Preparing Windows operating systems for remote deployment
Table: Remote deployment actions lists the associated tasks that you must do on client computer operating systems to successfully install the client remotely.
Table: Remote deployment actions
Prepare Windows XP computers or Windows Server 2003 servers that are installed in workgroups
Windows XP computers and Windows Server 2003 servers that are installed in workgroups do not accept remote deployment by default. To permit remote deployment, disable Simple File Sharing.
This limitation does not apply to computers that are part of a Windows domain.
You may also need to perform the following tasks:
Ensure that the Administrator account does not have a blank password.
Disable the Windows Firewall, or allow the ports that are required for communication between Symantec Endpoint Protection Small Business Edition and Symantec Endpoint Protection Manager.
See About firewalls and communication ports.
Prepare Windows Vista, Windows 7, or Windows Server 2008 computers
Windows User Account Control blocks local administrative accounts from remotely accessing remote administrative shares such as C$ and Admin$. You do not need to fully disable User Account Control on the client computers during the remote deployment if you disable the registry key LocalAccountTokenFilterPolicy. For more information, visit the following URL:
To push the client software to computers, you should use a domain administrator account if the client computer is part of an Active Directory domain. Remote deployment also requires administrator privileges to install.
Perform the following tasks:
Disable the Sharing Wizard.
Enable network discovery by using the Network and Sharing Center.
Enable the built-in administrator account and assign a password to the account.
Verify that the account has administrator privileges.
Prepare Windows 8 or Windows Server 2012 computers
Before you deploy, perform the following tasks:
Disable the Windows Firewall.
Create the registry key LocalAccountTokenFilterPolicy. For more information, visit the following URL:
Enable and start the Remote Registry service.
See your Windows documentation for more information.
See Preparing for client installation.