The epo 4.5, ePolicy Orchestrator 4.5 software supports enhanced scalability through the use of remote Agent Handlers.
Agent Handlers can be installed on the servers where agents connect to retrieve policies, client actions, and
updates. Agents can also use Agent Handlers to send properties and events to your primary ePO server.
Support of multiple Agent Handlers enables one ePO server to manage a larger set of installed products on a larger
set of managed systems. Agent Handlers can be deployed to strategic points in your network environment,
enabling management of systems that cannot access the main ePO server directly. They can also be used in
locations where the ePO server can be accessed directly.

The custom data channel is a bi-directional channel for sending product-specific data between ePolicy Orchestrator
and the products on your managed systems. This feature allows McAfee to provide UI actions, which are used when troubleshooting with real-time feedback. These actions are designed to operate on a single system, while providing real-time status to your ePO administrators. The Update Now command, which allows you to update a managed system on demand, is an example of this feature.

Agent communication with the ePO server now uses TLS (Transport Layer Security) protocol for improved security.

You can now move agents from one ePO server to another with the Transfer systems feature.

The navigation for the ePO console has been redesigned for the 4.5 release. Now you can access any of the first level ePolicy Orchestrator tabs from the new ePO Menu. You can also add the pages you use most frequently to the favorites bar: simply drag any entry in the Menu and drop it onto the favorites bar to the right of the Menu.

You can use drag-and-drop functionality to move certain objects in the interface. You can:

• Add Menu items to the favorites bar.
• In tables, add commonly used actions from the Actions menu to the Action bar.
• Using the Systems table, move selected systems or groups of systems to a different group in the System
  Tree.
• In the System Tree, move groups and subgroups into other groups.

ePolicy Orchestrator 4.5 allows you to assign policies to unique groups or to individual users through the use of Policy Assignment Rules. This feature enables policy assignment based on the Active Directory groups that users belong to, instead of the system they are using. You can include individual users, groups, and Organizational Units (OUs) in a rule. You can also exclude specific users from a rule. McAfee SiteAdvisor Enterprise 3.0 is the first managed product to leverage this feature.

The new Automatic Responses feature replaces the Notifications feature. This new feature allows you to create rules for responding to events that are specific to your business environment. Available actions include:

• Sending email notifications.
• Sending SNMP traps.
• Creating issues for use with integrated third-party ticketing systems.
• Running a registered executable or server task.

ePolicy Orchestrator 4.5 is fully compatible with IPv6 in both native and mixed environments, including:

• Native IPv4
• Native IPv6
• Mixed IPv4 and IPv6

ePolicy Orchestrator 4.5 supports LDAP (Lightweight Directory Access Protocol) through the use of Active Directory servers. This version of ePolicy Orchestrator allows closer integration with Active Directory servers so that you can:

• Assign permission sets to users based on their Active Directory group.
• Browse your Active Directory server for users or groups when creating Policy Assignment Rules.
• Automatically assign administrator rights to users when they log on with their Active Directory domain
  credentials.

ePolicy Orchestrator 4.5 provides basic issues management and bi-directional integration with these third-party
ticketing systems:

• Service Desk
• Remedy

The multi-server rollup reporting feature has been enhanced. You can now filter out unwanted items before performing a data rollup. New rollup reporting targets have been added, including policy assignments, and specific policy use across your network.

The Queries system has been enhanced in several ways. A redesigned Queries page now groups queries by result types, and includes more default queries. Query targets are now grouped in the Query Builder. A stacked bar chart has been added to the available chart types, and the variables and parameters for configuring charts have been improved.

Rogue System Detection has been improved to fully leverage the power of ePolicy Orchestrator 4.x platform. Now you can categorize exceptions, update your OUI list, and optionally employ OS finger printing.

When you install the ePO Help extension for products that are managed by ePolicy Orchestrator, you can now search the context-sensitive Help and product guides for those products.

An ePO 4.5 system user is created for the ePO server and for each ePO Agent Handler in order to communicate required remote commands. The user name is the unique machine name of the server or individual Agent Handler.
For example, system_EPOSERVER. These users cannot be modified or deleted, and appear only in the Audit Log.

Registered LDAP servers
When registering LDAP servers for use with your ePO server, you can optionally choose to use SSL for
communication. If you enable this option, you must change the port used to connect to this server. The most common default port for non-SSL LDAP communications is 389. Port 636 is commonly used for SSL LDAP
communications.

When an error occurs in the ePO console and you click OK, the Dashboards page opens. This occurs when the current page contains information that cannot be accessed after the error occurs. For example, this might occur while scheduling a new server task. When the error occurs, the user-specified information in the previous page is not retained. You can click Back to return to a page that is not causing an error. If your attempt to “go back” is not successful you must begin the process again.