McAfee Vulnerability Manager
Microsoft Windows Server 2008 R2
COPYRIGHT
Copyright © 2012 McAfee, Inc. Do not copy without permission. TRADEMARKS
McAfee, the McAfee logo, McAfee Active Protection, McAfee AppPrism, McAfee Artemis, McAfee CleanBoot, McAfee DeepSAFE, ePolicy Orchestrator, McAfee ePO, McAfee EMM, McAfee Enterprise Mobility Management, Foundscore, Foundstone, McAfee NetPrism, McAfee Policy Enforcer, Policy Lab, McAfee QuickClean, Safe Eyes, McAfee SECURE, SecureOS, McAfee Shredder, SiteAdvisor, SmartFilter, McAfee Stinger, McAfee Total Protection, TrustedSource, VirusScan, WaveSecure, WormTraq are trademarks or registered trademarks of McAfee, Inc. or its subsidiaries in the United States and other countries. Other names and brands may be claimed as the property of others.
LICENSE INFORMATION License Agreement
NOTICE TO ALL USERS: CAREFULLY READ THE APPROPRIATE LEGAL AGREEMENT CORRESPONDING TO THE LICENSE YOU PURCHASED, WHICH SETS FORTH THE GENERAL TERMS AND CONDITIONS FOR THE USE OF THE LICENSED SOFTWARE. IF YOU DO NOT KNOW WHICH TYPE OF LICENSE YOU HAVE ACQUIRED, PLEASE CONSULT THE SALES AND OTHER RELATED LICENSE GRANT OR PURCHASE ORDER DOCUMENTS THAT ACCOMPANY YOUR SOFTWARE PACKAGING OR THAT YOU HAVE RECEIVED SEPARATELY AS PART OF THE PURCHASE (AS A BOOKLET, A FILE ON THE PRODUCT CD, OR A FILE AVAILABLE ON THE WEBSITE FROM WHICH YOU DOWNLOADED THE SOFTWARE PACKAGE). IF YOU DO NOT AGREE TO ALL OF THE TERMS SET FORTH IN THE AGREEMENT, DO NOT INSTALL THE SOFTWARE. IF APPLICABLE, YOU MAY RETURN THE PRODUCT TO MCAFEE OR THE PLACE OF PURCHASE FOR A FULL REFUND.
Contents
Upgrading Microsoft Windows Server ... 5
Back up the SQL server database ... 5
Back up the McAfee Vulnerability Manager hardware settings ... 7
Upgrade the operating system ... 7
Restore the McAfee Vulnerability Manager hardware settings ... 7
Reinstall McAfee Vulnerability Manager software ... 8
Restore the McAfee Vulnerability Manager database ... 9
Enable services to access a network folder ... 11
McAfee Vulnerability Manager database name ... 11
Install SQL Server Management Objects (SMO) ... 11
Run the product agent as an administrator ... 12
Scan engine ID issue ... 13
Upgrading Microsoft Windows Server
This guide contains instructions on upgrading customer-owned hardware running McAfee® Vulnerability Manager to Microsoft Windows Server 2008 R2 (64-bit).
Overview
• Back up your existing Faultline database (only for the appliance running the database).
• Use the Backup/Restore utility to create a backup file of your appliance settings (like registry and engine ID).
• Upgrade the Windows operating system.
• Use the Backup/Restore utility to restore your appliance settings from your backup file.
• Install Microsoft SQL 2005 SP4 (only for the appliance running the database).
• Restore the Faultline database (only for the appliance running the database).
• Install the McAfee Vulnerability Manager components on the appliance.
Note: Make sure your hardware supports Microsoft Windows Server 2008 R2 (64-bit operating
system) before you begin the upgrade process. Supported upgrade scenarios
• McAfee Vulnerability Manager 6.8 on Microsoft Windows Server 2003 to McAfee Vulnerability Manager 7.0 or 7.5 on Microsoft Windows Server 2008 R2. For the database, either Microsoft SQL Server 2005, 2008, or 2008 R2.
• McAfee Vulnerability Manager 7.0 on Microsoft Windows Server 2003 to McAfee Vulnerability Manager 7.5 on Microsoft Windows Server 2008 R2. For the database, either Microsoft SQL Server 2005, 2008, or 2008 R2.
• McAfee Vulnerability Manager 7.5 scan engine and scan controller on Microsoft Windows Server 2003 to McAfee Vulnerability Manager 7.5 on Microsoft Windows Server 2008 R2.
Note: When upgrading McAfee Vulnerability Manager 7.0 on Microsoft Windows Server 2003 to
McAfee Vulnerability Manager 7.0 on Microsoft Windows Server 2008 R2, the scan engine ID might be over-written when you reinstall the product. See Scan engine ID issue (page 13).
Back up the SQL server database
Before performing an upgrade, use SQL Server Management Studio to create a backup of your McAfee Vulnerability Manager database so you can restore it after the upgrade.
1 Open SQL Server Management Studio: Select Start | All Programs | Microsoft SQL Server |
SQL Server Management Studio.
2 Connect to the server by providing the proper authentication. 3 Expand the Databases in the Object Explorer.
Upgrading Microsoft Windows Server
Back up the SQL server database
McAfee Vulnerability Manager Microsoft Windows Server 2008 R2 Upgrade Guide 6
Figure 1: SQL Enterprise Manager – Getting to the Backup menu
5 In the Back Up Database dialog box, the backup destination is entered automatically.
To add a different location, click Add to specify where to create the backup file.
Figure 2: Back Up Database – Faultline
6 (Optional) Select Options | Verify Backup on finished to have SQL make sure that the backup
is correct.
Upgrading Microsoft Windows Server
Restore the McAfee Vulnerability Manager hardware settings
Back up the McAfee Vulnerability Manager hardware
settings
Use the Backup and Restore utility on the system running McAfee Vulnerability Manager to save your configuration settings to a file. Back up your settings before you upgrade the operating system on your appliance.
The utility only saves McAfee Vulnerability Manager configuration settings (like hostname, folder structure, and product registry settings) for the system it is run on. You must run this utility on each McAfee Vulnerability Manager system that you want to restore from a backup file.
Caution: When upgrading to Microsoft Windows 2008 R2, all files on the local hard drive are deleted.
Save your backup file to a network folder or a USB device.
1 Download and run the utility, MVM_Backup_Wizard.exe. 2 On the Welcome screen, click Next.
3 Select Backup application settings, then click Next.
4 Click Browse, select a file location, type a name for the file, then click Save. 5 Click Next.
6 Type a password for the backup file, then click Next. The password must be at least 8 characters
and consist of letters and numbers.
7 (Optional) Select View Database Backup Instructions to view instructions on how to backup
your McAfee Vulnerability Manager database. This is available only when the database is installed on the appliance.
8 Click Next. 9 Click Apply.
10 When the backup is complete, click Close.
Upgrade the operating system
You must provide the operating system yourself. Follow the manufacturer's procedures for installing the operating system.
If your hardware is running the database, you must install Microsoft SQL Server after you upgrade the operating system.
Restore the McAfee Vulnerability Manager hardware
settings
Upgrading Microsoft Windows Server
Reinstall McAfee Vulnerability Manager software
McAfee Vulnerability Manager Microsoft Windows Server 2008 R2 Upgrade Guide 8
1 Run the utility, MVM_Backup_Wizard.exe. 2 On the Welcome screen, click Next.
3 Select Restore application settings, then click Next. 4 Click Browse, select your backup file, then click Open. 5 Click Next.
6 Type the password for the backup file, then click Next. 7 Click Apply.
8 When the backup is complete, click Close.
Reinstall McAfee Vulnerability Manager software
After upgrading the operating system on your hardware and installing the necessary software, you must install McAfee Vulnerability Manager on your system.
Refer to the McAfee Vulnerability Manager Installation Guide for details about installing the product.
Note: When installing McAfee Vulnerability Manager on a server running Microsoft Windows 2008 R2,
you must log on as the root administrator for the server or the Admin Approval Mode must be disabled.
1 Run the McAfee Vulnerability Manager installation program. The McAfee Vulnerability Manager
- Welcome screen appears.
2 Click Next. The end user license agreement appears.
3 Read the agreement, select Accept, then click Next. The Select Installation Type page
appears.
4 Select Advanced, then click Next. The Select Installation Type page appears. 5 Select an Architecture type, then select the System you are installing onto the server. 6 Click Next. The System Checks page appears.
7 The installation program runs a system check to ensure that all critical and non-critical
dependencies are met. If any of the dependency checks fails, you must resolve the issue before you can install McAfee Vulnerability Manager. To resolve a dependency check, you must exit the installation program, fix the issue, then rerun the installation program.
8 Click Next.
The Architecture and System you selected to install determines what information you must create or provide.
Type McAfee Vulnerability Manager information and click Next until the Installation Settings page appears.
9 Review the installation settings and make sure all settings are correct.
To change a setting, double-click the setting. When you are finished modifying the setting, click
Next to return to the Installation Settings screen.
10 Click Install. The McAfee Vulnerability Manager components are installed.
11 When the installation process is complete, click Finish. A message states that a system restart is
required.
12 Click OK to restart the system.
Note: When installing McAfee Vulnerability Manager on Microsoft Windows 2008 R2, a FS user
Upgrading Microsoft Windows Server
Restore the McAfee Vulnerability Manager database McAfee Vulnerability Manager sends updates to some components after the installation process is complete, like sending content updates to the scan engines. In most cases, these updates finish shortly after the installation is complete. If there are a large number of scan engines or there is low bandwidth communication to the scan engines, this update process could take longer. If McAfee Vulnerability Manager is not functioning properly right after an installation, the update process might not be complete.
Tip: Any changes made to the server hosting the McAfee Vulnerability Manager web portal (e.g.
system name or domain name) after installation requires a manual change to the shortcut on the desktop.
Restore the McAfee Vulnerability Manager database
After you reinstall the McAfee Vulnerability Manager software, you need to restore the database from a backup.
1 Using the configuration manager, stop all scan engines. Open the configuration manager, expand
the product system tree in the left pane, select a scan engine, and click Stop. You must do this for each scan engine.
2 Select Start | All Programs | Microsoft SQL Server | SQL Server Management Studio. 3 Log on to SQL Server Management Studio.
4 Right-click Databases, then select Restore Database.
• Type Faultline in the To database field.
• Select From device, then click Select Devices.
Note: With McAfee Vulnerability Manager 6.5 and later, you don't have to use Faultline as the
Upgrading Microsoft Windows Server
Restore the McAfee Vulnerability Manager database
McAfee Vulnerability Manager Microsoft Windows Server 2008 R2 Upgrade Guide 10
5 In the Choose Restore Devices dialog box, click Add.
• Type file name and location of the backup files are located, then click OK twice.
6 (Optional) On the Options tab, you can edit the rows in the Move to physical file name column to
specify the location and names of the physical files of the restored McAfee Vulnerability Manager database.
Figure 4: Restore database
7 Click OK, to begin restoring the database. When the process is complete, click OK. 8 From the Object Explorer, expand Security, right-click Logins, then select New Login.
• Type faultline for the Login name.
• Select SQL Server authentication, then type the faultline user password.
• Deselect Enforce password policy, then click OK.
9 Expand Databases, select faultline, then click New Query.
10 Type exec sp_change_users_login 'Update_One', 'faultline', 'Faultline', then click
Upgrading Microsoft Windows Server
Install SQL Server Management Objects (SMO)
Enable services to access a network folder
If you saved your backup files to a network folder, you must enable some services so the appliance can access your network.
1 Select Start | Administrative Tools | Services. 2 Right-click Server, then select Properties.
3 Select Manual for the Startup type, then click Apply. 4 Click Start, then click OK.
5 Right-click Computer Browser, then select Properties. 6 Select Manual for the Startup type, then click Apply. 7 Click Start, then click OK.
8 Close the Services window.
McAfee Vulnerability Manager database name
With McAfee Vulnerability Manager 6.5 and later, you don't have to use Faultline as the McAfee Vulnerability Manager database name.
If you use a database name other than Faultline, you must add a string to the
HKEY_LOCAL_MACHINE\SOFTWARE\Foundstone\Foundscan registry key for Microsoft Windows 2003 or HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Foundstone\Foundscan registry key for Microsoft Windows 2008 R2. The string must be DBName with the value of the name created for the McAfee Vulnerability Manager database.
If you use a database name other than Faultline, you should add the DBName registry key to any system that runs one or more of the following McAfee Vulnerability Manager applications or services:
• Scan controller
• API server
• Report engine
• Notification service
• Data synchronization service
• Configuration manager
Install SQL Server Management Objects (SMO)
If you run FSUpdate using a scan controller that is not installed with the database, you must first install SQL Client Tools, then install the SQL Server Management Objects (SMO) for FSUpdate to function properly.
Upgrading Microsoft Windows Server
Run the product agent as an administrator
McAfee Vulnerability Manager Microsoft Windows Server 2008 R2 Upgrade Guide 12
1 Double-click SQLServer2005_XMO_x64.msi. This file is on the Software Setup disc. The default
location is E:\SQL2005\Client Tools.
2 Click Next.
3 Select I accept the licensing terms and conditions, then click Next. 4 Type in your registration information, then click Next.
5 Click Install.
6 Select I want to complete this action on the UAC notification. 7 Click Finish.
Run the product agent as an administrator
After upgrading to Windows Server 2008 R2, the Foundstone Configuration Agent might not appear in the system tray.
The Microsoft user account control (UAC) may prevent the agent from running. To resolve this issue, set the FCAgentSettings.exe file to run as an administrator. This should be done on all systems running McAfee Vulnerability Manager, except for the system running the configuration manager.
1 Open the product FCM folder. For appliances, this should be D:\Program Files
(x86)\Foundstone\FCM.
2 Right-click FCAgentSettings.exe, then select Properties.
3 Click Compatibility, select Run this program as an administrator, then click OK.
4 Double-click FCAgentSettings.exe to start the configuration agent, if necessary. You might need
Scan engine ID issue
Run the product agent as an administrator
Scan engine ID issue
Migrating McAfee Vulnerability Manager 7.0 from Microsoft Windows Server 2003 to Microsoft Windows Server 2008 R2 can cause issues with the scan engine.
The purpose of the migration tool is to upgrade existing customers from Microsoft Windows Server 2003 to Microsoft Windows Server 2008 R2 and upgrade McAfee Vulnerability Manager. The exceptions are the McAfee Vulnerability Manager 7.5 scan engine and scan controller, which run on either Microsoft Windows Server 2003 or 2008 R2.
If you are upgrading Microsoft Windows Server and plan on reinstalling McAfee Vulnerability Manager 7.0, the migrated scan engine ID might be over-written by the product installer. This only affects systems running a scan engine.
1 Finish the backup process and install Microsoft Windows Server 2008 R2. 2 Run the migration tool and restore the server from your backup file. 3 Copy the EngineID from the registry. The EngineID is at
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Foundstone\FSScanEngine. Save the EngineID to a text file.
4 Install McAfee Vulnerability Manager 7.0, but don't restart the server after the installation
completes.
5 Replace the EngineID in the registry. Copy and paste the EngineID from the text file to the
EngineID in the registry.
6 Restart the server.
Note: If you restart the server and then replace the EngineID, you will see two scan engines with the
McAfee Vulnerability Manager
