12.0

ManualsBrandsSymantec ManualsApplicationsEndpoint Protection

159

160

161

162

163

164

165

166

167

168

Table Of Contents

Implementation Guide for Symantec™ Endpoint Protection Small Business Edition
Technical Support
Contents
1. Introducing Symantec Endpoint Protection Small Business Edition
- About Symantec Endpoint Protection Small Business Edition
- About the types of protection
- Single console management
- How you are protected out-of-the-box
- Key features of Symantec Endpoint Protection Small Business Edition
- Components of Symantec Endpoint Protection Small Business Edition
- Where to get more information about Symantec Endpoint Protection Small Business Edition
  - Technical Support resources
2. Planning the installation
- Planning the installation
- Network architecture considerations
- Guidelines for managing portable computers
- About trialware
- Product license requirements
- System requirements
- Preparing your computers for installation
3. Installing Symantec Protection Center
- Installing Symantec Protection Center
- About the installation wizards
- About the Symantec Protection Center installation settings
- Installing the server and the console
  - Configuring the server
  - Creating the database
- What to do after you install Symantec Protection Center
- Uninstalling Symantec Protection Center
4. Preparing for client installation
- Preparing for client installation
- Configuring firewalls for remote deployment
- Preparing computers for remote deployment
5. Installing the Symantec Endpoint Protection Small Business Edition client
- Installing the Symantec Endpoint Protection Small Business Edition client
  - About managed and unmanaged computers
- About the client installation settings
- About deploying clients
- About reinstalling client protection
- Installing an unmanaged computer
- Uninstalling the client
6. Migrating to Symantec Endpoint Protection Small Business Edition
- About migrating to Symantec Endpoint Protection Small Business Edition
- Migrating legacy installations
  - About migrating computer groups
  - Migrating group settings and policy settings
- Upgrading Symantec Endpoint Protection Small Business Edition
7. Starting the Symantec Protection Center console
- About starting the Symantec Protection Center console
- About the console
- Logging on to the console
- Logging on to a remote console
- Resetting a forgotten password
- What you can do from the console
- Configuring console preferences
8. Monitoring endpoint protection
- About monitoring endpoint protection
- Viewing the Daily Status Report
- Viewing the Weekly Status Report
- Viewing system protection
- Viewing virus and risk activity
- Viewing client inventory
- Finding unscanned computers
- Finding offline computers
- Viewing risks
- Viewing attack targets and sources
- About events and event logs
9. Managing security policies and computer groups
- About managing security policies and computer groups
- About computer groups
- About the security policies
- How policies are assigned to groups
- How computers get policy updates
- Assigning a policy to a group
- Testing a security policy
10. Managing content updates from LiveUpdate
- About managing content updates from LiveUpdate
- About LiveUpdate
- How clients receive content updates
- About the default LiveUpdate schedules
  - Configuring LiveUpdate for the server
  - Enabling LiveUpdate for clients
- Checking LiveUpdate server activity
- Viewing LiveUpdate downloads
- Manually downloading content updates to Symantec Protection Center
11. Managing notifications
- About managing notifications
- How notifications work
- About the default notifications
- Viewing notifications
- Creating a notification
- Creating a notification filter
12. Managing product licenses
- About managing product licenses
- About licenses
- About the Symantec Licensing Portal
  - Creating a Symantec Licensing Portal account
- Checking license status
- About purchasing a license
- Registering a serial number
- Importing a license
- About upgrading trialware
- About renewing a license
- Downloading a license file
- Backing up your license files
13. Managing protection scans
- About managing protection scans
- How protection scans work
  - About the types of protection scans
- About the default protection scan settings
- Enabling File System Auto-Protect
- Scheduling an administrator-defined scan
  - Scheduling a startup scan
  - Scheduling a triggered scan
- Scanning computers
- Updating virus definitions on computers
- About managing quarantined files
- Enabling or disabling TruScan proactive threat scans
- About adjusting the protection scans
- About exceptions
  - Configuring an exception
14. Managing firewall protection
- About managing firewall protection
- How the firewall works
- About the default firewall protection
- Enabling firewall protection
- Adjusting the firewall security level
- Configuring a firewall notification
- About adjusting firewall protection
15. Managing intrusion prevention protection
- About managing Intrusion Prevention protection
- How Intrusion Prevention protection works
- About the default Intrusion Prevention settings
- Enabling Intrusion Prevention
- Blocking an attacking computer
- Specifying Intrusion Prevention exceptions
16. Managing administrator accounts
- About managing administrator accounts
- About administrator accounts
- Creating an administrator account
- Editing an administrator account
- Enabling forgotten passwords
17. Managing disaster recovery
- Managing disaster recovery
- About preparing for disaster recovery
- Backing up the database
- Moving the server
- Reinstalling Symantec Protection Center
- Restoring the database
- Loading a disaster recovery file
A. Maintaining and troubleshooting Symantec Endpoint Protection Small Business Edition
- Restarting client computers
- Finding managed computers
- Converting an unmanaged computer
- Finding the server host name and IP address
- Modifying email server settings
- Modifying the server installation settings
- Investigating client problems
- Troubleshooting Symantec Protection Center communication problems
- Troubleshooting content update problems
- Providing information for Symantec Support
B. Managing mobile clients and remote clients
- About mobile clients and remote clients
- About setting up groups for remote clients
- About strengthening your security policies for remote clients
- About client notifications
- About monitoring remote clients
Index

■ Leave as-is the rule that blocks all other traffic.

As a best practice for the Firewall policies for the groups where users log on

through Ethernet or wireless connections, use your default Firewall Policy. For

the wireless connection, ensure that the rule to allow wireless EAPOL is enabled.

802.1x uses the Extensible Authentication Protocol over LAN (EAPOL) for

connection authentication.

About best practices for Virus and Spyware Policy settings

As a best practice for the Virus and Spyware policies for remote clients, use your

default Virus and Spyware Policy. The default policy suspends scans when the

remote client operates from batteries to extend battery life.

About best practices for LiveUpdate Policy settings

If you maintain strict control over Symantec content and product updates for

your clients, you should consider changing your LiveUpdate Policy for your remote

clients.

For the group of remote users who log on without a VPN, we suggest you change

the LiveUpdate Scheduling frequency to one hour. This setting makes it more

likely that clients update their protection when they connect to the Internet.

For all other groups, it is a best practice to use the Symantec Protection Center

to distribute product software and content updates. An update package that is

distributed through the management console is incremental rather than a complete

package. The update packages are smaller than the packages that are downloaded

directly from the Symantec LiveUpdate server.

About client notifications

For your remote clients that are not logged on over VPN, it is a best practice to

turn on notifications for virus and security risks. You can turn on these

notifications in the Virus and Spyware policy.

Turning on notifications helps to ensure that remote users are aware when a

security problem occurs.

About monitoring remote clients

Notifications and logs are essential to maintain a secure environment. In general,

you should monitor your remote clients in the same way that you monitor your

other clients. You should always check to see that your protections are up to date

Managing mobile clients and remote clients

About client notifications

162