Mcafee Application and Change Control 8.3.x - Windows Release Notes 8-11-2022

McAfee Application and Change
Control 8.3.x - Windows Release Notes

Contents
Version 8.3.5 Windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3
Version 8.3.4 Windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
Version 8.3.3 Windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
Version 8.3.2 Windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
Version 8.3.1 Windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
Version 8.3.0 Windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22

Updater rules for standalone systems. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
1| Version 8.3.5 Windows
Version 8.3.5 Windows

The McAfee® Application and Change Control 8.3.5 release addresses known issues and improves performance.
Every update release is cumulative and includes all features and fixes from the previous release. We recommend that you always
upgrade to the most current update.
Rating
This release is recommended for all environments. Apply this update at the earliest convenience.
Release details
For release dates and build numbers, see KB87944.
This release supports:
• McAfee® ePolicy Orchestrator® (McAfee® ePO™) 5.10.0.
Upgrade support
This release supports upgrading from:
• MACC extension 8.0.x, 8.1.x, 8.2.x, 8.3.0, 8.3.1, 8.3.2, 8.3.3 and 8.3.4.
When you upgrade from existing MACC extension, you must not change any existing rules and configuration until the
Solidcore: Migration server task is completed. The migration task usually takes a few hours to a day, depending on the
inventory data volume of your environment.
For more information, see KB84651.
• MACC client 8.0.x, 8.1.x, 8.2.x, 8.3.0, 8.3.1, 8.3.2, 8.3.3, and 8.3.4.
For information about the MACC client upgrade supported path for Windows, see KB87944.
Known issues
For a list of current known issues, see Application Control 8.x Known Issues (KB87839) and Change Control 8.x Known Issues
(KB87838).
New or changed
New Client Configurations Added in 8.3.5
McAfee Application and Change Control 8.3.x - Windows Release Notes 3

1| McAfee Application and Change Control 8.3.5 Windows Release Notes
Configurations introduced in MACC 8.3.5 Use of the configuration
PackageControlCopyBinaries
This configuration prevents observation and event generation when a new
msi file is created. By default, this configuration prevents observation and
event generation for three processes - explorer.exe, xcopy, and robocopy.
PackageControlDisableInstallerObservations
This configuration prevents only observation generation for all processes
when a new msi file is created. To stop generating these observations, you
need to set the value of this config as 1.
Resolved issues
This update resolves known issues.
MACC extension
Category Reference Resolution
Feature fixes MACC-10979

When you create a policy from a Prevented File Execution event, the Process Name
field includes only the process name instead of a complete file path.
Performance MACC-11029
Long running query on inventory no longer causes performance issues on ePO server.

An ePO user no longer gets the information about Solidcore-LDAP events without
permissions to the Server Task Log page.
MACC client

In this release, Solidcore client tasks and large policies are getting managed
successfully from McAfee ePO.
The masvc.exe process no longer causes high CPU use for huge MACC policies.
4 McAfee Application and Change Control 8.3.x - Windows Release Notes


Scripts with UNC paths now run successfully without showing the error Set-Content :
Stream was not readable. when MACC 8.3.5 is enabled.

This release resolves the issue of observation and event generation when a new msi
file is created.

When you run the bat file locally to configure the endpoints, the bat file command
no longer terminates and fails at the time of policy enforcement. Also, the XML data
output does not show error code 1103.

McAfee Solidifier service (scsrvc.exe) no longer crashes and blocks system process.
Interoperability MACC-11020
BSOD or Bug check 50 no longer happens with swin.sys driver after upgrading to
MACC 8.3.5.


Rating
This release is mandatory for all environments. Failure to apply mandatory updates might result in a security breach. Mandatory
updates and hotfixes resolve vulnerabilities that might affect product functionality and compromise security. You must apply
these updates to maintain a viable and supported product.
Release details
• McAfee® ePolicy Orchestrator® (McAfee® ePO™) 5.9.0, 5.9.1, and 5.10.0.
Upgrade support
• MACC extension 6.2.x, 7.0.x, 8.0.x, 8.1.x, 8.2.x, 8.3.0, 8.3.1, 8.3.2, and 8.3.3.
If you are upgrading MACC extension 6.0.0 or earlier than 6.2.0, follow this order:
• Upgrade MACC extension to 6.2.0.

• Upgrade McAfee ePO to 5.3.0-5.3.3.
• Upgrade MACC extension from 6.2.0 to 7.x.x and then to 8.3.4.
• MACC client 7.0.x, 8.0.x, 8.1.x, 8.2.x, 8.3.0, 8.3.1, 8.3.2, and 8.3.3.
Note
To upgrade from 8.1.x on Windows 32-bit, see KB90785.

New or changed
New operating system support — This release supports latest version of Microsoft Windows 10 (version 21H2) and Microsoft
Windows 11.
MACC 8.3.x build migration to VS 2019 compiler — Visual C++ Redistributable for Visual Studio 2019 is automatically installed
as an installer prerequisite at the beginning of the MACC 8.3.4 installation.
Case sensitive support — This release supports case sensitivity on inventory, and it is disabled by default on Windows 10 or
below. When McAfee Application and Change Control is getting installed on Window 11, case sensitivity turns on by default. You
can solidify or unsolidify the files having same file name but with different cases.
Follow these steps if the system is enabled with case sensitivity and MACC has to enable case sensitivity.
1. Disable Solidcore and reboot.

2. Create client task for run command with config set InventoryCaseSensitivityEnabled=1 from McAfee ePO.
For standalone system, sadmin config set InventoryCaseSensitivityEnabled=1.
3. Clean Inventory (for example: sadmin clean c:\).

4. Resolidify the system and Enable.
For more information, see McAfee Application and Change Control 8.3.x - Windows Product Guide.
Known issues
(KB87838).
Resolved issues
MACC extension
After the MACC extension upgrade, importing App Control rules work appropriately
without any error messages.
User Interface MACC-10887 In the Client Task Catalog page, you can now reopen the saved SC: Enable task with
only Application Control enabled.
Performance MACC-10844 The Orion log file no longer contains the internal reputation check error message.

MACC client
Network shared path with trusted -i rule now allows to execute all binaries
including .exe file.
MACC no longer sends unnecessary metadata requests to Threat Intelligence
Exchange (TIE) server.
MACC now allows automatic clean-up of previous version of the windows after adding
C:\windows.old to default windows updater group.
This release resolves the finetune.bat entry issue with the correct DLL name on the
operating system.
When you enable Solidcore with both the Inventory Mode and Observe Mode, blue
screen error no longer appears on the system.
This release fixes the possible login issue. You can now successfully login to the
system after you install the Solidcore.
This release fixes the VTP_Trusted error message and it no longer appears on the
system.
Security MACC-10886
BSOD no longer appears on the system when you run Solidcore with Observe Mode
or Update Mode enabled and it works successfully on the next reboot of your
system.
Performance MACC-10776 Solidification status window no longer hangs when you execute the command sadmin
config set MaplCommLostRestart=0 and start solidification with sadmin so while
running the Solidcore with Update Mode enabled.
Performance MACC-10930 The default rules now allow SCCM updates without any fail after adding SCCM client
rules to the directory.



Rating
Release details
• McAfee® ePolicy Orchestrator® (McAfee® ePO™) 5.9.0, 5.9.1, and 5.10.0.
Upgrade support
• MACC extension 6.2.x, 7.0.x, 8.0.x, 8.1.x, 8.2.x, 8.3.0, 8.3.1, and 8.3.2.

• MACC client 7.0.x, 8.0.x, 8.1.x, 8.2.x, 8.3.0, 8.3.1, and 8.3.2.
Note

New or changed
Windows 10 21H1 and case-sensitive support — This release supports case-sensitivity on inventory, and it is disabled by
default. You can solidify or un-solidify the files having same file name but with different cases.
Follow these steps if the system is enabled by case-sensitivity and MACC has to enable case-sensitivity.
1. Disable Solidcore and reboot.

2. Create client task for run command with config set InventoryCaseSensitivityEnabled=1 from McAfee epO.
For standalone system, sadmin config set InventoryCaseSensitivityEnabled=1.
3. Clean Inventory (eg: sadmin clean c:\).

4. Resolidify the system and Enable.
Support for McAfee ePO 5.10 CU10 — This release supports McAfee ePO 5.10 CU10.
McAfee Secure Policy — Secure Policy in Policy Catalog under Application Control Rules (Windows) and Configuration (client)
are added to make sure only required policies are applied to the end points for secure/restricted product functionality. This
includes predefined rules having limited updaters and skip lists to further secure the system.
Note
This policy is not set by default.
New Client Configurations Added in 8.3.3
ServiceStartFinetune This configuration is introduced to handle boot performance issues of few

operating systems.
UsernameRetryCountInUMode This configuration is introduced to handle boot performance issues

happening due to username retrial.
PackageControlCmdlineFullMatchBinaries Package Control controls uninstallers by looking at the uninstall strings to

recognize the uninstallers to give updater permission. If the application
works as an uninstaller it will be made an updater. To change this behavior,
the configuration is introduced and matched against full command line
uninstall string before making it an updater.

PackageControlFinetune1 This configuration is introduced as a generic option to fine-tune package

control and resolve performance issues related to installation package.
InventoryCaseSensitivityEnabled This configuration is introduced to enable/disable case-sensitivity on the

inventory. After turning on case-sensitivity, cleaning inventory and re-
solidification is required.
PathsWritableOnlyByUpdater Paths added under this configuration are write protected and only updater
process can do updates to this path. This applies for trusted directories as
well.
Known issues
(KB87838).
Resolved issues
MACC extension
Interoperability MACC-10413 When Web API supports Solidcore, the commands now sets AR windows for the
systems in the supplied list.
Security MACC-10577 MACC 8.3.3 extension replaces dbo.SCOR_VW_PROPERTIES with

dbo.SCOR_VW_PROPERTIES_AGENTGUID.
Interoperability MACC-10505 DB errors no longer appears on application control inventory.
Performance MACC-10511 McAfee® Global Threat Intelligence™ (McAfee GTI) reputation fetch no longer runs in
a loop that caused performance issue.
Interoperability MACC-10408 When you install and run MACC, EDR successfully runs collectors and reports back to
the product interface.

Performance MACC-8337 When enabling Solidcore in the Inventory Mode with limited activation, the
Solidcore Client Task Log now displays the correct message.
User Interface MACC-9528 The garbled issue on Close button of Common Platform Enumeration in the
Japanese strings is now resolved.
User Interface MACC-8541 Disable inheritance option is now added on the browser updater rules.
Interoperability MACC-10682 The windows event ID:142 description now appears in Japanese character.
Interoperability MACC-10405 The certificates listed in KB91662 are now added in MACC 8.3.3.122 or later as
updaters.
Performance MACC-10538 McAfee ePO no longer gets overwhelmed with FIM events after you upgrade McAfee®
Agent to 5.7.x.
MACC client
Feature fixes MACC-10396 The Application ExternDLLTestForm.exe no longer loads when the DLL is removed
from Solidcore whitelisting.
Feature fixes MACC-10554 When you copy .cmd files through file sharing (c$), binaries are now solidified.
Interoperability MACC-10578 Solidcore no longer blocks multiple applications when Crowdstrike is present.
Security MACC-10542 You can now delete temporary files when Script-auth is enabled.
Installation MACC-9937 This release resolves Windows 2008 R2 server crash issue.
Interoperability MACC-10373 The install package now runs appropriately without any delay.
Security MACC-10366 Execution-Control blocking issue is now resolved.

Feature fixes MACC-10051 You can now create FILE_ATTR_MODIFIED/FILE_ATTR_MODIFIED_UPDATE events.
Installation MACC-7607 MACC now denies installation of Native Image files and Silverlight installation.
Performance MACC-10410 Memory leak issue found in MACC is now resolved.
User Interface MACC-10087 You can now successfully enable MP & SAU with AC enabled status.
Performance MACC-10278 MACC removes the unwanted trusted directories from SCCM/SMS ClientGroup.
Interoperability MACC-10578 After installation of Crowdstrike, the triggering events by the system are no longer
denied due to solidification.
Interoperability MACC-9256 After installation of MACC, operating system no longer goes into a non-responsive
state at the logon page.
Security MACC-10368 Bugcheck 9F no longer occurs when you shut down Windows.
Security MACC-10399 BSOD no longer appears on (X64) machine when you run test with driver verifier for
MACC.


The McAfee® Application and Change Control 8.3.2 release addresses known issues, improves performance, reduces the
memory consumption footprint, and new platform support.
Rating
Release details
• McAfee® ePolicy Orchestrator® (McAfee® ePO™) 5.3.2, 5.3.3, 5.9.0, 5.9.1, and 5.10.0.
• McAfee® Agent 5.0.6 or later.
Important
You need to install McAfee Agent product update MsgBusCertsUpdater.zip if using McAfee Agent version earlier than
5.6.3.
• Platform, environment, or operating system — Microsoft Windows 7, Windows Server 2008 R2, and subsequent
platforms including Windows Server 2019 and Windows 10. For more information, see KB87944.
Note
This release does not support Microsoft Windows Vista platform or earlier.
Upgrade support
• MACC extension 6.2.x, 7.0.x, 8.0.x, 8.1.x, 8.2.x, 8.3.0, and 8.3.1.
When you upgrade MACC extension, don't change existing rules and configuration until Solidcore: Migration server task
is complete. Also, the migration task can take longer than usual. Depending on the volume of inventory data in your
environment, the task can take a few hours or a day to complete. For more information, see KB84651.


• MACC client 7.0.x, 8.0.x, 8.1.x, 8.2.x, 8.3.0, and 8.3.1.

Note
New or changed
New platform support — This release is a candidate for same-day support of the upcoming Microsoft Windows 20H2 release
for workstations and servers.
Memory footprint reduction (32-bit systems) — MACC's memory use in the kernel mode and in the user-mode can be
attributed to the inventory data structure. The inventory data structure uses 70% to 90% of MACC's memory depending on
the configuration of the system. Improvements are made to the inventory data structure to reduce the memory consumption
footprint.
Known issues
(KB87838).
Resolved issues
MACC extension
User interface MACC-10010 Test Connection is now enabled when there are additional entries for the Solidcore:
Scan a software repository server task.
Interoperability MACC-9716 The MACC policy changes are now saved successfully when you create or edit an
existing Application Control (windows) Rules Policy.
Interoperability MACC-9953 UNIQUE KEY constraint violation no longer happens when the rule group is imported.
User interface MACC-10103 Initial feature configuration and Observe Mode options selected for the SC: Enable
task is now displayed on the McAfee ePO console, after saving the task.

MACC client
Security MACC-9326 MACC now fixes a vulnerability in the package control feature. For more information,
see SB10333.
Feature fixes MACC-9957 The solidified file is no longer removed from inventory when tried to delete, and its
status remains as solidified.
Feature fixes MACC-9900 MACC now receives the correct network path when the shared file is accessed using the
mapped drive.
Interoperability MACC-8396 Bug check E3 no longer happens after upgrading to MACC 8.3.2.


The McAfee® Application and Change Control 8.3.1 release addresses known issues, improves performance, and reduces the
memory consumption footprint.
Rating
This release is critical for all environments. Failure to apply it might result in severe business impact.
Release details
• McAfee® ePolicy Orchestrator® (McAfee® ePO™) 5.3.2, 5.3.3, 5.9.0, 5.9.1, and 5.10.0.
Important
5.6.3.
Note
Upgrade support
• MACC extension 6.2.x, 7.0.x, 8.0.x, 8.1.x, 8.2.x, and 8.3.0.
When you upgrade MACC extension, don't change existing rules and configuration until Solidcore: Migration server task
is complete. Also, the migration task can take longer than usual. Depending on the volume of inventory data in your


• MACC client 7.0.x, 8.0.x, 8.1.x, 8.2.x, and 8.3.0.

Note
New or changed
Support for TLS 1.2 — MACC extension 8.3.1 supports TLS 1.2. McAfee® Global Threat Intelligence™ (McAfee GTI) is migrated to
a new server and a new REST API replacing the old API. MACC is now migrated to new GTI REST API.
Memory footprint reduction (64-bit systems) — MACC's memory use in the kernel mode and in the user-mode can be
attributed to the inventory data structure. The inventory data structure uses 70% to 90% of MACC's memory depending on
the configuration of the system. Improvements are made to the inventory data structure to reduce the memory consumption
footprint.
Performance improvement for reputation checks — TIE and GTI-based workflows depend on reputation checks to allow or
block the execution of files. For better system performance, it is needed to cache reputations instead of looking them up on
every access. This also helps to improve CPU performance and reduce memory latency.
Known issues
(KB87838).
Resolved issues
MACC extension
Interoperability MACC-8942 Pull Inventory data now displays successfully on McAfee ePO when you run the
SC:Enable client task.
User interface MACC-7133 The Top 10 Pending Policy Discovery Requests list is now displayed correctly on the
Solidcore: Health Monitoring Dashboard.
User interface MACC-8748 Copyright string is now corrected for the MACC extension build.
User interface MACC-9404 SAU reboot warning is now added to the Features page.
Security MACC-8738 Cross site scripting vulnerability issue is now fixed in the MACC extension.

Interoperability MACC-8799 The Tomcat process no longer crashes when performing a software repository scan.
Interoperability MACC-9057 DB Error no longer appears when non-admin users access the Policy Discovery page
on McAfee ePO.
Feature fixes MACC-9224 The Policy Discovery report can now be exported successfully with complete network
path of files.
Installation MACC-9245 Upgrade status on McAfee ePO now displays correctly in the Japanese language.
User interface MACC-9335 The localization mapping and event format are now corrected for Japanese Windows
Event ID 146.
Interoperability MACC-9338 MACC extension no longer fills up the Orion log with cannot be converted to
INTEGER errors.
Interoperability MACC-9631 The Policy Discovery page now displays all events from Reporting → Solidcore Events.
Installation MACC-9985 Engine upgrade with MACC 6.4.8 now happens successfully using the MACC extension
8.3.1.
MACC client
Performance MACC-7300, Memory foot print is now optimized for MACC 8.3.1.
MACC-8330, and
MACC-8883
Interoperability MACC-7387 The behavior and reporting status of the volume, when added using skiplist
-v, are now corrected.
Performance MACC-8701 Memory use is now optimized on servers after upgrading to MACC 8.3.1.
Performance MACC-8934 The scsrvc.exe process no longer causes high CPU use.

Interoperability MACC-9162 Bug check 8E no longer happens on Windows 7 32-bit systems when
CksumCalcMode is set to 0.
Interoperability MACC-9254 and Bug check 3B no longer happens after upgrading to MACC 8.3.1.
MACC-8945
Performance MACC-9346 High CPU is no longer experienced during inventory merge, as Embedded
Certificate Extraction is disabled.
Interoperability MACC-8757 MACC client task deploys successfully after upgrading to MACC 8.3.1.
Performance MACC-9348 Reputation cache memory use is now optimized.
Interoperability MACC-9411 The process selected as updater now runs with updater rights.
Interoperability MACC-9060 Solidification no longer runs twice for the single SC Enabled task.
Interoperability MACC-9190 An existing updater rule can now be edited directly, without the need for
deleting it and creating a rule.
Installation MACC-8891 MACC Standalone InstallShield wizard now displays the updated McAfee EULA.
Interoperability MACC-9165 All config values are now retained after upgrading to MACC 8.3.1.
Interoperability MACC-9079 Boot time is now optimized in systems where the Memory Protection feature is
enabled.
Installation MACC-9403 The console password is now retained after the system reboot, post upgrading
to MACC 8.3.1.
Interoperability MACC-9838 Bug check 50 no longer happens after upgrading to MACC 8.3.1.
Interoperability MACC-8878 The solidcore.log file size no longer increases with McAfee default policies
applied.


The McAfee® Application and Change Control 8.3.0 release introduces new features and platform support.
Release details
• McAfee® ePolicy Orchestrator® (McAfee® ePO™) 5.3.0–5.3.3, 5.9.0, 5.9.1, and 5.10.0.
Important
5.6.3.
Note
Upgrade support
• Solidcore extension 6.2.x, 7.0.x, 8.0.x, 8.1.x, and 8.2.x.
When you upgrade Solidcore extension, don't change existing rules and configuration until Solidcore: Migration server
task is complete. Also, the migration task can take longer than usual. Depending on the volume of inventory data in your
If you are upgrading Solidcore extension 6.0.0 or earlier than 6.2.0, follow this order:
• Upgrade Solidcore extension to 6.2.0.

• Upgrade Solidcore extension from 6.2.0 to 7.x.x and then to 8.3.0.
• Solidcore client 7.0.x, 8.0.x, 8.1.x, and 8.2.x.

For information about the Solidcore client upgrade supported path for Windows, see KB87944.
Note

New or changed
Inventory mode — Inventory mode creates the inventory that contains information about the executable files and script files
present on the endpoint. The information stored in the inventory includes complete file name, file size, SHA-1, SHA-256, file
reputation, file type, embedded application name, certificate details, and version. This mode tracks and records each change.
Also, it dynamically updates the inventory to make sure that the changed or added binaries and files are in the inventory.
Common Platform Enumeration (CPE) — Common Platform Enumeration (CPE) matches applications in the Application Control
inventory with applications registered on the CPE official dictionary or Custom CPE dictionary, using different matching methods.
Trusted local group — Trusted local group provides an option to add local groups in the trust model. Application Control
supports trusted users. You can add users as updaters to allow them to perform installations or update operations on a
protected system. While adding the user information, you can also provide the domain details.
Known issues
(KB87838).
Resolved issues
This release resolves known issues.
Solidcore extension
Interoperability MACC-8745 The Japanese translation for SC: Enable Client Task is now corrected.
Feature fixes MACC-8744 The correct list of Unknown Applications is now displayed on the Inventory page.
Solidcore client
Interoperability MACC-8406 Files operations on the winsxs\temp folder are now tracked and files are solidified
when an updater process renames a binary file from that location.
Security MACC-8380 The CLI authentication to modify Application Control service private memory is no
longer bypassed using the PowerShell script.
Performance MACC-8479 Paged pool memory use is now optimized.

Interoperability MACC-8396 Bug check E3 no longer happens after upgrading to Solidcore 8.3.0 or later.
Interoperability MACC-8419 and The system no longer crashes after upgrading to Solidcore 8.3.0 or later.
MACC-8743
Interoperability MACC-7386 Renaming of the folder containing solidified script files is now blocked.
Interoperability MACC-8742 The CCT events are now generated when a shared directory's file is modified from
the remote system.
Interoperability MACC-8487 The SC: Enable system no longer crashes when accessing Control Panel.
Installation MACC-6651 The Solidcore client no longer hangs when it upgrades on Microsoft Windows 7.
Interoperability MACC-8711 Client systems are now displayed on the Real-Time Search page of McAfee®
MVISION Endpoint Detection and Response workspace when Solidcore is in the
enable mode.
Updater rules for standalone systems

Before installing or upgrading to McAfee Application and Change Control 8.3.x, add updater rules to install Windows Update
patches successfully.
For information about installing or upgrading McAfee Application and Change Control, see McAfee Application and Change Control
Installation Guide.
Note
Make sure to restart the system after a product upgrade. This action is specific to product upgrade on the client system.
In the standalone environment, if you are upgrading the product to Solidcore 8.3.x, make sure the latest certificates are available
in the repository. For information about latest code-signing certificate, see KB91662.
Add the following updater rules for standalone systems:
Note
These changes are applicable to McAfee Application and Change Control standalone systems only and needs to be added
manually. In managed systems, McAfee Application and Change Control extensions are updated automatically.

• Windowsupdatebox
• Filename: windowsupdatebox.exe
• Label: Win_Up_Start19
• Parent: setuphost.exe
• Setupplatform
• Filename: setupplatform.exe
• Label: Win_Up_Start20
• Parent: windeploy.exe
• SearchUI
• Filename: searchUI.exe
• Label: Cortana
• Parent: svchost.exe
• Onedrivestandaloneupdater
• Filename: onedrivestandaloneupdater.exe
• Label: OneDrive
• Parent: svchost.exe
• Msdt
• Filename: msdt.exe
• Label: Win_Up_Troubleshooter
• Inherence: disable
For more information, see KB91257 and KB86551.

COPYRIGHT
Copyright © 2022 Musarubra US LLC.
McAfee and the McAfee logo are trademarks or registered trademarks of McAfee, LLC or its subsidiaries in the US and other countries. Other
marks and brands may be claimed as the property of others.

Mcafee Application and Change Control 8.3.x - Windows Release Notes 8-11-2022

Uploaded by

Copyright:

Available Formats

Mcafee Application and Change Control 8.3.x - Windows Release Notes 8-11-2022

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Mcafee Application and Change Control 8.3.x - Windows Release Notes 8-11-2022

Uploaded by

Copyright:

Available Formats

McAfee Application and Change

Control 8.3.x - Windows Release Notes

Version 8.3.5 Windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3

Version 8.3.4 Windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6

Version 8.3.3 Windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

Version 8.3.2 Windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

Version 8.3.1 Windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18

Version 8.3.0 Windows. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22

Version 8.3.5 Windows

This release supports:

• McAfee® ePolicy Orchestrator® (McAfee® ePO™) 5.10.0.

For more information, see KB84651.

McAfee Application and Change Control 8.3.x - Windows Release Notes 3

Configurations introduced in MACC 8.3.5 Use of the configuration

Category Reference Resolution

Feature fixes MACC-10979

Feature fixes MACC-11093

Category Reference Resolution

Feature fixes MACC-10777

4 McAfee Application and Change Control 8.3.x - Windows Release Notes

Category Reference Resolution

Feature fixes MACC-10894

Feature fixes MACC-10895

Feature fixes MACC-10901

Feature fixes MACC-10968

McAfee Application and Change Control 8.3.x - Windows Release Notes 5

Version 8.3.4 Windows

This release supports:

• McAfee® ePolicy Orchestrator® (McAfee® ePO™) 5.9.0, 5.9.1, and 5.10.0.

For more information, see KB84651.

• Upgrade MACC extension to 6.2.0.

To upgrade from 8.1.x on Windows 32-bit, see KB90785.

6 McAfee Application and Change Control 8.3.x - Windows Release Notes

1. Disable Solidcore and reboot.

For standalone system, sadmin config set InventoryCaseSensitivityEnabled=1.

3. Clean Inventory (for example: sadmin clean c:\).

Category Reference Resolution

McAfee Application and Change Control 8.3.x - Windows Release Notes 7

Category Reference Resolution

8 McAfee Application and Change Control 8.3.x - Windows Release Notes

McAfee Application and Change Control 8.3.x - Windows Release Notes 9

Version 8.3.3 Windows

This release supports:

• McAfee® ePolicy Orchestrator® (McAfee® ePO™) 5.9.0, 5.9.1, and 5.10.0.

For more information, see KB84651.

• Upgrade MACC extension to 6.2.0.

To upgrade from 8.1.x on Windows 32-bit, see KB90785.

10 McAfee Application and Change Control 8.3.x - Windows Release Notes

1. Disable Solidcore and reboot.

For standalone system, sadmin config set InventoryCaseSensitivityEnabled=1.

3. Clean Inventory (eg: sadmin clean c:\).

This policy is not set by default.

New Client Configurations Added in 8.3.3

Configurations introduced in MACC 8.3.3 Use of the configuration

ServiceStartFinetune This configuration is introduced to handle boot performance issues of few

UsernameRetryCountInUMode This configuration is introduced to handle boot performance issues

PackageControlCmdlineFullMatchBinaries Package Control controls uninstallers by looking at the uninstall strings to

McAfee Application and Change Control 8.3.x - Windows Release Notes 11

Configurations introduced in MACC 8.3.3 Use of the configuration