Knowledge Base Articles

Endpoint Security for DeltaV Systems v2.3 Software Updates

Article ID: NK-1800-0831

Publish Date: 22 Dec 2025
Article Status: Approved
Article Type: Product Security Concern
Required Action: Next Service Interval

Recent Article Revision History:

Revision/Publish Description of Revision
22 Dec 2025 Added 2nd December 2025 updates which include latest AMCore Content Version to 6103,
and Exploit Prevention Content Version to 10.7.0.13906. Corrected AMCore Engine Version
to 6820.10831.
(See end of article for a complete revision history listing.)

Affected Products:
Product Line Category Device Version
DeltaV Cybersecurity Antivirus Software Trellix Endpoint Security - v2.3
Managed
1 Introduction
This Knowledge Base Article, NK-1800-0831, provides information on software updates for Endpoint Security for DeltaV
Systems v2.3.

Important: McAfee Enterprise is officially “Trellix.” Customers will begin to see the Trellix brand name in
Emerson’s DeltaV collateral and products that will have the same level of support through Emerson.
Trellix has released new MsgBus certificates in connection to their rebranding efforts (see Trellix KB95958).
AMCore content updates signed with the new certificates require MsgBus Certificate Updater package
[Link] or later to be checked into the current branch in the ePO repository and deployed to the DeltaV
Stations. Failure to install the new MsgBus Certificate Updater package will prevent AMCore updates from
installing on the client stations. Emerson recommends keeping your Endpoint Security for DeltaV updated to
the latest versions in Table 2-2.
Important: DeltaV systems with Application Whitelisting v2.3 require Solidcore 8.4.1 or later to use Trellix
Agent 5.8.1.

2 Description
As new updates become available, previously released updates may be superseded. In such cases, the latest available
update will always contain the new ones as well as those that were previously released and superseded.
It is recommended to keep the Endpoint Security for DeltaV Systems software updated to the latest and tested update
files. Emerson strongly recommends all the approved software application updates published in this KBA are applied
system wide, i.e., applying a different combination/subset of the approved updates may result in unexpected outcomes. It
is the end-user’s responsibility to maintain their Endpoint Security for DeltaV Systems installation up to date by reviewing
the most recent Emerson qualified antivirus signatures and product updates summarized in Tables 2-1 and 2-2, and
deploying these updates following the procedures in Section 4. These will provide new virus definitions and Trellix
software updates to address software issues and security vulnerabilities on the ePO and DeltaV client nodes. Failure to
update the system to the latest Emerson-tested combination of antivirus signatures and Trellix product updates may result
to unexpected issues such as (but not limited to): clients not updating to latest antivirus signature, failure to deploy/install
Trellix products, agent-to-server communication issues, etc.

Important: Trellix announced the End of Life (EOL) for ePolicy Orchestrator 5.9.x effective August 31, 2021.
As of the EOL date, Trellix no longer provide support for this product version. Trellix strongly recommends
customers migrate to ePO 5.10 to ensure continued support. Refer to KBA NK-2000-0775: Upgrading the
Trellix ePolicy Orchestrator (ePO) to 5.10.x for the upgrade steps.

Note: The release notes for Endpoint Security for DeltaV Systems v2.3 is available through this link: KBA
NK-1800-0834: Endpoint Security for DeltaV Systems v2.3 Release Notes

Emerson performs a monthly DeltaV compatibility test of the latest available AMCore Content and Exploit Prevention
Content files in conjunction with the compatibility testing of Microsoft security updates. The AMCore Content Package (or
V3 DATs) includes AMCore Scan Engine updates that are also tested during Emerson’s monthly compatibility testing.
The latest tested AMCore and Exploit Prevention content files are available to Guardian customers through the Guardian
website and the GSUDS applet download. The content files are also available for manual download through this Software
Updates KBA.
Endpoint Security for DeltaV Systems customers may also download the latest AMCore and Exploit Prevention content
file from the Trellix website if it is a local site security requirement to update signature files more frequently. For such
configurations, the customer ePO might reflect a newer version of AMCore Content, AMCore Engine, and Exploit
Prevention Content than what is documented in Table 2-1. Emerson highly recommends customers with this type of set
up to deploy security content updates first on a group of Test stations, evaluate system impact, before deploying to the
rest of Production group stations.

Page 2 of 20
The following table describes the configuration where the latest Trellix Endpoint Security (ENS) updates were tested with
DeltaV, v14.x and v15.x systems.

Threat Prevention Version

Trellix Agent [Link]
Endpoint Security (ENS) Platform 10.7.0.6809
Endpoint Security (ENS) Threat
10.7.0.6711
Prevention
AMCore Content Version 6103.0
AMCore Content Date 12/14/2025
AMCore Engine Version 6820.10831
Exploit Prevention Content Version 10.7.0.13906
Exploit Prevention Content Date 11/18/2025

Table 2-1: Latest compatibility test configuration

Note: In January 2020, Microsoft has ended support for Windows 7 SP1 64-bit and Windows Server 2008
R2 64-bit operating systems which means no future software updates will be released for these OS.
Emerson will continue to provide best effort technical support to Endpoint Security for DeltaV systems
running on these operating systems but may require an upgrade to resolve reported issues. Trellix
recommends upgrading to a newer supported Microsoft operating system for best results and optimal
security.

The following table lists the latest tested software versions approved for Endpoint Security for DeltaV Systems v2.3.

Date
Name Latest Version Notes Install File
Approved
ePO 5.10.0 Installation
ePolicy Orchestrator 5.10.0 Full install for ePO Jan 2021
Refresh [Link]
Cumulative ePO update
ePolicy Orchestrator Update 15 for ePO
5.10.0 Update 15 – visit this link for the list Oct 2024
Update [Link]
of resolved issues.
Trellix Agent for
[Link] Application Package [Link] Jan 2025
Windows
ePO Agent Key
[Link] Application Package [Link] Jan 2025
Updater
Message Bus
5.8.2.1033 Application Package [Link] Jan 2025
Certificate Updater
Endpoint_Security_Platform
ENS Platform 10.7.0.6809 Application Package Dec 2024
_10.7.0.6809.1_Client.zip
ENS Threat Threat_Prevention_10.7.0.6
10.7.0.6711 Application Package Dec 2024
Prevention 711.1_Client.zip
Trellix Agent [Link] Extension [Link] Jan 2025
Endpoint Upgrade UpgradeAssistant_2.10.0.22
[Link] Extension Oct 2021
Assistant [Link]

Page 3 of 20
 Endpoint_Security_Platform
ENS Platform 10.7.0.5848 Extension Dec 2024
_10.7.0.5848_Extension.zip
ENS Threat Threat_Prevention_10.7.0.5
10.7.0.5673 Extension Dec 2024
Prevention 673_Extension.zip
MS SQL Server 15.0.2000.5 (See SQL_2019_EXPRESS_STA
Database Server Jun 2024
2019 Note below) [Link]

Table 2-2: Approved software versions for Endpoint Security for DeltaV Systems v2.3

Note: In Windows Programs and Features, the Microsoft Server 2019 Setup (English) component of this
package reports its version as 15.0.4013.40. There is no change in the install package of MS SQL Server
2019 uploaded in Guardian.

3 Obtaining update files

The initial release application packages, extensions, hotfixes, and policies are found in the Endpoint Security for DeltaV
v2.3 installer media. Follow the steps in the Endpoint_Security_for_DeltaV_Systems.pdf document found in the media
to perform the initial installation of the ePO and Trellix Agent.

Note: The latest tested AMCore and Exploit Prevention content files are also available for download to
Guardian customers through the Guardian website and GSUDS applet download. The extensions,
application packages, additional policies, and hotfixes in Sections 3.2 to 3.5 are available for download from
the Guardian website.

Emerson recommends installing Endpoint Security 10.7 or higher, using the links below for new systems. Existing
Endpoint Security 10.7 installations can be upgraded by installing the appropriate packages and extensions and then
deploying the latest Emerson-tested Endpoint Security Threat Prevention package on the DeltaV computers. This
automatically upgrades the Endpoint Security Platform to the new version. Uninstalling the existing Endpoint Security
10.6.0 applications is not required. However, a reboot of the client computer is needed to complete the upgrade.

Note: Endpoint Security 10.6.1 and higher, introduced a significant number of fixes. Trellix classifies this as a
critical update. Emerson strongly recommends customers on Endpoint Security 10.7 to upgrade to the latest
tested release version available in this KBA. Emerson will no longer test virus definitions with 10.6.x.

Trellix releases software updates and anti-virus definitions as new software issues and threats are discovered. Emerson
approved Trellix software and anti-virus definition updates are available using the links below. Save all the files on the
local drive of the ePO, and then follow the corresponding procedure in Section 4.

Important: The update files in this section are applicable only to Endpoint Security “Managed” for DeltaV
Systems v2.3 installations.
Refer to the following KBAs for specific software update guidelines concerning other Endpoint Security for
DeltaV Systems product releases:
NK-1600-0032: Endpoint Security For DeltaV Systems v1.3.x Software Updates
NK-1900-0390: Endpoint Security Unmanaged for DeltaV Systems v2.3 Release Notes

3.1 Anti-virus definitions

• AMCore Content Package (V3)
[Link] : (Size: 241229 KB)
Checksum: 669C2181251775A14004BD302B92B9C015ADBD7D20924A854784116950D1D6DC

Page 4 of 20
 Note: The AMCore Content Package or V3 DAT supersedes V2 and incorporates changes compatible with
Endpoint Security for Windows.

• Exploit Prevention Content File

[Link] : (Size: 4179 KB)
Checksum: 4C9921092DDAC1094BD55B6894D15DC05CDFA8CA4B2666DC36E17E49C04AD25B

3.2 Extensions
• Trellix Agent for Windows
Visit the Guardian website to download the file Trellix Agent [Link]. Extract the contents and look for
[Link].
• Endpoint Upgrade Assistant
Visit the Guardian website to download the file McAfee Endpoint Upgrade Assistant [Link]. Extract the
content and look for UpgradeAssistant_2.[Link].
• Endpoint Security Platform
Visit the Guardian website to download the file Trellix ENS 10.7 Sep2024 [Link]. Extract the contents and
look for Endpoint_Security_Platform_10.7.0.5848_Extension.zip.
• Threat Prevention
Visit the Guardian website to download the file Trellix ENS 10.7 Sep2024 [Link]. Extract the contents and
look for Threat_Prevention_10.7.0.5673_Extension.zip.

3.3 Application packages

• ePO Agent Key Updater
Visit the Guardian website to download the file Trellix Agent [Link]. Extract the contents and look for
[Link].
• Trellix Agent for Windows
Visit the Guardian website to download the file Trellix Agent [Link]. Extract the contents and look for
[Link].

Important: DeltaV systems with Application Whitelisting v2.3 require Solidcore 8.4.1 or later to use Trellix
Agent 5.8.1. See KBA NK-2200-0399: Process History View (PHV) Freezes When Solidcore v8.3.4 Is Active
in “Enabled”, “Observe”, or “Update” Modes for information on the PHV freeze issue and how to update
DeltaV stations to Solidcore 8.4.1.

• Message Bus Certificate Updater

Visit the Guardian website to download the file Trellix Agent [Link]. Extract the contents and look for
[Link].
• Endpoint Security Platform
Visit the Guardian website to download the file Trellix ENS 10.7 Sep2024 [Link]. Extract the contents and
look for Endpoint_Security_Platform_10.7.0.6809.1_Client.zip.
• Threat Prevention
Visit the Guardian website to download the file Trellix ENS 10.7 Sep2024 [Link]. Extract the contents and
look for Threat_Prevention_10.7.0.6711.1_Client.zip.

3.4 Additional policies

This section provides Emerson policies after the Endpoint Security for DeltaV v2.3 media was released.

Page 5 of 20
 • Trellix Agent
Visit the Guardian website to download the file McAfee_Agent_Policies_Hotfix_Bundle_01.zip. Extract the
contents to a local folder on the ePO server.
• Endpoint Security Threat Prevention
Visit the Guardian website to download the file
DeltaV_Threat_Prevention_Access_Protection_Hotfix_Bundle_01.zip. Extract the contents to a local folder
on the ePO server.

3.5 ePO Hotfixes

To see the hotfixes installed on the ePO and Agent Handler, check the installed_hotfixes.csv file in C:\Program Files
(x86)\McAfee\ePolicy Orchestrator.
• ePO 5.10.0 Update 15
Trellix introduced cumulative ePO updates with ePO 5.10.0. Updates include fixes for product issues and may
introduce product features. Because updates are cumulative, you only need to apply the latest available update.
Update 15 applies the Trellix rebranding changes to product interface and domain name.
Visit the Guardian website to download the file Update_15_for_ePO_5.[Link]. Refer to the Update 15 Release
Notes for more information on Update 15.

Note: Trellix ePolicy Orchestrator ePO 5.10.0 should be installed before running this update. Refer to KBA
NK-2000-0775: Upgrading the Trellix ePolicy Orchestrator (ePO) to 5.10.x for the upgrade steps.

4 Installation procedure
4.1 Installing anti-virus definitions
1. Log on to the ePO web interface.

2. Click Menu → Main Repository (Master Repository in ePO 5.10 Update 10 and older)
3. Click the Check in Package button near the top of the page.
4. Click Product or Update (.zip).
5. Click Browse and select the downloaded package zip file.
6. Click Next.

4.2 Installing extensions

1. Log on to the ePO web interface.

2. Click Menu → Extensions.

3. Click the Install Extension button near the top of the page.
4. Click Browse and select the downloaded extension zip file.
5. Click OK.

4.3 Check In the approved application packages

1. Log on to the ePO web interface.

2. Click Menu → Main Repository (Master Repository in ePO 5.10 Update 10 and older)
3. Click the Check in Package button near the top of the page.
4. Click Product or Update (.zip).

Page 6 of 20
 5. Click Browse and select the downloaded package zip file.
6. Click Next.

4.4 Deploying application packages, extensions and anti-virus definitions

1. Log on to the ePO web interface.

2. Click Menu → Systems → System Tree

3. Click the System Tree group and tick the box on the left of the System hostname that you want to update.
4. At the bottom of the screen click on Actions → Agent → Run Client Task Now
5. Make sure that the Affected Systems tab reflect the name of the PC(s) that you want to update.
a. To deploy an application update, select the following:
i. Product → Trellix Agent
ii. Task Type → Product Deployment
iii. Task Name → Create New Task
iv. Under Target platforms: tick Windows
v. Under Products and components: select the updated application version, action to install, language
neutral, and current branch.
b. To deploy signatures, patches, and/or service pack updates, select the following:
i. Product → Trellix Agent
ii. Task Type → Product Update
iii. Task Name → Create New Task
iv. Under Package Selections: tick Selected packages
v. Under Package types: check the appropriate tick boxes:

Note: Deploy the updated “patches and services packs” (e.g., MsgBus Cert Updater, ePO Agent Key
Updater, etc.) as shown Table 2-2 every time new release versions are published in this KBA. Deploy
AMCore Content and Exploit Prevention content in a managed controlled two-phase manner, i.e., deploy to
non-critical machines first, and then later deploy to critical production machines as new signature versions
become available in the ePO.

(1) Signatures and engines:

(a) Endpoint Security Exploit Prevention Content
(b) AMCore Content Package
(2) Patches and services packs:
(a) MsgBus Cert Updater
(b) ePO Agent Key Updater
6. Click Run Task Now button located on the lower right of the web page and monitor the running client task status
until it completes.

4.5 Importing and assigning policies

Refer to the text file included in the policy zip file and the product manual.

Page 7 of 20
4.6 Installing the ePO update
1. Install the latest extensions and application packages on the ePO. The latest approved ePO cumulative update
verifies the installed product extensions for compatibility. Installation will not continue if an incompatible extension
version is present.
2. Extract the contents of the latest approve ePO update zip file.
3. Run [Link] and follow the prompts to complete the update.

4.7 Timing of definition updates and full system scans

It is important to schedule definition file updates (.DAT) to occur at different deployments times (for example, configured
by grouping DeltaV Stations) with one or two hours between each update to ensure that no issues arise because of new
virus definition signatures. If the distribution of a new definition file causes any issues, you may need to roll back any
updated nodes to the last known good definition file update.
It is important to run DAT updates and scheduled scans (if used) at different times so that the endpoint's CPU and
memory resources are not over utilized. This is particularly important for systems running on a virtualized environment.
Updating and scanning DeltaV Station VMs that are running on the same host, at the same time, may impact the
performance of the VM’s host server.
In general, full scans are not recommended to be ran on production machine nodes, especially on nodes that are critical
to the process or used to monitor the process. Scheduled full scans should not be configured in general. If using
Scheduled full scans, make sure nodes are not critical to production whether they are manned or unmanned. Manually
running a full system scan can be performed but should be configured to run ONLY when DeltaV Stations are not in use
by operators controlling the plant’s process and if unmanned nodes, they are not monitoring or controlling critical process
assets. If DeltaV Operator Stations or unmanned critical applications are being used 24 hours a day, then they should
NOT use full scans until they can be taken off-line for other maintenance reasons.

4.8 Installing SQL 2019 Express

SQL Express 2016 is being EOL by Microsoft. We now have made SQL Express 2019 available. To install or upgrade
SQL 2019 Express, refer to KBA NK-2300-0487: SQL 2019 Installation and Upgrade for a Trellix EPO Installation. To
download the SQL Express 2019 installer, use the link below:
[Link] : (Size: 262152 KB)
Checksum: 1615F86891A31CC35A71455BF6F93B7C91D80E01B7F517BBB7930BD5D05330EE

5 GSUDS implementation
To update the ePO with the latest Emerson-tested AMCore content, Exploit Prevention content, and Scan engine using
Guardian download files, perform the following procedure.

Note: The Application Packages, Extensions, Additional Policies, and Hotfixes in previous Sections 3.2 to
are not downloaded by the GSUDS applet and are only available for download through this KBA.

5.1 Configure the Guardian update files “ForPullup” shared repository folder
The procedure in Section 5.1.1 offers automated download of the update files using the Guardian Software Update
Delivery Service (GSUDS) software. Beginning GSUDS v8.2.0.0, the update files are automatically extracted to the
DeltaV McAfee Antivirus Updates → Pullup → ForPullup folder.
Section 5.1.2 provides a manual procedure to download the update zip file. By following this method, you understand that
manual tasks still need to be performed (i.e., extracting the update zip file and deleting/copying files to the ForPullup
repository folder) as part of the monthly update cycle.

5.1.1 Use GSUDS to automatically download and extract the McAfee Antivirus Update files
1. Configure the GSUDS software to automatically download the update files by selecting the check box DeltaV
McAfee Antivirus Updates in the GSUDS Download and Updates Settings.

Page 8 of 20
 Figure 5-1: GSUDS Download and Update Settings

2. Once the GSUDS software runs as scheduled, it will download the McAfee Antivirus Updates
ForPullUp_MmDdYyyy.zip file to the <GSUDSDownloadFolder>\DeltaV McAfee Antivirus Updates folder.

Figure 5-2: GSUDS DeltaV McAfee Antivirus Updates folder

3. GSUDS will then automatically extract the zip file main update file contents to a Pullup\ForPullUp folder.

Page 9 of 20
 Figure 5-3: GSUDS ForPullUp folder

4. Set the ForPullUp folder as a shared folder, and then configure it to have limited Share permissions allowing only
low-privilege user accounts to have read-only access. You only need to set the ForPullUp folder share settings
once. This shared ForPullUp folder will be referenced in Section 5.2, step 5.

Note: On the next scheduled GSUDS download, GSUDS will automatically delete the current contents of the
shared ForPullUp folder, then download the latest ForPullUp_MmDdYyyy.zip file, and then extract new
update files to the ForPullUp folder.

5.1.2 Manually download and extract the Guardian McAfee Antivirus Updates files
1. On an internet-facing PC, create a local folder that will serve as a download repository (i.e., C:\ForPullUp). Share
the folder and then configure it to have limited Share permissions allowing only low-privilege user accounts to
have read-only access. This shared ForPullUp folder will be referenced in Section 5.2, step 5.
2. Manually download the update zip file from the following link:
[Link] : (Size: 447362 KB)
Checksum: 3A7AE3F7826972C3BFA77F20B7B9477713491D5FBF052919F944401624ECB45A
3. Unzip the downloaded update file. The extracted ForPullUp_MmDdYyyy.zip file will have a
ForPullUp_MmmDdYyyy\ForPullup folder that contains the following main update files:

Figure 5-4: ForPullUp_MmmDdYyyy subfolder and files

Page 10 of 20
 4. Copy all the ForPullUp_MmmDdYyyy\ForPullup folder main update files (see Figure 5-4) to the shared
C:\ForPullup folder, created in step 1.

Note: Update the files in the shared C:\ForPullup folder as new content becomes available from the link
provided in Section 5.1.2, step 2. On the next update cycle, manually delete first all the contents of the
C:\ForPullup folder before copying the latest released main update files into the same shared folder. Keeping
old copies or versions of the update files together with the new ones may cause the ePO update to fail.

5.2 Defining a new Source Site and using the Guardian update files
On the ePO machine, define a new Source Site, and then configure it to point to a download folder in GSUDS machine.

1. In the ePO machine console, click Menu → Configuration → Server Settings.

2. In the Setting Categories list, select Source Sites, and then click Edit.
3. Click Add Source Site.
4. Specify a Repository name, select UNC as the Type, and then click Next.
5. Specify the UNC path to the shared download folder in GSUDS/Internet-facing machine (e.g.,
\\<GSUDSPCHostname>\ForPullup), created in Section 5.1. Click Next.
6. Specify the download user credentials, and then click Test Credential. After the “Credentials are valid” message
appears, click Next.

Important: Use a low-privilege user account with read-only rights for accessing repositories.

7. Verify the settings are correct, and then click Save.

5.3 Creating a Repository Pull task to update the ePO machine from the GSUDS PC
repository

1. In the ePO console, click Menu → Automation → Server Tasks.

2. Click New Task, name the task, and then keep the Schedule status as Enabled. Click Next.
3. From the Action drop-down menu, select Repository Pull.
4. Select the new Repository name as the Source Site, and then keep the Branch as Current.
5. Click Select Packages, and then select the following check boxes from the list:

Page 11 of 20
 • AMCore Content Package
• Endpoint Security Exploit Prevention Content

Figure 5-5: List of site packages to be selected on the new Server Task

Note: The AMCore Content Package (or V3 DATs) already includes AMCore Scan Engine updates. Select
“Engine” in the available source site packages only to update the ePO Main Repository with the Engine
package version information and/or if Emerson recommends a Scan Engine update through a separate
standalone package.

6. Click OK.
7. Select the Move existing package to Previous branch checkbox and click Next.
8. Schedule the task and click Next.
9. Verify the settings are correct and click Save.
10. Verify that a new Server Task has been created.
11. You may click Run to start the server task immediately.

6 Verifying the updates

6.1 Main repository
To verify that all the update files are checked-in accordingly, click Menu , and then select Main Repository under the
“Software” header.
Refer to Figure 6-1 for the screenshot of the Main Repository after checking in all the update files.
Refer to Figure 6-2, Figure 6-3, Figure 6-4, and Figure 6-5 for the extension information on Endpoint Security Platform,
Endpoint Security Threat Prevention, Trellix Agent, and Solidcore.

Page 12 of 20
 Figure 6-1: Main Repository after check-in of the latest files

Figure 6-1 shows the screenshot of Main Repository after checking in the latest files as listed in the tables.
For Solidcore Client for Windows, please refer to KBA NK-1800-0832: Application Whitelisting for DeltaV
Systems v2.3 Software Updates for the download link and further information.

Figure 6-2: Extension information on Endpoint Security Platform

Figure 6-3: Extension information on Endpoint Security Threat Prevention

Page 13 of 20
 Figure 6-4: Extension information on Trellix Agent

Figure 6-5: Extension information on Solidcore

Figure 6-6: Extension Information on Endpoint Upgrade Assistant

6.2 Endpoint Client verification

To verify that update files are deployed successfully to the clients:
• DAT files (see Chapter 9 of Endpoint_Security_for_DeltaV_System.pdf for the procedure in updating AMCore
Content Package.)
o Client-side verification: You can verify the client’s current AMCore Content signature file by viewing the Roll
Back AMCore Content page in the Client UI settings drop-down menu.

Page 14 of 20
 Figure 6-7

o ePO side verification: Alternatively, the ePO System Tree and Dashboards can be used to audit this
information. For the System Tree, you may have to click “Choose Columns” to add the information columns
presented for the managed endpoints to review the AMCore Content and Exploit Prevention Content versions
across your managed endpoints. If the endpoint’s agent has not communicated back to ePO recently, then
you may need to click “Wake Up Agent”.
• Application version (see Chapter 10 – “Update existing extensions and packages” of
Endpoint_Security_for_DeltaV_System.pdf for the procedure in updating extensions and application packages.)
o Client-side verification: You can verify the client’s current versions of Endpoint Security Platform, Threat
Prevention, AMCore Content and Exploit Prevention Content, by viewing “About” from the Trellix icon in your
Windows notification area.

Figure 6-8

Page 15 of 20
 o ePO side verification: Alternatively, the ePO System Tree and Dashboards can be used to audit this
information. For the System Tree, you may have to click “Choose Columns” to add the column information
presented for the managed endpoints to review system wide software versions across your managed
endpoints. If the endpoint’s agent has not communicated back to ePO recently, then you may need to click
“Wake Up Agent”.

Figure 6-9

Contact Information
Services are delivered through our global services network. To contact your Emerson local service provider, click Contact
Us. To contact the Global Service Center, click Technical Support.

Download the Sigcheck tool: Click This Link

To get information on how to use the Sigcheck tool: Click This Link

Related products and services: DeltaV DCS | Lifecycle Services

Complete Article Revision History:

Revision/Publish Description of Revision
22 Dec 2025 Added 2nd December 2025 updates which include latest AMCore Content Version to 6103,
and Exploit Prevention Content Version to 10.7.0.13906. Corrected AMCore Engine Version
to 6820.10831.
10 Dec 2025 Added December 2025 updates which includes AMCore Content Version 6089.0.
25 Nov 2025 Added 2nd November 2025 updates which include latest AMCore Content Version to 6075,
and Exploit Prevention Content Version to 10.7.0.13890.
07 Nov 2025 Added November 2025 updates which includes AMCore Content Version 6061.0.
28 Oct 2025 Added 2nd October 2025 updates which include latest AMCore Content Version to 6047,
AMCore Engine Version to 6820.10831, Exploit Prevention Content Version to 10.7.0.13880.
15 Oct 2025 Added October 2025 updates which includes AMCore Content Version 6033.0.
22 Sep 2025 Added 2nd September 2025 updates which include latest AMCore Content Version to 6012,
and Exploit Prevention Content Version to 10.7.0.13868.
05 Sep 2025 Added September 2025 updates which includes AMCore Content Version 5998.0.
01 Sep 2025 Added link to download DeltaV_Threat_Prevention_Access_Protection_Hotfix_Bundle_01 in
Section 3.4.
25 Aug 2025 Added 2nd August 2025 updates which include latest AMCore Content Version to 5984, and
Exploit Prevention Content Version to 10.7.0.13857.
11 Aug 2025 Added August 2025 updates which includes AMCore Content Version 5970.0.
22 Jul 2025 Added 2nd July 2025 updates which include latest AMCore Content Version to
5949, AMCore Engine Version to 6810.10716 and Exploit Prevention Content Version to
10.7.0.13835.
04 Jul 2025 Added July 2025 updates which include latest AMCore Content Version to 5935. Reviewed
and determined applicable to DeltaV v15.FP3.

Page 16 of 20
23 Jun 2025 Added 2nd June 2025 updates which include latest AMCore Content Version to 5921 and
Exploit Prevention Content Version to 10.7.0.13804.
05 Jun 2025 Added June 2025 updates which include the latest AMCore Content version to 5907.
29 May 2025 Added 2nd May 2025 updates which include latest AMCore Content Version to 5893 and
Exploit Prevention Content Version to 10.7.0.13776.
13 May 2025 Added May 2025 updates which includes the latest AMCore content version to 5879.0.
25 Apr 2025 Added 2nd April Updates which include an update to AMCore content version to 5858 and
Exploit Prevention Content version to 10.7.0.13722.
11 Apr 2025 Added April 2025 updates which include an update to AMCore content version to 5844.0.
21 Mar 2025 Added second March 2025 update which includes update to AMCore content version to
5830 and Exploit Prevention Convent version to 10.7.0.13686.
10 Mar 2025 Clarified SQL Server 2019 version in Table 2-2. No change in the install package of SQL
Server 2019 uploaded in Guardian. Added March 2025 updates which include updates to
AMCore content version 5816.
24 Feb 2025 Added second February 2025 updates which include updates to AMCore Content version to
5802, and Exploit Prevention Content Version to 10.7.0.13662.
10 Feb 2025 Added February 2025 updates which includes update to AMCore content version to 5788.0.
31 Jan 2025 Added second Jan 2025 updates which include updates to Trellix Agent to [Link],
AMCore Content version to 5774, and Exploit Prevention Content Version to 10.7.0.13631.
16 Jan 2025 Added January 2025 updates which includes update to AMCore content version to 5760.0.
08 Jan 2025 Updated Application Packages and Extensions to ENS Platform and ENS Threat Prevention
versions 10.7.0.6809, 10.7.0.6711, 10.7.0.5848, and 10.7.0.5673. Updated AMCore Content to
5741.0
02 Jan 2025 Update files for ENS Platform and ENS Threat Prevention Application and Extension
packages not yet package and uploaded in Guardian. Rolled-back changes to Dec 06 2024
revision.
23 Dec 2024 Updated Application Packages for ENS Platform and ENS Threat Prevention to 10.7.0.6809
and 10.7.0.6711. Extensions updated to 10.7.0.5848 and 10.7.0.5673. Amcore Content is
updated to 5471.0.
06 Dec 2024 Added December 2024 updates.
03 Dec 2024 Added second November 2024 Updates. Changed Master repository to Main repository.
11 Nov 2024 Added November 2024 Updates.
23 Oct 2024 Added second October 2024 updates.
04 Oct 2024 Added October 2024 updates. Added ePO 5.10.0 Update 15.
15 Aug 2024 Added August 2024 updates. Reviewed and determined applicable to DeltaV v15.FP1 and
v15.FP2.
23 Jul 2024 Added July 2024 updates.
18 Jul 2024 Updated the website link to Guardian website. Added important note in Section 1 and 3.3 for
systems with Trellix Agent v5.7.9 and v5.8.1.
10 Jul 2024 Added July 2024 updates.
28 Jun 2024 Added Section 4.8 about installation of SQL 2019 Express. Added second June 2024
updates. Updated the latest tested software versions in Table 2-2, Section 3.2, and 3.3.
07 Jun 2024 Added June 2024 updates.
24 May 2024 Added second May 2024 updates.
13 May 2024 Added May 2024 updates.
22 Apr 2024 Added April 2024 updates.
26 Mar 2024 Added second March 2024 updates.
19 Mar 2024 Added March 2024 updates.
06 Mar 2024 Added second February 2024 updates. Added important note in Section 2 about AMCore
Engine Version.
21 Feb 2024 Added February 2024 updates.
31 Jan 2024 Added January 2024 updates. Updated the latest version of Endpoint Security Platform and
Threat Prevention in Table 2-1, Table 2-2, Section 3.2 and Section 3.3.
22 Jan 2024 Added second December 2023 updates.
21 Dec 2023 Added December 2023 updates.
15 Nov 2023 Added November 2023 updates.
23 Oct 2023 Added second October 2023 updates.
16 Oct 2023 Added October 2023 updates.
06 Oct 2023 Added second September 2023 updates.
12 Sep 2023 Added September 2023 updates.
18 Aug 2023 Added second August 2023 updates.
07 Aug 2023 Added August 2023 updates.

Page 17 of 20
26 Jul 2023 Added second July 2023 updates
10 Jul 2023 Added July 2023 updates.
26 Jun 2023 Added second June 2023 updates.
13 Jun 2023 Added June 2023 updates.
19 May 2023 Added second May 2023 updates.
17 May 2023 Added May 2023 updates.
27 Apr 2023 Added second April 2023 updates.
19 Apr 2023 Added April 2023 updates. Added information on the term "Main Repository" in section 4.1
and 4.3.
17 Mar 2023 Added March 2023 updates. Added important note in Section 1. Updated information in
Section 2, 4 and 6.2. Reviewed and determined applicable to DeltaV [Link].
27 Feb 2023 Added February 2023 updates
03 Feb 2023 Updated the DeltaV versions being tested for the release of updates in Section 2.
24 Jan 2023 Added second January 2023 updates.
09 Jan 2023 Added January 2023 updates.
03 Jan 2023 Added second December 2022 updates.
13 Dec 2022 Added December 2022 updates. Removed December 2, 2022 revision as this KBA is for
managed systems.
21 Nov 2022 Added second November 2022 updates.
07 Nov 2022 Added November 2022 updates.
26 Oct 2022 Added second October 2022 updates. Updated all McAfee Agent 5.7.7 references. Updated
McAfee Enterprise references to Trellix.
10 Oct 2022 Added October 2022 updates
27 Sep 2022 Added second September 2022 updates.
09 Sep 2022 Added September 2022 updates.
23 Aug 2022 Added second August 2022 updates
09 Aug 2022 Added August 2022 updates
22 Jul 2022 Added July 2022 updates.
27 Jun 2022 Added second June 2022 updates. Reviewed and determined applicable to DeltaV v13.3.2.
14 Jun 2022 Added June 2022 Updates
26 May 2022 Added second May 2022 updates, and updated McAfee Agent from [Link] to [Link].
The ePO Agent Key Updater and Message Bus Certificate Updater packages have also been
updated.
10 May 2022 Added May 2022 updates.
25 Apr 2022 Added second April 2022 updates. Reviewed and determined applicable to DeltaV v14.FP3.
11 Apr 2022 Added April 2022 updates.
06 Apr 2022 Added ePO 5.10 Update 13.
23 Mar 2022 Added second March 2022 updates.
04 Mar 2022 Added March 2022 updates.
23 Feb 2022 Added second February 2022 updates.
04 Feb 2022 Added AMCore content update for February 2022, and updated McAfee Agent from [Link]
to [Link]. The ePO Agent Key Updater and Message Bus Certificate Updater packages
have also been updated.
27 Jan 2022 Added second January 2022 updates.
10 Jan 2022 Added January 2022 updates.
24 Dec 2021 Added second December 2021 updates.
15 Dec 2021 Added December 2021 updates.
23 Nov 2021 Added second November 2021 updates.
15 Nov 2021 Added McAfee Agent download reference to Sure Service Portal website in Section 3.4.
09 Nov 2021 Added November 2021 updates.
26 Oct 2021 Added second October 2021 Updates; added Section 4.5 to state that incompatible
extensions need to be updated before installing an ePO 5.10 Update 10; added the Endpoint
Upgrade Assistant.
12 Oct 2021 Updated Section 2, Table 2-1, note in Section 3.1, note in Section 5.3, Figure 6-1 and note in
Section 6.1 about AMCore Content Package or V3 DAT. Updated Figure 5-2 and 5-3.
08 Oct 2021 Added October 2021 updates.
05 Oct 2021 Added second September 2021 updates.
13 Sep 2021 Added September 2021 updates
23 Aug 2021 Added second August 2021 updates
09 Aug 2021 Added August 2021 updates

Page 18 of 20
27 Jul 2021 Added July 2021 updates. Reviewed and determined applicable to DeltaV v14.FP2.
23 Jun 2021 Added second June 2021 updates
09 Jun 2021 Added June 2021 updates.
24 May 2021 Added second May 2021 updates
18 May 2021 Added May 2021 updates.
30 Apr 2021 Added second April 2021 updates
15 Apr 2021 Added April 2021 updates.
22 Mar 2021 Added second March 2021 updates.
10 Mar 2021 Added March 2021 updates
03 Mar 2021 Added note in Section 2 in reference to End of Life (EOL) for McAfee ePO 5.9.x
23 Feb 2021 Added second February 2021 updates
10 Feb 2021 Added ePO 5.10 Update 9 in Section 3.5, and added February 2021 updates.
12 Jan 2021 Added January 2021 updates
28 Dec 2020 Added second December 2020 updates
09 Dec 2020 Added December 2020 updates
01 Dec 2020 Added second November 2020 updates. Added Figure 6-2 to 6-5 for extension information.
Added link to NK-1800-0832 in reference to Solidcore. Updated document format.
06 Nov 2020 Added November 2020 Updates. Updated Date Approved for ePO Agent Key Updater,
McAfee Agent v5.6.6 for Windows, Message Bus Certificate Updater and McAfee Agent
v5.6.6 in second table in section 1.
23 Oct 2020 Added second October 2020 Updates
09 Oct 2020 Added October 2020 Updates
28 Sep 2020 Added second September 2020 updates
17 Sep 2020 Added installed_hotfix information Note in Section 2.5
09 Sep 2020 Added September 2020 updates.
26 Aug 2020 Added second August 2020 updates
13 Aug 2020 Added August 2020 updates
06 Aug 2020 Added ePO 5.9.1 Hotfix EPO-87800_591 in Section 2.5
03 Aug 2020 Added note Section 2.1 and 4
27 Jul 2020 Added second July 2020 updates
08 Jul 2020 Added July 2020 updates
22 Jun 2020 Added second June 2020 updates
15 Jun 2020 Added June 2020 updates
29 May 2020 Added second May 2020 updates
15 May 2020 Added May 2020 updates and added note in Section 1 about EOL of Windows 7 SP1 and
Server 2008 R2 64-bit OS
27 Apr 2020 Added April 2020 Updates
03 Apr 2020 Re-released ePOV3_4013.[Link] and added additional March 2020 updates
30 Mar 2020 Pulled out ePOV3_4013.[Link] from distribution due to an error when checking-in the zip
file into the ePO repository
25 Mar 2020 Added March 2020 Updates
04 Mar 2020 Added February 2020 updates
07 Feb 2020 Added Important note in section 2. Added links to KBA for specific software update
guidelines. Removed ePO 5.3.3 Hotfix
28 Jan 2020 Added January 2020 updates
23 Dec 2019 Added December 2019 updates
03 Dec 2019 Added November 2019 updates
29 Oct 2019 Added October 2019 updates
23 Sep 2019 Added September 2019 updates
27 Aug 2019 Added August 2019 updates.
26 Jul 2019 Added July 2019 updates. Added additional information in section 1 and important note in
installing updates directly from Mcafee.
03 Jul 2019 Added approved June 2019 update. Testing for v14.3 is completed. Added back the Install
packages for Endpoint Security Platform and Threat Prevention in section 2.2.
19 Jun 2019 Updated the links for Endpoint Security Platform Client and Threat Prevention Client
14 Jun 2019 Added the new update files for application packages and extensions
06 Jun 2019 Added approved updates for May 2019 for v12.3.1 and v13.3.1. Testing for v14.3 is in
progress
06 May 2019 Added the April 2019 updates which is only applicable for DeltaV v12.3.1 and v13.3.1 at the
moment. Testing for v14.3 is in progress.

Page 19 of 20
29 Mar 2019 Added Mcafee Endpoint patches for March 2019
28 Feb 2019 Added McAfee Endpoint patches for February 2019
25 Jan 2019 Reflected that Endpoint Security v10.6.1 is the current supported version. Deleted the 2nd
table in Section 1 (already in KBA NK-1800-0834). Transferred the update file links from
Section 3 to 2.
18 Dec 2018 Original Release of Article

©Emerson Automation Solutions 2009-2025. All rights reserved. The contents of this publication are presented for informational purposes only, and
while every effort has been made to ensure their accuracy, they are not to be construed as warrantees or guarantees, express or implied, regarding
the products or services described herein or their use or applicability. All sales are governed by our terms and conditions, which are available on
request. We reserve the right to modify or improve the design or specification of such products at any time without notice.

View Emerson Products and Services: Click This Link

Page 20 of 20