McAfee Complete Data Protection Reviews

It can be used for all mobile works laptops, which are more susceptible to data loss. Or it can be used for file servers where you put your file servers on the cloud, and so the data addresses and transit are encrypted.

They offer very good accepted standards. The solution is compliant and offers good support. They offer pretty good security due to their standards compliance. 

It is part of the DLP and works well for that use case.

They could be better in terms of Complete Data Protection. There are a lot of components that get involved there. 

I would like to see a bit more stability.

The initial setup process could be simpler. 

I've used the solution for the last four years or so.

I haven't used it much, and therefore cannot speak to the overall stability, although I would like it to be more stable in general. We've faced problems on and off.

Having not used it very much, I have never tried to scale the product.

It is a complicated initial implementation process. The implementation is not straightforward. My File and Folder protection take at least two days to three days to fix and deploy. To get all the end-users on, it might take three or so days. 

You do need to purchase a license in order to use the solution. 

It is a pretty good product. Overall, I would rate it a seven out of ten.

We deploy McAfee products mostly as service delivery providers for our customers. About 60% to 70% of the time we use this solution as the complete, modular anti-virus component for data and endpoint protection. We use the advanced version for device control. Sometimes we integrate Endpoint Encryption for file and folder protection and maybe add in McAfee Application Control to block unwanted applications. We provide services for prevention as well as endpoint and firewall solutions. Depending on what the client wants, there are many of the McAfee modules in this line that we work with to provide an integrated solution.  

Unfortunately, we are not using McAfee in our company because there are policies that come from our main offices in India rather than here in the UAE. That is the only reason we are using another solution. But for my own purposes, this is the solution I have chosen to use in my home.  

Our customers are mainly medium-sized organizations although we have some enterprise clients. When I say enterprise, I mean companies that have more than 1000 machines. I have very big clients that have more than 2,000 end-users and they are using this product.  

Often the customers have requirements where we need to provide them with endpoint DLP (Data Loss Prevention) solutions. McAfee's DLP is a very good product. It gives you accessibility to either allow or block many preferences on a machine and does a good job of protecting against any data loss. This is what I think is the most valuable feature in the solution.  

The improvement that I think most needs to be addressed is a claim from many customers that I receive all the time. They say that the product consumes too much RAM and CPU. It makes clones in the machine and that eats up resources.  

It makes the clone as long as it is running on the machine. The problem is big enough for users that I need to have another smart, reliable solution that can be deployed instead if the customer does not have the hardware to allow the product to consume the needed volume of RAM and CPU. If McAfee were able to do all it does without stealing so much of the resources on a machine, I would not have this problem of having to consider other deployments.  

We have been using the solution for between six or seven years. Earlier it was called VSP. At that time it was not complete all-in-one protection. It has been only for maybe two or three years they have changed the name to Complete Data Protection and made this well-integrated product.  

From my point of view, the product is very stable and the support team is very responsive. If they release a new update and there was a bug or something, they release a patch or fix for it very quickly.  

The scalability of the solution is there. McAfee is one of the oldest security companies. They have been creating and releasing security solutions since 1987, so they know what they are doing and they do it well.  

We deploy the solution to medium and enterprise clients so it can scale up and handle larger clients.  

Essentially, as a service delivery partner, we are also technical support to some level.  

Because we deploy for clients, we work with a variety of solutions in order to meet their needs. While I am working mostly with McAfee solutions, I'm also very familiar with the broader classification of security solutions. I have worked with various PAM (Privileged Access Management) solutions. I don't only work with McAfee portfolio or their security products but it is what I deploy most often. I am familiar with Symantec, LogRhythm SIEM solution, and Forcepoint. Also, I have worked with security solutions for USB, for the web, for email, and for secure file transfer solutions, so I am very familiar with a lot of security solutions and how they work.  

The main difference between McAfee Complete Data Protection and other solutions is that McAfee has a strong point as a comprehensive security solution. With Endpoint Security, you don't have to have different management interfaces to manage your endpoint solutions. It all can be managed from one single server in one interface. This might be their main and most powerful advantage because users do not have to mix and matching various products to accomplish what a security suite can. They also do not have to deal with potential incompatibilities.  

The initial setup is something I have done often so it is very clear how to do it and it is easy for me.  

On average it takes very little time to deploy. For the management console EPO (ePolicy Orchestrator) it is a maximum of maybe half an hour for it to be deployed. It depends on the server. Deploying the endpoint from the management console also does not take much time. If the network and the firewall ports are open, normally it takes only 5 to 10 minutes and you can deploy it in batches of 50 or 100 machines in each batch. So the total time depends on how many batches, but the installation on the machines can take as little as 5 to 10 minutes.   

We do all of our own implementations and the implementations for clients as well.  

The advice I have for people considering this type of security solution is not to listen to what all the companies advertise. You can see bad reviews, maybe good reviews as well, but you need to use that information from the reviews as a starting point for your own observations and not just believe what reviews say. I know some reviews on the internet are fair, but some reviews are not. Try to do a POC (Proof of concept) and conduct testing for yourself. Define your policies as per your requirements for your situation and your company and choose products that meet the needs of that model. If you want to install any solution with the default policies, it will probably not fit your requirements exactly. You will need to do enhancements and fine-tune the solution, so you will need a solution that can be tuned. Give the solutions a try. Do the POC for one or two months and then you can decide if it is a good solution for you.  

On a scale from one to ten where one is the worst and ten is the best, I would rate this product as an eight of ten. To make it ten or even a nine, they need to resolve the issues with how the solution consumes PC resources.  

We primarily provide services to our clients.

Clients usually use the solution mainly to audit GDPR compliance. As for the audit, they need to meet their compliance, the PCI DSS compliance, and GDPR compliance. Based on that they procure the DLP solution.

The classification front-end and the features for the endpoint are great aspects of the product. 

It works absolutely fine for the customer requirements.

It's user-friendly and easy to navigate.

The initial setup is very easy.

Technical support is very helpful. 

The stability is good. 

The product can scale. 

There are compatibility issues with the Chrome browser. The DLP works absolutely fine with the internet and the Firefox browser, however, it doesn't support Chrome. That's the only drawback of the DLP. Even if there is a new patch released in Chrome, McAfee DLP doesn't support it.

There are a lot of incidents that are being captured and there is no option for deleting the older incidents from the console. However, if you want to treat that incident, then I think there is some task that has to be done and it doesn't work in the right way. We had to run some more subscriptions this year to reduce the incidents.

I've used the solution for around ten years or so. Maybe even longer. It's been a long time. 

I would rate the stability at an eight out of ten. It's pretty reliable. There aren't really any bugs or glitches and it doesn't crash or freeze. 

The scalability is okay. I would rate it at an eight out of ten. 

Technical support is absolutely fine. I have very good friends in support. Most of the time, most of my friends are working there, and I get connected with them. There aren't any problems. I'm quite satisfied with their level of knowledge and helpfulness. 

The initial setup is straightforward. It's very simple to deploy. It's just in a matter of five to ten minutes of checking out everything. On top of that, policies can be configured within 30 to 40 minutes. In that time, everything can be set up.

The pricing is reasonable. Of course, it could always technically be cheaper, however, as a company that is a systems integrator, we tend to get more margin.

We are service providers, not customers. We're a platinum partner.

I'd recommend the solution to other companies. It's more than just an antivirus. It helps with compliance. 

However, I would advise a company that is considering buying it to understand what it can do and how it works in order to ensure it meets the needs of the organization.

I'd rate the solution at an eight out of ten. We're mostly quite satisfied with its capabilities. 

We have huge clients, like Toshiba, Bangalore International Airport, Viacom, and other companies.

With respect to data loss prevention, I think it is helpful to the customer; except for a few limitations with Mac. 

The full set of features are enabled only for Windows. There are some features that do not work with Mac. With respect to device control, it can be quite limited for Mac.

With Mac, we experience problems with post-related issues, with the device controller, and with email-related listings. Network communication is another thing. Certain rules just do not work for our Mac environments.

The security could also be improved when it comes to Mac. Most of our customers ask for these features. They want these same features for their Mac devices. We're just hosts — it's up to McAfee to provide these features.

They should also offer encryption and device control for Linux.

We have been reselling McAfee Complete Data Protection for seven years.

McAfee Complete Data Protection is both stable and scalable.

The technical support is good. It's easy for us to reach support whenever we experience any issues. They put us right through to human beings — we don't have to converse with a robot first. 

This solution is easy to deploy and maintain.

McAfee Complete Data Protection is a little bit expensive. The price could be lower. In regard to data loss prevention, we have different licensing.

We need to check a customer's environment and infrastructure before recommending this solution. Based on that, we can then decide on the type of setup they'll require. Later on, when their new environment increases, they're able to scale up easily.

On a scale from one to ten, I would give McAfee Complete Data Protection a rating of nine.

We are a solution provider and this is one of the security products that we implement for our clients. I focus primarily on data protection and data loss prevention solutions, and in this role, I work with McAfee Complete Data Protection a lot. We also use it for encryption.

A simple use case would be keywords and reject detection.

Other reasons that we use it are for PII and PCI compliance.

The most valuable feature is the unified management console, ePO. The console allows us to manage not only endpoint protection, but DLP, and also integration with MVISION Cloud.

We are looking for more granular control over the policies. McAfee has some challenges in this regard.

I have been working with McAfee Complete Data Protection

There are some challenges with stability when you want to fine-tune the granularity. When it is too generic, you get a lot of false-positive errors.

I don't think that McAfee has any scalability-related issues because they deal with a lot of enterprise companies.

Our clients are typically the public sector, although we have a lot of large, enterprise customers as well.

The most important thing is how they enable our team. They provide us with good support during the pre-sales stages.

The initial setup for McAfee is straightforward, and not very complex. The fine-tuning, however, takes time.

We can see that a lot of things are moving to the cloud, and I want to see more cloud solutions and more integration where we can make use of them. As time goes on, we can see that there are more customers on the cloud.

I would rate this solution a seven out of ten.

We use it, for example, for USB devices. When we are using USB devices, we have to put the password to open the USB stick. Without it, we cannot use the USB stick anywhere.

We can use our devices more securely. Therefore, it protects us from data loss, and therefore, it's very helpful for us. The biggest lesson we have learned is that security is very important in business.

The most valuable feature is security.

The price is a little high and could be better.

I have been using McAfee Complete Data Protection for about two years. 

We implemented this solution by ourselves.

I think the price could be a little bit less.

I would tell potential users that automatic update distribution would be very useful for such solutions. Doing it manually is very hard work.

On a scale from one to ten, I would give McAfee Complete Data Protection a nine.

The main use case of this solution is identifying bad actors (criminals) who want to steal data and locking them out of areas that require authentication.

Some of the features that have been most valuable include the firewall protection, wave control, and data loss protection.

In terms of where the solution could improve, it could integrate with network solutions for ADT,email web gateway and discovery.

I have been using this solution for eight

I am satisfied with the customer service/technical

Before using this solution, we used Symantec andAjeet Kumar:
And also will we on the [inaudible 00:06:03] the Symantec and Telmicro and also the first client which we also have leveled this process. And also I'm working with the first client, the CSM completely [inaudible 00:06:12] and prop C and with everything. First one

I am actually very familiar with the on-premises solution. I am just starting to try out the cloud version. I have not really had the opportunity to exercise the capabilities fully because I need to buy the license to do that. I work with Cyber Security Africa Distribution, but even being that type of organization we still have to purchase our license to try the full solution. I have seen it work with the MVISION Cloud, but I have not tried out the data protection path. But I have reviewed all the features.  

I am not really an end-user so my answer is addressed talking more from the integration side. I do a lot of integration, and from this point of view, using McAfee as a data protection solution and for data classification is most valuable. I think McAfee actually fits very well with providing literally all the use cases for you. If end-users cannot classify data and solve the problem of data classification, then they can not successfully move forward and get on to data discovery using something like the McAfee Discover running it from the endpoint or running it from the network and doing network DLP (Data Loss Prevention/Data Loss Protection). We are sometimes having to look at it more from a perspective of the cost rather than actually solving the problem. It will work out so long as it helps end-users to classify their data. Some clients have some budget restrictions.  

So, for some use cases, I think it will be good for a certain type of user. It would be best for those who need data enforcement from both endpoints and from the network. I think it is perfect for shadow IT as well. With the proper policies in place, it could prevent you from sending corporate data to both cloud storage or to flash drives. If you look at it as a device control feature, it limits what you can send to removable storage devices. Configured a different way, you can send your other unclassified data to cloud storage and the like.  

Looking at it from a general use case as a security consultant, what most organizations try to prevent is data extrication. If you can prevent people from moving corporate data to their private clouds or to their own personal storage devices, you would have saved yourself a lot of stress. If the employee exits their security system carelessly, someone can actually extricate data during that process breach.  

Another use case is preventing loss of confidentiality. If you are trying to ensure the confidentiality of your data, using McAfee DLP you can prevent certain classification levels of data from being sent to printers or sent through emails.  

There is file and folder encryption and there is also complete McAfee Drive Encryption. The beauty of McAfee is that they are not looking at encryption from one single standpoint. It is a broader solution.  

If I have FileVault on my Mac Pro, I can protect my Mac. McAfee has encryption that helps you manage encryption natively. If you have BitLocker and you prefer to use it on your products, you can and you can still have a central management console for both your endpoint and your other encryption with McAfee. I think that is actually a perfect example of how you can use MNE (Management of Native Encryption) to manage your native encryption along with other products.  

I think in looking at this as to how it can be improved, the drive encryption side is not as straightforward as it could be. It is a little bit heavy on the configuration part. There are a lot of options to look at. Maybe it is just that the training needs to fine-tuned a little bit or maybe the UI needs to be a little more interactive. There are so many options that you have in the product that you may not know exactly what something does if you enable an option. There is a gray area, for example, as to whether or not it is best practice is to have a pre-boot authentication or not. The usual argument is that if you do not turn on pre-boot authentication, your encryption can actually be bypassed.  

There is a question and it is not an argument that you can easily answer because the product is not doing enough to help you out. They need a publication that actually sets that record straight, or probably they could have something like a best practice configuration guide so users can take advantage of that for determining exactly what options are best for them.  

People do not always know what are the best practices for their environment. They try out a lot of stuff, and then if it does not work with their system, they just come to the conclusion that the solution does not work. They blame the product rather than the configuration which they do not have set correctly. So with a best practice configuration guide or something similar, it would help people take proper advantage of the solution and help them to better see the total benefits of what the solution has to offer.  

So their configuration is complex, but this can have advantages as well if they provided the user with the information they need.  

I think I have been using McAfee Endpoint Solution or McAfee Data Protection solutions for about five to six years now. I have been following the company's journey with product development since version 9.2 or 9.3.  

McAfee Complete Data Protection is quite stable. I think the only module that a lot of people seem to have had some issues with is the file and folder encryption. I am not talking about this from my point of view as I never experienced the issue personally. At one point, I used to manage a team of seven people and all my engineers always had issues with file and folder encryption.  

In reality, I think file and folder encryption is actually more complicated than server encryption. Well, for me I think it is. Looking at encryption from two points, drive encryption does disk encryption. It does not encrypt to the file level. File and folder encryption actually encrypts to the individual file and folder level. I think the real option is — and I am not sure if McAfee is trying to achieve this drive management with file encryption or not — but I think for me if FRP (File and Removable Media Protection) worked more like a drive management system, then it would be perfect. The idea would be for it to store files and folders more like drive management than just using encryption. Right now, the way it works is more like just locking the file or the folder. If it worked more like drive management, I think there would be more value to it than there is to it today.  

To be honest, I have actually never really needed to call support overall. The product has been working all these years and I do not have any major problems with the functionality.  

Data protection solutions are quite expensive, which is expected. I have had customers complain about the licensing costs of various solutions.  

Where I actually have issues with cost would be in the cloud. If you look at the MVISION portfolio, you see that the device control is not the same as on-premises. I am not sure which parts of the MVISION products actually have device controls with the encryption.  

The problem is that after seeing that single product within MVISION, in order to access it from the cloud, you still have to buy the full version of it. As we are on-prem and just beginning testing on the cloud, I am not exactly sure of the capabilities.  

I think that part of the pricing is confusing to a lot of end-users. When they purchase the license from us they see that they have device control. But when I get to the cloud, there is no device control. As resellers, that puts us in a bad place, because we have to explain it to the customer. They have to purchase something additional for device protection that they thought they already had.  

I think there was no communication about that change in the licensing when it was changed over to the cloud. So we had to take the initiative in doing other things when coaching our customers.  

There is always back and forth when doing consultations with the customers before we finally come to a configuration that is the right one for the client. I look at information online and then see they have device control on the cloud but then there is a question as to why the client is using device control in certain circumstances. There is a question as to why they are putting certain data on the cloud even. Some do not understand best practices and that putting data on the cloud is not the solution they want anyway.   

On a scale from one to ten where one is the worst and ten is the best, I would rate this McAfee Complete Data Protection product as an eight or even a nine-out-of-ten. Just for the encryption part, I think I will say nine. The solution is actually quite stable and otherwise, it is quite good. I would definitely recommend this product to other users. The core of McAfee has been my end solution for all types of situations for me for a long time. If I have not switched yet to work with any other solution, obviously, I think it is a good one and I definitely recommend McAfee.  

On the DLP side, I am not sure if there is much they can change in that system, because I think one part compliments the other. But on the DLP you do not have the same type of endpoints control you have in the cloud. So I think on the DLP side, they must provide better controls so the solutions are more similar in that way from both ends. If there is a way to balance from what you have on-premises and what you have in cloud, then it becomes a better product from the user perspective.  

For data encryption, I think they need to work on the interface and the configuration and make it easier. If it could work more like a comprehensive management system, it will make more sense. It will make more sense and it will actually create more market value for end-users than just doing file and folder encryption.  

The possibilities for integration with McAfee CDP are important. You can integrate with that solution. Not all people in all environments want to run McAfee for Endpoints. Some people also want to have that kind of synergy McAfee has in DLP and encryption. So if you are trying to encrypt the network for a sensitive environment and you have a checkpoint policy to use McAfee on your endpoint and on your DLP, configure it to mask or to encrypt a file. There has to be that type of relationship between DLP and encryption for it to work properly and accomplish these ultimate goals.  

Some organizations use other solutions for the DLP and they also have that in the architecture. I have not yet seen that scenario, but I can imagine that there can be environments that start with McAfee endpoints and they have access to encryption and they want to extend that integration. It might be possible to do but it seems to me that it is not actually a very common way of doing things.