Best practices guide for installing the Symantec Endpoint Protection Manager (SEPM) on a Windows XP operating system.

Article:TECH91694  |  Created: 2009-01-07  |  Updated: 2010-08-03  |  Article URL http://www.symantec.com/docs/TECH91694
Article Type
Technical Solution


Issue



You are installing the Symantec Endpoint Protection Manager (SEPM) on a Windows XP machine. Windows XP has a 10 concurrent connection limitation that has been built in by Microsoft. This guide contains the configuration changes that are necessary to work around this limitation. This is supported for up to 100 clients managed from a single XP SEPM.

 


Solution



During the initial installation of the SEPM on a Windows XP machine the final step will lead you through the Migration and Deployment Wizard. Use the Wizard to create a package but do not deploy the client yet.

Follow these steps:

  1. Log in to the SEPM.
  2. Click the Clients view.
  3. Select the Group to configure and turn off Policy Inheritance (if at a level other than My Company).
  4. Under the Policies tab.
  5. Click the Communication Settings link under Location Independent Settings.
  6. Set the Download radio button to Pull Mode.
  7. Set the Heartbeat Interval to at least 30 minutes (recommend 60 minutes).
  8. Click OK.


If the Windows firewall is kept active, you will need to create an exception for the SEPM communication port.

1. Open Control Panel
2. Open Windows Firewall
3. Click on the Exceptions tab
4. Choose Add Port
5. Name it SEPM communication port (or something similar)
6. Port number will be the one you chose during installation (in versions 11.0.3001 and above, the default will be 8014)
7. Click OK, and OK again

Note: this change only needs to be made on the Manager, not the clients.

Now the clients can be deployed and communicate successfully with the SEPM.






 



Legacy ID



2009010714075548


Article URL http://www.symantec.com/docs/TECH91694


Terms of use for this information are found in Legal Notices