Release Notes McAfee Endpoint Encryption for Files and Folders 4.2.0 HF1013485

Release Notes
McAfee Endpoint Encryption for Files and Folders 4.2.0
HF1013485
Contents
 About this release
 Resolved issues
 Known issues
 Find product documentation
About this release
This document contains important information about the current release. We strongly recommend that
you read the entire document.
Release date – October 16, 2014
Release build – 4.2.0.184
This release was developed for use with:

McAfee® ePolicy Orchestrator 4.6.4, 4.6.5, 4.6.6, 4.6.7, 4.6.8

McAfee® ePolicy Orchestrator 5.0.1, 5.1, 5.1.1
Purpose
This Endpoint Protection for Files and Folders (EEFF) 4.2 Hotfix provides an enhancement that increases
the overall security of USB devices and CD/DVDs by making it harder for attackers to do a brute-force
attack on the user's password, especially where the user's password is relatively weak.
Irrespective of this security enhancement, the password strength is important. McAfee recommends a
strong password policy for the authentication/recovery mechanism of encrypted USB devices and
CD/DVDs.
For more information about this security enhancement, please refer to the KnowledgeBase article
KB83095.
This Hotfix also consolidates a number of fixes for problems that were reported in earlier versions of the
product
Rating
High Priority – McAfee considers this release to be high priority for all customers who are making use
of the Removable Media or CD/DVD encryption (offsite access options) with password as either
the authentication or recovery mechanism. The offsite access options were formerly referred to as
EERM (Endpoint Encryption for Removable Media). Customers not using these features may ignore this
Hotfix update.
For more information about patch ratings, refer to McAfee KnowledgeBase article KB51560.
Important
Removable media, including CD/DVD, that is initialized on a client with the Hotfix installed will be in the
new format and will not be readable on older client systems. Please refer to KB83095 for further
information and FAQs.
1
Resolved issues
The following issues are resolved in this release of the product. For a list of issues fixed in earlier
releases, see the Release Notes for the specific release.

When attempting to rename or delete a file from an Isilon Filer the operation does not complete
correctly. This issue is now addressed and all operations complete successfully (Reference 945370)

When using the Removable Media policy protection levels ‘Allow / Enforce Encryption (with
Offsite access)’, a USB device cannot be initialized if McAfee’s Data Loss Protection policy is set to
‘block all removable media except encrypted with McAfee Removable Media Encryption’.
This issue is now addressed and the USB device can be initialized correctly. (Reference 948538)

When using a folder policy to encrypt .XLS files and using Microsoft Excel to access them,
sometimes a file will appear unreadable. This issue is now addressed and the file locks are correctly
released. (Reference 955065)

The properties for McAfee Endpoint Encryption for Files and Folders (EEFF) occasionally may not be
collected. When this happens, the policy enforcement for the product fails and the product is not
reported as installed in the ePolicy Orchestrator console. This issue is now addressed and property
collection is performed correctly. (Reference 923875)

When performing a copy of files using drag and drop or copy and paste inside an explicitly
encrypted folder, the file encryption is delayed. This issue is now addressed and the encryption is
applied once the copy finishes. (Reference 934497)

When using Windows 7, if a file has hidden attributes, those attributes are reset when copying the
file to a network share. This issue is now addressed and the file attributes are preserved.
(Reference 951021)

When initializing a USB device, the pop up dialog to initialize the device is not shown. This issue is
now addressed and the pop up dialog is correctly displayed. (Reference 958347)

When using a Windows Vista SP2 (32bit) system with a German locale, running the McAfee
Encryption for Removable Media (MfeEERM.exe) version 4.1.1 in offline mode, it may generate an
application error. This issue is now addressed. (Reference 908540)

If the Removable Media policy level “Enforce Encryption (onsite access only)” is selected and the
option “Ignore existing content” is also selected, after changing the content of a bitmap or a text
file previously stored on a removable media device the files are not encrypted. This issue is now
addressed and files are encrypted when the contents change. (Reference 925521)

During an agent-server communication interval (ASCI), high CPU utilization is observed when using
McAfee Endpoint Encryption for Files and Folders 4.1/4.2 in conjunction with HDLP 9.3.1. This issue
is now addressed. (Reference 927141)

A crash may occur on accessing a Microsoft SharePoint resource from a system with McAfee
Endpoint Encryption for Files and Folders 4.0/4.1/4.2 installed. This issue is now addressed.
(Reference 928345)

A user personal key may fail to download when assigned. This is now addressed and the user
personal key is downloaded. (Reference 901593)

Occasionally USB devices cannot be initialized using the user personal key. This issue is now
addressed by changing the way the product identifies the user. (Reference 913693)

When creating a CD/DVD/ISO with large amount of data, estimate of size required (and therefore
media type) can result in media being selected that is too small, resulting in the message
“WARNING! Unable to add all files to encrypted container” and some files being omitted. This is now
addressed and the estimation of size reflects the actual size required. (Reference 919840)

Cannot burn unencrypted files to a cd in live format with “enforce encryption (with offsite access)
enabled” in the removable media policy setting. This issue is now addressed by adding a
configuration option that allows the product to identify the cd as removable media. (Reference
925787)

When running the Microsoft command “dir ?” the resulting output would not list the “<DIR>..” line.
This issue is now addressed and running “dir ?” will return the correct number of lines. (Reference
935441)

Network bandwidth notation on the client is in % instead of kb/s. This issue is now addressed and
the client correctly shows the bandwidth in kb/s. (Reference 939263)

If a key name contained the characters “//”, the key would not be enforced. This issue is now
addressed and any name is accepted as long as it is within the acceptable range for valid Active
2
Directory user names. (Reference 940979)

When burning a CD using the application [email protected] Data, if the CD is ejected, a crash may occur.
This issue is now addressed and ejecting the CD no longer causes a crash. (Reference 935638)

When using a Windows Vista SP2 (32bit) system with a German locale, running the McAfee
Encryption for Removable Media (MfeEERM.exe) version 4.1.1 in offline mode, it may generate an
application error. This issue is now addressed. (Reference 908540)

If the Removable Media policy level “Enforce Encryption (onsite access only)” is selected and the
option “Ignore existing content” is also selected, after changing the content of a bitmap or a text
file previously stored on a removable media device the files are not encrypted. This issue is now
addressed and files are encrypted when the contents change. (Reference 925521)

During an agent-server communication interval (ASCI), high CPU utilization is observed when using
McAfee Endpoint Encryption for Files and Folders 4.1/4.2 in conjunction with HDLP 9.3.1. This issue
is now addressed. (Reference 927141)

A crash may occur on accessing a Microsoft SharePoint resource from a system with McAfee
Endpoint Encryption for Files and Folders 4.0/4.1/4.2 installed. This issue is now addressed.
(Reference 928345)

After installing the EEFF 4.2 RTW extension, the canned text queries can be edited. ePO 5.0.1
compliance requires canned content to be read only. This behavior has been corrected in this
version of the extension.

The 'Save' option is enabled in the EEFF policy even without being edited, contrary to ePO 5.0.1
compliance requirements. This has been resolved and the 'Save' button is only enabled after the
policy has been edited.
Known issues
For a list of known issues in the EEFF 4.2 product release, see McAfee KnowledgeBase article KB78436.
Find product documentation
McAfee provides the information you need during each phase of product implementation, from
installation to daily use and troubleshooting. After a product is released, information about the product
is entered into the McAfee online KnowledgeBase.
Task
1
Go to the McAfee Technical Support ServicePortal at http://mysupport.mcafee.com.
2
Under Self Service, access the type of information you need:
To access...
Do this...
User documentation
1 Click Product Documentation.
2 Select a product, then select a version
3 Select a product document
KnowledgeBase
 Click Search the KnowledgeBase for answers to your product questions.
 Click Browse the KnowledgeBase for articles listed by product and version.
Recommended reading
For information about the operating systems supported by this release of McAfee Endpoint Encryption
for Files and Folders, refer to the KnowledgeBase article KB72735.
For information about the minimum software and system requirements, refer to the McAfee Endpoint
Encryption for Files and Folders 4.2 Product Guide – PD24643.
Copyright © 2014 McAfee, Inc. Do not copy without permission.
McAfee and the McAfee logo are trademarks or registered trademarks of McAfee, Inc. or its subsidiaries in the United
States and other countries. Other names and brands may be claimed as the property of others.
00-A
3