Please share with the community what you think needs improvement with McAfee ePolicy Orchestrator.
What are its weaknesses? What would you like to see changed in a future version?
As for improvements, I think that putting everything on a cloud and one console would be a great idea and would be useful for customers.
There should be more insights and completeness into the cyber kill chain, similar to CrowdStrike and SentinelOne. It just seems a little outdated in being 100% signature-based without all of the insights and protections that come with CrowdStrike and SentinelOne. Overall, they've got some catching up to do if they plan to compete in the comprehensive EDR space.
Sometimes agents hang. We have to reinstall the agents. On top of that, we have too many advisories for ePO. There are stability issues.
The product could have a single plug-in that would have multiple uses rather than a single plug-in which is used for a single purpose. Each aspect has a separate plug-in. They should concentrate on providing something for all of the options that are available.
The solution sometimes has some false positives on connections from the web control aspect of the product. This needs to be improved. When you have false positive on the firewall, it rarely blocks off some legitimate connections to our network. The reporting could be better. Search or filter on Knowledge base gives broad choices instead of almost specific to your search. agent communication between client and server but products are not deployed.
The solution needs to be more clear about the licensing. They should have a way for users to educate themselves on the costs so that companies can figure out how to reduce costs. There needs to be support for Mac computers. Currently, McAfee does not work on iOS.
There is a problem when it comes to agent communication and duplicate records, where the rebooting of a machine leads to the installation of a new agent and you get a lot of duplicate records that ultimately affect your compliance monitoring.
From my point of view, the solution is good. Even if there are problems we're able to find a resolution quite quickly. There were some issues in earlier versions but after the upgrade to the latest version, we haven't had any issues. I have noticed several times that some viruses were not detected by McAfee ENS and we had to escalate support and modify detection signatures. The detection aspect should be improved so that signatures are updated more quickly. For additional features, there really isn't very much to suggest. The main issue would be to improve detection.
The Virtual Patching feature needs to be improved. We would also like to have something in the cloud.
This solution ships with SQL Express, and we have issues related to database corruption in the event of power loss. Especially on this side of the world, we have a lot of power outages and most companies do not have backup power solutions. In most cases, when the power goes out, the database tends to corrupt a lot. For example, clients will be having trouble logging on because the login credentials are corrupt. They have to do something to make the solution more resilient or recoverable from power failure events, which may include creating their own database.
McAfee should improve in terms of customer support and assigning a knowledgeable TAM to customers. Threat detection capabilities should be increased for both viruses and other threats.
Let the community know what you think. Share your opinions now!