart installer script – you must update the script in a text editor to get it to install. The workaround is available here and also in the above Jamf Pro link.

Configuration Profiles

Now updated with Trellix URLs

What allowed extensions or filters are needed to enable McAfee endpoint products to successfully protect your Mac depends on what version of macOS you are running. McAfee provides sample configuration profiles (in the KB links below) that you can directly import or use for inspiration in building your own. It doesn’t hurt to use the same profiles on multiple OS versions as the older OS versions will just ignore what doesn’t apply. All configuration profiles are required for successful use of McAfee endpoint products on Mac.

Note to Mac Admins: Bundle IDs for Extensions (System or Kernel) need to be explicitly defined in Big Sur and Monterey. Please view the KB links below for the bundle IDs.

Note to Jamf Pro Admins: ~~Uploading a System Extension config profile is currently broken (PI-008562). You will have to create and populate the system extension profile yourself. Click here and here for example screen shots.~~ Jamf seems to have fixed the System Extension Payload Upload for Configuration Profiles. Please try to upload our sample profile.

Ventura (13.0) and Monterey (12.0) and Big Sur (11.0)
System Extensions (SEXTs) – https://kcm.trellix.com/corporate/index?page=content&id=KB93600
Web Content Filters – https://kcm.trellix.com/corporate/index?page=content&id=KB93600
Privacy Preferences (PPPC) – https://kcm.trellix.com/corporate/index?page=content&id=KB91109
+ DLP PPPC – https://kcm.trellix.com/corporate/index?page=content&id=KB92159
+ FRP PPPC – fmpd already allowed as part of KB91109

Catalina (10.15)
System Extensions (SEXTs) – https://kcm.trellix.com/corporate/index?page=content&id=KB93600
Web Content Filters – https://kcm.trellix.com/corporate/index?page=content&id=KB93600
Legacy System Extensions (KEXTs) – https://kcm.trellix.com/corporate/index?page=content&id=KB89728
+ MCP Kext – https://kcm.trellix.com/corporate/index?page=content&id=KB90163
+ DLP Kext – https://kcm.trellix.com/corporate/index?page=content&id=KB91332
Privacy Preferences (PPPC) – https://kcm.trellix.com/corporate/index?page=content&id=KB91109
+ DLP PPPC – https://kcm.trellix.com/corporate/index?page=content&id=KB92159
+ FRP PPPC – fmpd already allowed as part of KB91109

Mojave (10.14)
Legacy System Extensions (KEXTs) – https://kcm.trellix.com/corporate/index?page=content&id=KB89728
+ MCP Kext – https://kcm.trellix.com/corporate/index?page=content&id=KB90163
+ DLP Kext – https://kcm.trellix.com/corporate/index?page=content&id=KB91332
Privacy Preferences (PPPC) – https://kcm.trellix.com/corporate/index?page=content&id=KB91109
+ DLP PPPC – https://kcm.trellix.com/corporate/index?page=content&id=KB92159
+ FRP PPPC – fmpd already allowed as part of KB91109

High Sierra (10.13)
Legacy System Extensions (KEXTs) – https://kcm.trellix.com/corporate/index?page=content&id=KB89728
+ MCP Kext – https://kcm.trellix.com/corporate/index?page=content&id=KB90163
+ DLP Kext – https://kcm.trellix.com/corporate/index?page=content&id=KB91332

Mojave Versions

Last Updated: 14 Feb 2021 – Last Versions to Support Mojave
(after this, all products use system extensions…except MCP on Catalina)
Currently, you must use these versions on Catalina if you use MVEDR!

	Name	Type	Version	ePO Extension	Release Date	Release Notes	Min. OS Version
MA	Agent for Mac	ePO Package	5.7.0.194	5.7.0.107	08 Dec 2020	Link	10.13
DXL	DXL CLient	bundled w/MA	6.0.3.185		08 Dec 2020		10.13
ENSM	Endpoint Security for Mac	Standalone	10.7.1.108	10.7.0.697 (platform) 10.6.1.106 (license)	8 Sep 2020	Link	10.14.5
TP	ENSM Threat Prevention	ePO Package /Standalone	10.7.1.109	10.7.0.755	8 Sep 2020	Link	10.14.5
FW	ENSM Firewall	ePO Package	10.7.1.104	10.7.0.684	8 Sep 2020		10.14.5
WC	ENSM Web Control	ePO Package	10.7.1.103	10.7.0.750	8 Sep 2020		10.14.5
ATP	ENSM Adaptive Threat Protection	ePO Package	10.7.1.106	10.7.0.705	8 Sep 2020		10.14.5
MNE	Management of Native Encryption	ePO Package /Standalone	5.1.0.7	5.1.0.8	9 Jun 2020	Link	10.14.5
MCP	Client Proxy	ePO Package /Standalone	3.2.0.267	3.2.0.189	31 Aug 2020	Link	10.14.5
FRP	File and Removable Media Protection	ePO Package	5.1.1.261	5.2.0.151	11 Feb 2020	Link	10.14.5
DLP	Data Loss Prevention and Device Control	ePO Package	11.5.2.6	11.5.3.8	11 Aug 2020	Link	10.14.5
MVEDR	MVISION Endpoint Detection and Response	ePO Package	3.3.0.625	3.3.0.625	26 Nov 2020	Link	10.14.5

High Sierra Versions

Last Updated: 14 Feb 2021 – Last Versions to Support High Sierra
(after this, all products are notarized)

	Name	Type	Version	ePO Extension	Release Date	Release Notes	Min. OS Version
MA	Agent for Mac	ePO Package	5.6.6.290	5.6.6.104	10 Nov 2020	Link	10.13
DXL	DXL Client	bundled w/MA	6.0.0.241		10 Nov 2020		10.13
ENSM	Endpoint Security for Mac	Standalone	10.6.4.117	10.6.1.1216 (platform) 10.6.1.106 (license)	13 Aug 2019	Link	10.13
TP	ENSM Threat Prevention	ePO Package /Standalone	10.6.4.113	10.6.1.1234	13 Aug 2019	Link	10.13
FW	ENSM Firewall	ePO Package	10.7.1.104	10.6.1.1196	13 Aug 2019		10.13
WC	ENSM Web Control	ePO Package	10.7.1.103	10.6.1.1191	13 Aug 2019		10.13
ATP	ENSM Adaptive Threat Protection	ePO Package	10.7.1.106	10.6.1.1191	13 Aug 2019		10.13
MNE	Management of Native Encryption	ePO Package /Standalone	5.0.0.3	5.0.0.111	12 Mar 2019	Link	10.13
MCP	Client Proxy	ePO Package /Standalone	2.5.0.243	2.5.0.269	13 Aug 2019	Link	10.13
FRP	File and Removable Media Protection	ePO Package	5.1.0.1709	5.1.0.209	13 Aug 2019	Link	10.13
DLP	Data Loss Prevention and Device Control	ePO Package	11.3.0.8	11.3.0.19	23 Jul 2019	Link	10.13
MVEDR	MVISION Endpoint Detection and Response	ePO Package	3.0.0.432	3.0.0.432	22 Aug 2019	Link	10.13

Download Sources

McAfee does not make its software publicly available to download. You must be a McAfee customer with a valid grant number or licensed ePO in order to download.

Locations:
• Product Downloads – requires Grant Number
• ePO Software Catalog – requires licensed ePO server

Definitions:
• Standalone – designed to be used without ePO -or- designed to be installed without using ePO
• ePO Package – designed to be checked-in – this is endpoint software that is installed from ePO.
• ePO Extension – designed to be checked-in – this is used to configure software installed from ePO.
• Documentation – install guides, product guides, release notes, etc.

Documentation

General Info:
• SNS – McAfee Support Notification Service – receive emails about product updates
• PER – How to submit a new Product Idea – create an enhancement request

	Name	Known Issues	MER Tool	Supported Platforms
MA	McAfee Agent for Mac	KB93773	KB86785	KB51573
DXL	DXL Client		KB90005
ENSM	Endpoint Security for Mac	KB85855	KB87626	KB84934
TP	ENS Threat Prevention	KB85825
FW	ENS Firewall
WC	ENS Web Control
ATP	ENS Adaptive Thread Protection	KB90658
MNE	Management of Native Encryption	KB91240	KB79508	KB79375
MCP	McAfee Client Proxy	KB83131	KB92089	KB74182
FRP	File and Removable Media Protection	KB85807	KB76759	KB81149
DLP	Data Loss Prevention and Device Control	KB89301	KB86628	KB68147
MVEDR	MVISION Endpoint Detection and Response	KB91275	KB92109	KB91345