Professional Documents
Culture Documents
Legal Notice
Copyright 2011 Symantec Corporation. All rights reserved. Symantec, the Symantec Logo, Bloodhound, Confidence Online, Digital Immune System, LiveUpdate, Norton, Sygate, and TruScan are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. This Symantec product may contain third party software for which Symantec is required to provide attribution to the third party (Third Party Programs). Some of the Third Party Programs are available under open source or free software licenses. The License Agreement accompanying the Software does not alter any rights or obligations you may have under those open source or free software licenses. Please see the Third Party Legal Notice Appendix to this Documentation or TPIP ReadMe File accompanying this Symantec product for more information on the Third Party Programs. The product described in this document is distributed under licenses restricting its use, copying, distribution, and decompilation/reverse engineering. No part of this document may be reproduced in any form by any means without prior written authorization of Symantec Corporation and its licensors, if any. THE DOCUMENTATION IS PROVIDED "AS IS" AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE DISCLAIMED, EXCEPT TO THE EXTENT THAT SUCH DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. SYMANTEC CORPORATION SHALL NOT BE LIABLE FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES IN CONNECTION WITH THE FURNISHING, PERFORMANCE, OR USE OF THIS DOCUMENTATION. THE INFORMATION CONTAINED IN THIS DOCUMENTATION IS SUBJECT TO CHANGE WITHOUT NOTICE. The Licensed Software and Documentation are deemed to be commercial computer software as defined in FAR 12.212 and subject to restricted rights as defined in FAR Section 52.227-19 "Commercial Computer Software - Restricted Rights" and DFARS 227.7202, "Rights in Commercial Computer Software or Commercial Computer Software Documentation", as applicable, and any successor regulations. Any use, modification, reproduction release, performance, display or disclosure of the Licensed Software and Documentation by the U.S. Government shall be solely in accordance with the terms of this Agreement.
Technical Support
Symantec Technical Support maintains support centers globally. Technical Supports primary role is to respond to specific queries about product features and functionality. The Technical Support group also creates content for our online Knowledge Base. The Technical Support group works collaboratively with the other functional areas within Symantec to answer your questions in a timely fashion. For example, the Technical Support group works with Product Engineering and Symantec Security Response to provide alerting services and virus definition updates. Symantecs support offerings include the following:
A range of support options that give you the flexibility to select the right amount of service for any size organization Telephone and/or Web-based support that provides rapid response and up-to-the-minute information Upgrade assurance that delivers software upgrades Global support purchased on a regional business hours or 24 hours a day, 7 days a week basis Premium service offerings that include Account Management Services
For information about Symantecs support offerings, you can visit our Web site at the following URL: www.symantec.com/business/support/ All support services will be delivered in accordance with your support agreement and the then-current enterprise technical support policy.
Hardware information Available memory, disk space, and NIC information Operating system Version and patch level Network topology Router, gateway, and IP address information Problem description:
Error messages and log files Troubleshooting that was performed before contacting Symantec Recent software configuration changes and network changes
Customer service
Customer service information is available at the following URL: www.symantec.com/business/support/ Customer Service is available to assist with non-technical questions, such as the following types of issues:
Questions regarding product licensing or serialization Product registration updates, such as address or name changes General product information (features, language availability, local dealers) Latest information about product updates and upgrades Information about upgrade assurance and support contracts Information about the Symantec Buying Programs Advice about Symantec's technical support options Nontechnical presales questions Issues that are related to CD-ROMs, DVDs, or manuals
Where to go for information on upgrading and migrating Supported server upgrade paths Supported client upgrade paths Migrations that are supported and unsupported for the Mac client Deciding which features to install on the client Feature mapping between 11.x and 12.1 clients Client protection features by platform Management features by platform Virus and Spyware Protection policy settings available for Windows and Mac LiveUpdate policy settings available for Windows and Mac Increasing Symantec Endpoint Protection Manager disk space before upgrading to version 12.1
Upgrading or migrating to Symantec Endpoint Protection Where to go for information on upgrading and migrating
Preparing computers to receive the "Preparing for client installation" client software installation packages Creating security policies for the clients "The types of security policies" "Adding a policy"
Configuring feature sets for clients "About the client installation settings" "Configuring client installation package features" See Deciding which features to install on the client on page 11. "About client deployment methods" Deploying clients to the client computers Migrating clients to a newer version "About client deployment methods"
How protection technologies and See Feature mapping between 11.x and 12.1 clients features from legacy clients map to on page 12. new clients Feature and policy descriptions "About the types of threat protection that Symantec Endpoint Protection provides" "The types of security policies" Feature dependencies "How Symantec Endpoint Protection protection features work together" See Client protection features by platform on page 15. "About product upgrades and licenses"
Upgrade licensing
Migration procedures and general "About migrating to Symantec Endpoint Protection" information
For more information on migration, see the knowledge base article, Endpoint Security Migration & Installation.
From 11.x to 12.1 (full version) From 12.0 Small Business Edition to 12 .1 (full version) From 12.1 Small Business Edition to 12.1 (full version)
Note: Symantec AntiVirus 9.x and 10.x server information can be imported during the installation of Symantec Endpoint Protection Manager version 12.1. The following downgrade paths are not supported:
12.1 (full version) to 12.1 Small Business Edition 11.x to 12.1 Small Business Edition
10
11.0.780.1109 11.0.1000.1375 - MR1 11.0.2000.1567 - MR2, with maintenance patches 11.0.3001.2224 - MR3 11.0.4000.2295 - MR4, with maintenance patches 11.0.5002.333 - RU5 11.0.6000.550 - RU6, with maintenance patches 12.0.122.192 Small Business Edition 12.0.1001.95 Small Business Edition RU1
Upgrading from Symantec Sygate Enterprise Protection 5.x, and Symantec AntiVirus 9.x and 10.x to 12.1 (full version) is supported.
Migrations that are supported and unsupported for the Mac client
Table 1-2 displays the products that can be migrated to the Symantec Endpoint Protection for Mac client. Table 1-2 Migration paths from Symantec AntiVirus for Mac to the Symantec Endpoint Protection Mac client Migrate to Supported?
Migrate from
Managed Symantec AntiVirus for Mac client
Unmanaged Symantec AntiVirus Unmanaged Symantec Yes for Mac client Endpoint Protection for Mac client Unmanaged Symantec AntiVirus Managed Symantec Yes for Mac client Endpoint Protection for Mac client
Upgrading or migrating to Symantec Endpoint Protection Deciding which features to install on the client
11
Table 1-2
Migration paths from Symantec AntiVirus for Mac to the Symantec Endpoint Protection Mac client (continued) Migrate to Supported?
Migrate from
Managed Symantec AntiVirus for Mac client
Unmanaged Symantec Yes, but managed client Endpoint Protection for Mac settings are retained. client Managed or unmanaged Symantec Endpoint Protection for Mac client No. Client must uninstall Norton products before installing Symantec Endpoint Protection.
12
Upgrading or migrating to Symantec Endpoint Protection Feature mapping between 11.x and 12.1 clients
Table 1-5
Upgrading or migrating to Symantec Endpoint Protection Feature mapping between 11.x and 12.1 clients
13
Table 1-5
11.x to 12.1 full protection (continued) 12.1 features installed after Autoupgrade
Network Threat Protection
Table 1-6
Table 1-7
11.x to 12.1 AV + Proactive Threat Protection 12.1 features installed after Autoupgrade
Virus and Spyware Protection
14
Upgrading or migrating to Symantec Endpoint Protection Feature mapping between 11.x and 12.1 clients
Table 1-8
11.x to 12.1 (full version) firewall only 12.1 features installed after Autoupgrade
Auto-Protect Email Protection
Table 1-9
12.0 Small Business Edition to 12.1 (full version) 12.1 features installed after Autoupgrade
Virus and Spyware Protection
15
Symantec Endpoint Protection client protection Windows XP (SP2), Windows Vista, Windows 7, 64-bit
Yes Yes Yes
Linux
Internet Email Auto-Protect Yes Microsoft Outlook Auto-Protect Lotus Notes Auto-Protect SONAR Firewall Intrusion Prevention Application and Device Control Host Integrity Tamper Protection Yes
No Yes
No Yes
No Yes
No No
No No
No No No No No
No No No No No
Yes Yes
Yes Yes
No No
No No
See Management features by platform on page 16. See Virus and Spyware Protection policy settings available for Windows and Mac on page 17. See LiveUpdate policy settings available for Windows and Mac on page 18.
16
Feature
Deploy client remotely from Symantec Endpoint Protection Manager Manage client from Symantec Endpoint Protection Manager
Windows
Yes
Yes
Yes
Update virus definitions and Yes product from management server Run commands from management server
No
Scan Update Content Update Content and Scan Restart Client Computers Enable Auto-Protect Restart Client Computers Enable Auto-Protect
Scan Update Content Update Content and Scan Restart Client Computers Enable Auto-Protect Restart Client Computers Enable Auto-Protect
Enable Network Threat Protection Disable Network Threat Protection Provide updates by using Group Update Providers Run Intelligent Updater Package updates for third-party tools in management server Set randomized scans Set randomized updates Yes No
Yes Yes
Yes No*
Yes Yes
No Yes
*You can run Intelligent Updater to get Mac content updates. You can then push the updates to Mac clients by using a third-party tool such as Apple Remote Desktop.
Upgrading or migrating to Symantec Endpoint Protection Virus and Spyware Protection policy settings available for Windows and Mac
17
See Virus and Spyware Protection policy settings available for Windows and Mac on page 17. See LiveUpdate policy settings available for Windows and Mac on page 18. See Client protection features by platform on page 15.
Virus and Spyware Protection policy settings available for Windows and Mac
Table 1-12 displays the differences in the policy settings that are available for Windows clients and Mac clients. Table 1-12 Virus and Spyware Protection policy settings (Windows and Mac only) Mac
You can specify either of the following actions:
Policy setting
Define actions for scans
Windows
You can specify first and second actions when different types of virus or risk are found. You can specify the following actions:
Specify remediation if a virus You can specify the following remediation Remediation is automatically associated or a risk is found actions: with actions.
Back up files before repair Terminate processes Stop services Custom only No No
Set scans to check additional Yes locations (scan enhancement) Configure storage migration Yes scans Configure scan exceptions Yes
No
Yes
18
Upgrading or migrating to Symantec Endpoint Protection LiveUpdate policy settings available for Windows and Mac
See Management features by platform on page 16. See LiveUpdate policy settings available for Windows and Mac on page 18. See Client protection features by platform on page 15.
Mac
No Yes
Yes Yes
No No You can, however, run Intelligent Updater to get Mac content updates. You can then push the updates to Mac clients by using a third-party tool such as Apple Remote Desktop.
Yes
Yes, but it is not configured in the LiveUpdate policy. It is configured from the External Communications settings. Yes, for Frequency and Download Randomization options; no for all other scheduling options No Yes No
LiveUpdate Scheduling
Yes
Upgrading or migrating to Symantec Endpoint Protection Increasing Symantec Endpoint Protection Manager disk space before upgrading to version 12.1
19
See Virus and Spyware Protection policy settings available for Windows and Mac on page 17. See Client protection features by platform on page 15.
Increasing Symantec Endpoint Protection Manager disk space before upgrading to version 12.1
The Symantec Endpoint Protection Manager version 12.1 requires a minimum of 5 GB of available disk space. Make sure that any legacy servers or new hardware meet the minimum hardware requirements. Note: Make a backup of the database before making configuration changes. Table 1-14 lists ways you can make more disk space available for the upgrade. Table 1-14 Task Tasks to increase disk space on the management server Description
Go to Admin > Servers and right-click on Local Site. Select Edit Properties. On the LiveUpdate tab, uncheck Store client packages unzipped to provide better network performance for upgrades On the LiveUpdate tab, reduce the number of content revisions to keep. The optimum value is 30 revisions but a lower setting uses less disk space. For the upgrade, you can lower the setting to 10, and then after the upgrade, return the setting to 30. Go to Admin > Servers and right-click on Local Site. Select Edit Properties On the Database tab, make sure that Delete unused virus definitions is checked.
Make sure unused virus definitions are deleted from the Symantec Endpoint Protection Manager database.
1 2
20
Upgrading or migrating to Symantec Endpoint Protection Increasing Symantec Endpoint Protection Manager disk space before upgrading to version 12.1
Note: Make sure that the client computers also have enough disk space before an upgrade. Check the system requirements and as needed, remove unnecessary programs and files, and then defragment the client computer hard drive.