Installing a Symantec Endpoint Protection Security Virtual Appliance
|Article:HOWTO81083|||||Created: 2012-10-24|||||Updated: 2013-10-07|||||Article URL http://www.symantec.com/docs/HOWTO81083|
After you have met the prerequisites, you can install the Security Virtual Appliance. You use the Security Virtual Appliance installation tool from the command line. You must install a Security Virtual Appliance on each ESXi host if you want the GVMs on the host to use vShield-enabled Shared Insight Cache.
To install or uninstall the Security Virtual Appliance, the vCenter Administrator account that you use must have permissions in the following privilege categories:
Datastore (All privileges)
Network (All privileges)
vApp (All privileges)
Virtual Machine (All privileges)
Global > Cancel Task
As part of the installation process, the Security Virtual Appliance and its associated ESXi host registers with vShield Manager. For this reason, you should not use vMotion with the Security Virtual Appliance. A best practice is to use the sva_install.jar utility to uninstall and reinstall the Security Virtual Appliance.
The Java Runtime Environment 7 or later is required to run the Security Virtual Appliance installation tool.
To install a Security Virtual Appliance
On the Tools product disc, locate the
Copy the entire contents of the
SecurityVirtualAppliancefolder to a local directory.
For convenience, you may want to copy the files to the same location as the
sylink.xmlfile that you exported from the Symantec Endpoint Protection Manager.
The default name of the communications file that you exported from Symantec Endpoint Protection Manager is
group name_sylink.xml. Be sure to change the <sylink_xml> pathname in the
SVA_InstallSettings.xmlfile to match your exported file name.
Take a snapshot of the vShield Manager. During installation, the Security Virtual Appliance registers with the vShield Manager. A snapshot ensures that you can revert to the previous state, in case any Security Virtual Appliance installation issues occur.
At the command line, type the following command:
java -jar Symantec_SVA_Install.jar -s pathname/SVA_InstallSettings.xml
By default, if there is more than one datastore available the installation prompts you to select one. If there is more than one network, the installation prompts you to select one.
Errors and other installation output are written to the
SVA_Install.log file. This log file is created in the same directory where you executed the installation command.
In a few instances, the write to that directory may fail. In these cases, the file is written to the /temp directory and is named SVA_Installxxx.log, where the system replaces xxx with a random number.
You can perform the following actions to recover from an incomplete Security Virtual Appliance installation or an aborted Security Virtual Appliance installation.
To recover from an incomplete installation or an aborted installation
Check to see if the Security Virtual Appliance is listed under the ESXi host.
If it is listed, turn off the Security Virtual Appliance and delete it from the disk.
Revert the vShield Manager to the snapshot that you took before you tried to install the Security Virtual Appliance.
Reinstall the Security Virtual Appliance.
Once you have installed a Security Virtual Appliance, you can log in with the admin account.
Article URL http://www.symantec.com/docs/HOWTO81083