McAfee Configuration Control

McAfee Configuration Control

Audit, control, and enforce for continuous compliance

Next Steps:


McAfee Configuration Control automates and enforces compliance configurations for critical servers, saving time and money on audit activity by blocking unauthorized changes. Designed with a flexible and easy-to-use interface, Configuration Control delivers change alerts with configuration and policy enforcement, and helps you quickly address or create your own IT compliance standards — with no expertise required.

Audit, control, and enforce — Easily maintain continuous compliance through our methodical three-step approach. Refine and automate IT audit processes, control changes in your environment by monitoring system integrity, and enforce policies to stop unauthorized changes and keep your enterprise compliant.

Comprehensive change prevention — Stop unwanted or unauthorized changes. McAfee’s unique change policy enforcement allows changes by predetermined time window, trusted source, or approved work ticket. Trusted changes can be automatically allowed; those that are outside of the authorized change profile are denied.

Real-time visibility and alerts to change events — Get alerts to changes occurring in the environment. Using profiles, Configuration Control gives you the power to define the most critical components, files, or objects within a server to monitor.

Lowered audit costs — Configuration Control dramatically cuts audit preparation time, while eliminating the hidden costs of ad hoc and unwanted change.

Features & Benefits

Automate audits and configuration assessments

Get up-to-date data, powerful dashboards and reports, and built-in waiver management to simplify every step of your audit and configuration process.

Control integrity

Track changes in real time with instant alerts, reducing risks that can compromise integrity and compliance.

Enforce change policies and processes

Implement IT controls at the server to allow only authorized changes to the system, eliminating ad hoc alterations, drift, or unwanted configurations.

Focus on critical issues

Define new profiles and focus on what’s critical to monitor by implementing new benchmark standards within minutes. McAfee Configuration Control increases the visibility and curtails the escalating and hidden costs of managing compliance requirements.

Document defensible proof of continuous compliance

Leverage your investment in the McAfee ePolicy Orchestrator (ePO) platform by creating and scheduling reports to show assessments, alerts, change event details, and enforcement policies.

Integrate industry benchmarks

Adapt to changing compliance standards and industry requirements. Download and easily update benchmarks from authoritative sources, such as the National Institute of Standards and Technology (NIST), and view detailed security guidance in minutes.

Incorporate other change management solutions

Use Configuration Control with change management, data center automation, and configuration management database (CMDB) solutions from HP, BMC, IBM, and others.

System Requirements

For a complete list of system requirements, see the Platform Support Matrix.

Demos / Tutorials


Use a single solution and achieve continuous compliance with McAfee Configuration Control.

Learn how McAfee Risk and Compliance products scan your entire network, providing complete visibility and ensuring proper protection.


Data Sheets

McAfee Configuration Control

For a technical summary on the McAfee product listed above, please view the product data sheet.

Solution Briefs

Continuous Compliance Simplified

McAfee Configuration Control combines the advanced capabilities of McAfee Policy Auditor and McAfee Change Control to put you in command of your compliance requirements.

White Papers

The Case for Continuous Compliance

McAfee Configuration Control eliminates manual processes and point product integration, providing single-console control for meeting compliance requirements.



  • We Tried the NIST Framework and It Works
    Kent Landfield - February 11, 2015

    By Kent Landfield, Director of Standards and Technology Policy, Intel Security, and Malcolm Harkins, Chief Security and Privacy Officer at Intel When the Administration released the Framework for Improving Critical Infrastructure Cybersecurity (the Framework) on February 12, 2014, many of us at Intel and Intel Security were familiar with the details, as we had participated […]

    The post We Tried the NIST Framework and It Works appeared first on McAfee.

  • Shedding light on ‘Shadow IT’
    David Small - January 9, 2014

    BYOD, BYOA, BYOx. The IT industry is full of acronyms depicting its constant evolution and relationship with the professional world. First came the devices; employees saw the power of personal devices and insisted on using them in the workplace. And so the consumerisation of IT was born. After the devices came the apps. Companies reported […]

    The post Shedding light on ‘Shadow IT’ appeared first on McAfee.

  • Walking the Talk on Public-Private Partnerships
    Tom Gann - August 16, 2013

    There’s been a lot of talk about the value of public-private partnerships in moving the U.S. toward a more robust cyber security posture. And let’s be honest:  there’s also been a lot of private sector skepticism about how much the Administration really believed in the concept or how much they would do to make it […]

    The post Walking the Talk on Public-Private Partnerships appeared first on McAfee.

  • Five Factors That Make D.C. Region a Cybersecurity Hub
    Tom Gann - May 29, 2013

    McAfee is based in Silicon Valley, but we know there’s more to tech than California. We recently joined the National Institute of Standards and Technology to launch the National Cybersecurity Center of Excellence, a joint effort among high-tech business, federal, state and local government and local universities located in Rockville, Md. The goal of the […]

    The post Five Factors That Make D.C. Region a Cybersecurity Hub appeared first on McAfee.

  • Getting Assurance in a Time Constrained World
    Intel Security, Inc. - May 20, 2013

    Nothing is as frustrating as when something goes wrong, especially when you have time constraints.  NIST has just released Special Publication 800-53, Revision 4: Security and Privacy Controls for Federal Information Systems and Organizations where a few notable items have been added to increase the confidence that security, practices, procedures and architectures of information systems […]

    The post Getting Assurance in a Time Constrained World appeared first on McAfee.