12.0

ManualsBrandsSymantec ManualsApplicationsEndpoint Protection

151

152

153

154

155

156

157

158

159

160

Table Of Contents

Implementation Guide for Symantec™ Endpoint Protection Small Business Edition
Technical Support
Contents
1. Introducing Symantec Endpoint Protection Small Business Edition
- About Symantec Endpoint Protection Small Business Edition
- About the types of protection
- Single console management
- How you are protected out-of-the-box
- Key features of Symantec Endpoint Protection Small Business Edition
- Components of Symantec Endpoint Protection Small Business Edition
- Where to get more information about Symantec Endpoint Protection Small Business Edition
  - Technical Support resources
2. Planning the installation
- Planning the installation
- Network architecture considerations
- Guidelines for managing portable computers
- About trialware
- Product license requirements
- System requirements
- Preparing your computers for installation
3. Installing Symantec Protection Center
- Installing Symantec Protection Center
- About the installation wizards
- About the Symantec Protection Center installation settings
- Installing the server and the console
  - Configuring the server
  - Creating the database
- What to do after you install Symantec Protection Center
- Uninstalling Symantec Protection Center
4. Preparing for client installation
- Preparing for client installation
- Configuring firewalls for remote deployment
- Preparing computers for remote deployment
5. Installing the Symantec Endpoint Protection Small Business Edition client
- Installing the Symantec Endpoint Protection Small Business Edition client
  - About managed and unmanaged computers
- About the client installation settings
- About deploying clients
- About reinstalling client protection
- Installing an unmanaged computer
- Uninstalling the client
6. Migrating to Symantec Endpoint Protection Small Business Edition
- About migrating to Symantec Endpoint Protection Small Business Edition
- Migrating legacy installations
  - About migrating computer groups
  - Migrating group settings and policy settings
- Upgrading Symantec Endpoint Protection Small Business Edition
7. Starting the Symantec Protection Center console
- About starting the Symantec Protection Center console
- About the console
- Logging on to the console
- Logging on to a remote console
- Resetting a forgotten password
- What you can do from the console
- Configuring console preferences
8. Monitoring endpoint protection
- About monitoring endpoint protection
- Viewing the Daily Status Report
- Viewing the Weekly Status Report
- Viewing system protection
- Viewing virus and risk activity
- Viewing client inventory
- Finding unscanned computers
- Finding offline computers
- Viewing risks
- Viewing attack targets and sources
- About events and event logs
9. Managing security policies and computer groups
- About managing security policies and computer groups
- About computer groups
- About the security policies
- How policies are assigned to groups
- How computers get policy updates
- Assigning a policy to a group
- Testing a security policy
10. Managing content updates from LiveUpdate
- About managing content updates from LiveUpdate
- About LiveUpdate
- How clients receive content updates
- About the default LiveUpdate schedules
  - Configuring LiveUpdate for the server
  - Enabling LiveUpdate for clients
- Checking LiveUpdate server activity
- Viewing LiveUpdate downloads
- Manually downloading content updates to Symantec Protection Center
11. Managing notifications
- About managing notifications
- How notifications work
- About the default notifications
- Viewing notifications
- Creating a notification
- Creating a notification filter
12. Managing product licenses
- About managing product licenses
- About licenses
- About the Symantec Licensing Portal
  - Creating a Symantec Licensing Portal account
- Checking license status
- About purchasing a license
- Registering a serial number
- Importing a license
- About upgrading trialware
- About renewing a license
- Downloading a license file
- Backing up your license files
13. Managing protection scans
- About managing protection scans
- How protection scans work
  - About the types of protection scans
- About the default protection scan settings
- Enabling File System Auto-Protect
- Scheduling an administrator-defined scan
  - Scheduling a startup scan
  - Scheduling a triggered scan
- Scanning computers
- Updating virus definitions on computers
- About managing quarantined files
- Enabling or disabling TruScan proactive threat scans
- About adjusting the protection scans
- About exceptions
  - Configuring an exception
14. Managing firewall protection
- About managing firewall protection
- How the firewall works
- About the default firewall protection
- Enabling firewall protection
- Adjusting the firewall security level
- Configuring a firewall notification
- About adjusting firewall protection
15. Managing intrusion prevention protection
- About managing Intrusion Prevention protection
- How Intrusion Prevention protection works
- About the default Intrusion Prevention settings
- Enabling Intrusion Prevention
- Blocking an attacking computer
- Specifying Intrusion Prevention exceptions
16. Managing administrator accounts
- About managing administrator accounts
- About administrator accounts
- Creating an administrator account
- Editing an administrator account
- Enabling forgotten passwords
17. Managing disaster recovery
- Managing disaster recovery
- About preparing for disaster recovery
- Backing up the database
- Moving the server
- Reinstalling Symantec Protection Center
- Restoring the database
- Loading a disaster recovery file
A. Maintaining and troubleshooting Symantec Endpoint Protection Small Business Edition
- Restarting client computers
- Finding managed computers
- Converting an unmanaged computer
- Finding the server host name and IP address
- Modifying email server settings
- Modifying the server installation settings
- Investigating client problems
- Troubleshooting Symantec Protection Center communication problems
- Troubleshooting content update problems
- Providing information for Symantec Support
B. Managing mobile clients and remote clients
- About mobile clients and remote clients
- About setting up groups for remote clients
- About strengthening your security policies for remote clients
- About client notifications
- About monitoring remote clients
Index

the safety of your corporate defenses. The management of these clients places an

extra burden on administrators to maintain the safety of the network and its data.

You might have mobile clients and remote clients in your network for a number

of different reasons, and they might exhibit different patterns of usage. For

example, you may have some internal computers that periodically move outside

your corporate environment. You may have some sales personnel whose computers

are never inside the network. You may have some client computers that need to

connect to your network but are completely outside your administrative control.

For example, you may allow customers, contractors, vendors, or business partners

limited access to your network. You may have employees who connect to the

corporate network using their own personal computers.

Some mobile users and remote users might have a less stringent attitude toward

Internet browsing than you want, and therefore exhibit riskier behavior. The

mobile users and remote users that do not work directly for your business may

not be as educated about computer security as your employees. For example, they

might be more likely to open email messages or attachments from unknown

sources while on your network. They may be more likely to use weak passwords.

Mobile users and remote users in general may be more likely to make unauthorized

changes or to customize their computers. For example, they may be more likely

to download and use an application that has not been approved for corporate use.

Mobile users and remote users may be so focused on doing their work as quickly

as possible that they fail to think about computer security.

Because it is a best practice to treat both remote clients and mobile clients

similarly, we refer to both types of clients as remote clients.

About setting up groups for remote clients

The number of groups you need depends on two main factors: the types of remote

clients you have and the security restrictions you want to apply to each type of

client. The types of remote clients you create separate groups for may include the

following:

■ Employees that log on to your network through a virtual private network

(VPN).

■ Employees that log on to your network without using a VPN.

■ Users that are not employees of your company but who need access to your

network.

After you determine the types of remote clients that you have, you should consider

what security restrictions to apply to each of them. You control security

restrictions with policies. Each type of protection is controlled with its own policy.

Managing mobile clients and remote clients

About setting up groups for remote clients

160