M01 - Welcome

• Introduce the course and course agenda
• Introduce the training organization
• Show common resources
• Describe the lab environment and how to use the Lab Guide

M02 - ePO Overview

• Describe the solution and its key features.
• Identify new features and enhancements for this release.
• Identify the components in a basic deployment architecture.
• Explain the architecture and overview of ePO.

M03 - McAfee Agent

• Define the Agent and explain its purpose, key characteristics,and functions.
• Define and give examples of managed systems.
• Identify platform requirements including hardware, software, and extensions.
• Explain and give examples of Agent communications within the ePO environment.
• Identify ways to convert an Agent to a managed mode.
• Describe ways to remove an Agent.
• Explain ways to use the command line to customize an Agent installation or upgrade.
• Navigate the Agent interface.

M04 - Planning the MDE Deployment

• What is a planning overview?
• Requirements for ePO and the McAfee Agent
• Supported Microsoft Server OS for MDE
• Supported Microsoft Client OS for MDE
• Required ports
• The Tech Check
• Planning the pilot
• Change control

M05 - Encryption Technologies

• State why data at rest requires safeguarding.
• Explain the differences between disk and file encryption.
• Differentiate the features and benefits of various authentication/token options.
• Describe the computer boot process and give definitions for key computer terms used in the boot process.

M06 - MDE Overview

• Identify the key features of McAfee Drive Encryption.
• Draw a high-level MDE overview and describe the function of each component.
• Describe how key management is handled in MDE.
• Identify MDE documentation and online resources.

M07 - MDE Extensions and Packages

• Install extensions and check packages in EPO.
• Locate and navigate new menus used with DE.
• Install the help files and use them to locate information.
• Configure server settings.

M08 - Active Directory Configuration

• Register an LDAP server in ePO
• Configure ePO and MDE for LDAP synchronization
• Verify synchronization task

M09 - MDE Users

• Add a LDAP user in ePO and assign to a client system.
• Add LDAP group users in ePO and assign to a client system.
• Create a DE user group at the domain level for inheritance to child systems.

M10 - Drive Encryption Policies

• Differentiate between the purposes of the DE Product Setting Policy and User Based Policy
• Determine required DE user settings and configure the policy to match
• Differentiate between methods of policy assignment to a user, system, or system group and explain inher-itance
• Assign a policy to a user through a Policy Assignment Rule
• Assign a policy to a system through the System Tree
• Create an Add Local Domain User (ALDU) blacklist policy

M11 - Deployment Options

• Differentiate between the various DE deployment methods
• Perform Product deployment to client machines
• Create a client deployment task in ePO
• Perform a Wake up Agent Task

M12 - Deploying MDE to the Clients

• Deploy the DE client to Endpoint systems and verify installation and function
• Describe deployment best practice recommendations

M13 - MDE Permission Sets

• Create and assign a DE permission set
• Create a DE Administrative Use

M14 - MDE Troubleshooting Methods

• Effectively research DE issues
• Gather data for escalation
• Locate server and client logs useful to troubleshooting
• Match error codes to definitions

M15 - MDE Recovery Options

• Configure systems for self recovery
• Enable administrator recovery

M16 - Drive Recovery

• Build a DETech Recovery CD
• Build a DETech Standalone Recovery CD
• Export recovery information from ePO
• Use file or token authentication to remove encryption on a corrupt disk
• Restore a Master Boot Record.

M17 - MDE Scripting

• Install the Python Client
• Use DE Scripting to perform basic DE Administrative Tasks

M18 - Endpoint Assistant and DPSSP

• Understand Endpoint Assistant (EA)
• Use EA for DE recovery
• Understand McAfee Data Protection Self-Service Portal (DPSSP)
• Use DPSSP with DE

M19 - MDE Dashboards, Queries, and Reports

• Use the DE dashboard to view new client information
• Build new monitors for the dashboard
• Configure queries

M20 - MDE Offline Activation

• Learn the components needed for a manual install

M21 - Upgrading MDE

• Upgrade Drive Encryption to the current release

M22 – Deactivate and Uninstall MDE

• Deactivate and uninstall Drive Encryption from managed systems.

M23 - File and Removable Media Protection

• Describe the File and Removable Media Protection (FRP) solution
• Identify solution requirements
• Install FRP software
• Describe supported encryption key types
• Configure encryption key access
• Manage FRP keys
• Distinguish between FRP policies
• Define FRP permission sets and user controls
• View FRP dashboards and use FRP queries and reports
• Explain how Data Loss Prevention Endpoint (DLPe) uses encryption for an extra layer of control

Day 1

• M01 Welcome
• M02 ePO Overview
• M03 The McAfee Agent
• M04 MDE Planning
• M05 Encryption Technologies
• M06 McAfee Drive Encryption (MDE) Overview
• M07 Extensions and Packages

Day 2

• M08 Active Directory Configuration
• M09 MDE Users
• M10 MDE Policies
• M11 Deployment Methods
• M12 Deploying MDE Software
• M13 MDE Permission Sets
• M14 Troubleshooting MDE

Day 3

• M15 Administrator Recovery
• M16 Drive Recovery
• M17 Scripting
• M18 Password Recovery Tools
• M19 MDE Dashboards and Queries
• M20 MDE Offline Activation

Day 4

• M21 Upgrading
• M22 Uninstall
• M23 File and Removable Media Protection (FRP)

This course is intended for system and network administrators, security personnel, auditors, and/or consultants concerned with system endpoint security and drive encryption.

• Solid knowledge of Windows and system administration, network technologies
• Solid knowledge of computer security, command line syntax, malware/anti-malware, virus/anti-virus, and web technologies
• Prior experience using ePolicy Orchestrator (ePO)