Windows 10 compatibility with McAfee products

Environment

Multiple McAfee business and enterprise products
Microsoft Windows 10 (version 1507)
Microsoft Windows 10 (version 1511) - November Update (Threshold 2, first update)
Microsoft Windows 10 (version 1607) - Anniversary Update (Redstone 1 [RS1], second update)
Microsoft Windows 10 (version 1703) - Creators Update (Redstone 2 [RS2], third update)
Microsoft Windows 10 (version 1709) - Fall Creators Update (Redstone 3 [RS3], fourth update)

Summary

McAfee is committed to supporting the Microsoft release cadence for Windows 10 and is working closely with Microsoft to ensure that McAfee security software and hardware products are fully compatible with Windows 10 endpoints.

To ensure release quality, all new releases that Microsoft publishes for Windows 10 require full validation by the individual product teams. The McAfee goal is to add zero-day support for all Windows 10 releases over time for those products that do not currently offer this cadence.

NOTE: Late-breaking changes implemented by Microsoft to a release, or any unresolved compatibility issues raised by McAfee with Microsoft around a scheduled release, could lead to schedule changes that will be documented and updated in this article.

Date Comments
December 19, 2017 Update to the VSE TIE Module for Fall Creators Update, to reflect support included with VSE TIEm 1.0.2.
November 13, 2017 Updated as products with support for Windows 10 Fall Creators Update (RS3) are RTW.
October 30, 2017 Updated products RTS information for Windows 10 Fall Creators Update (RS3) support.
October 25, 2017 Update to Application and Change Control for Fall Creators Update, to reflect support included with version 7.0.1-462 (HF6).
October 23, 2017 Updated details about McAfee product support for Microsoft Windows 10 (version 1709) - Fall Creators Update. Changed Management of Native Encryption 4.1.1 to 4.1.2 (Q4 2017) in the Windows 10 (Version 1709) Fall Creators Update column.

Note

  • Future release dates are subject to change.
    NOTE: Any future product functionality or releases mentioned in the Knowledge Base are intended to outline our general product direction and should not be relied on, either as a commitment, or when making a purchasing decision.
  • RTW = Released To World
  • RTS = Released To Support, also called Managed Release. Contact your Technical Account Manager (TAM) or Support Account Manager (SAM) to participate in a Managed Release program.
  • For details about Service Packs, patches, hotfixes, maintenance releases, and the patch release cycle, see KB51560.
  • For details about a support statement for verifying and validating Microsoft patches, see KB50473.

Compatibility with Windows 10 Versions 1607, 1703, and 1709

McAfee Products Windows 10
(Version 1607)

Anniversary Update4
Windows 10
(Version 1703)

Creators Update 5
Windows 10
(Version 1709)
Fall Creators Update
Minimum Supported McAfee Product Version
Endpoint Protection Products 1
Active Response 1.1.0.212 2.0
2.01
2.0.1
Application and Change Control 7.0.1 8.0.x 8.0.x
Data Loss Prevention Endpoint (DLP Endpoint) 11.0
10.0.100
9.4.230
9.3.630
11.0
10.0.250
9.4.300
11.0.130
10.0.330
Endpoint Security (ENS) 10.2
10.1.2
10.2.1
10.5.1
10.2.2
10.5.3
ENS - Adaptive Threat Protection (ATP) 10.5.1 10.5.2 10.5.3
Host Intrusion Prevention (Host IPS) 8.0 Patch 8 8.0 Patch 9 8.0 Patch 10
SiteAdvisor Enterprise (SAE) 3.5 Patch 5 3.5 Patch 5 3.5 Patch 5
Threat Intelligence for Endpoint Security Client 10.1 Patch 2
10.2
10.2.2 10.2.3
Threat Intelligence Exchange (TIE) Module for VSE 1.0.2 1.0.2 1.0.2
VirusScan Command Line Scanner 6.1.0 6.1.0 6.1.0
VirusScan Enterprise (VSE) 8.8.0 Patch 8 8.8 Patch 9 8.8 Patch 10
 
Database Security Products
Database Activity Monitoring (Standalone Management) 4.6.0 n/a n/a
Database Activity Monitoring (ePO Management) 5.2.0 n/a n/a
Vulnerability Manager for Databases (Standalone Management) 4.6.0 n/a n/a
Vulnerability Manager for Databases (ePO Management) 5.2.0 n/a n/a
 
Data Center Protection Products
Management for Optimized Virtual Environment (MOVE) Multi-platform 4.0
3.6.1
4.5 4.6
 
Data Protection Products
Drive Encryption (DE) 2, 3 7.2.0
7.1.3 HF1148978
7.2.1 7.2.2
File and Removable Media Protection (FRP) 3 5.0.1 HF1150417
5.0.2
5.0.3 6 5.0.4
Management of Native Encryption (MNE) 4.1.0 4.1.1 4.1.1
4.1.2
 
Security Management Products
Data Exchange Layer (DXL) 2.0.1 3.1.0 4.0
ePO Deep Command 7 Pending Update n/a n/a
McAfee Agent (MA) 5.0.4
4.8.0 Patch 3
5.0.5
4.8.0 Patch 3
5.0.5
5.0.6
4.8.0 Patch 3
Policy Auditor Agent (PA) 6.2.0.309 6.2.2 6.3
Rogue System Detection 5.0.4 5.0.5 5.0.5
 
Web Protection
McAfee Client Proxy (MCP) 2.1.0.177 2.3 2.3.2
n/a = not available
HF = hotfix
TBD = To be Decided
1 SaaS Endpoint Protection 6.0 does not support Microsoft Windows 10.0. If you try to install Windows 10.0 while running SaaS Endpoint Protection 6.0, it asks you to uninstall it.
If you are running SaaS Endpoint Protection 6.0, uninstall it and install ENS 10.0. ENS 10.0 Patch 1 supports Windows 10.0.
2 IMPORTANT:
  • Zero-day in-place upgrade to Windows 10 is fully supported with DE 7.2.1 and later, by running setup.exe (no need for scripts or command-line arguments), when setup.exe is initiated from the Microsoft WSUS mechanism.
    • For DE 7.1.3 and 7.2.0 and later, reflect drivers parameter must be used when executing setup.exe directly.
      • For Windows Anniversary Update (Version 1607) only, see KB87909.
      • For Windows 10 Creators Update (Version 1703) and later, see KB89000. If the organization administrator runs the setup.exe directly, setup.exe must include the additional command-line options.
  • In-place upgrade to Windows 10 (versions 1507 and 1511) with DE 7.1 Patch 3 (7.1.3) or FRP 5.0.1 installed is supported. But, it requires specific steps be taken as part of the Windows 10 upgrade for it to be successful. For details, see the required article:
    • For detailed instructions and sample scripts that can be tailored to suit the customer environment for DE, see KB84962.
    • For detailed instructions for FRP, see KB87550.
  • DEGO deployment to Windows 10 clients fails. This issue is resolved by installing DE 7.1 Patch 3 Hotfix 1087719 (build 7.1.3.554) or later. For details, see KB85514.
3 For information about support for Device Guard with DE and FRP, see KB86009.
4 KB87536 (Incompatibility between the Windows 10 Anniversary Update and multiple McAfee products) has been redirected to this article because KB87536 became obsolete. Windows 10 Anniversary Update now performs the needed upgrade and installation checks to ensure that no incompatible McAfee product versions can be installed or present, and blocks the upgrade if they are present.
5 CAUTION: If Device Guard or Credential Guard is enabled on a Windows 10 Creators Update 64-bit system, you must ensure that Microsoft KB4016251 is installed on the system before you install McAfee products. For more information, see KB89029.
6 A minimum Windows 10 Creators Update Version 1703 (OS build 15063.250) is required for support with FRP 5.0.3. For more information, see the Microsoft article KB4016240 https://support.microsoft.com/en-gb/help/4016240/windows-10-update-kb4016240
WARNING: Installation or upgrade with earlier builds of Windows 10 Creators Update fails.
7 ePO Deep Command reaches End of Life (EOL) on April 10, 2018. See KB88454 for details.

NOTE: Additional information regarding Windows 10 support for McAfee products will use standard McAfee communication methods including the Support Notification Service (SNS).
To receive information about McAfee product updates, sign up for the Support Notification Service at https://sns.secure.mcafee.com/signup_login.

BACK