Downloading and hosting the Symantec Endpoint Protection Manager (SEPM) 2010 definitions patch via LiveUpdate Administrator 2.x (LUA 2.x) and LiveUpdate Administration Utility 1.x (LUAU 1.x)

Article:TECH98456  |  Created: 2010-01-09  |  Updated: 2010-12-08  |  Article URL http://www.symantec.com/docs/TECH98456
Article Type
Technical Solution


Environment

Issue





 


Solution



LiveUpdate Administrator (LUA 2.x) and LiveUpdate Administration Utility 1.x (LUAU 1.x) are capable of providing up-to-date content updates with 2010 dates directly to Symantec Endpoint Protection (SEP) clients without any modifications.

LUA 2.x and LUAU 1.x must be updated and reconfigured to provide content updates with 2010 dates to Symantec Endpoint Protection Manager (SEPM) servers. These updates are only available on LUA versions 2.2.2.x, 2.1.3.x, 2.1.2.x , and LUAU versions 1.5.7.x and 1.5.4.x. Other versions (LUA 2.2.1.13 and so on) will not be able and should be upgraded. The latest releases of LUA 2.x and LUAU 1.x can be found at http://www.symantec.com/techsupp/home_homeoffice/products/lu/lu/files.html

Note:
To verify if patches for your particular build of SEPM are available for download via LiveUpdate, read Security Content for Symantec Endpoint Protection clients and Symantec Endpoint Protection Managers are dated Dec 31 2009 even when using the latest definitions.


 

Hide details for Instructions for LiveUpdate Administrator 2.2.x Users:Instructions for LiveUpdate Administrator 2.2.x Users:
 

    Ensure that LUA 2.2.2.9 (or higher) is in use.

    Updating the LiveUpdate Administrator Product Updates List:
    1. Log into the LiveUpdate Administrator (LUA) website
    2. Click on the Configure tab
    3. Choose Update Symantec Product Catalog in the My Symantec Products Tasks list


    Updating the LUA Download Schedule:
    1. Click the Download and Distribute tab on The LUA website
    2. Select Schedules from the Download and Distribute menu
    3. Select the Download Schedule currently configured to download Content Updates for distribution to the SEPM and click the Edit button
    4. Click the Add button in the Select Products section
    5. Re-Check the checkbox next to the Symantec Endpoint Protection v. 11.0 product
      • The Checkbox icon will change from a square to a checkmark indicating all content available for SEPM has been selected.
    6. Click the Add button
    7. Click the OK button to save the Download Schedule

    Reconfiguring the LUA Distribution Center:
    In order to ensure the LUA is updated with all of the needed Content Catalog entries for the new content streams needed for downloading 2010 definitions, any cached Product Catalog information must be flushed from the list. Follow these steps to flush any cached Content Catalog information.
    1. Click the Configure tab on the LUA website
    2. Select Distribution Centers from the Configure menu
    3. Select the Distribution Center currently configured to distribute Content Updates to the SEPM and click the Edit button
    4. Click on Symantec Endpoint Protection v11.0 English in the Product List section and click the Delete button
    5. Click the Confirm Delete button on the confirmation page
    6. Once the Endpoint Protection content has been flushed from the Distribution Center, click the Add button next to the Product List section
    7. Check the Symantec Endpoint Protection v.11.0 checkbox in the Add Products list
    8. Click the OK button to add the product to the Distribution Center
    9. Click the OK button to save the changes to the Distribution Center

    Updating the LUA Distribution Schedule:
    1. Click the Download and Distribute tab on The LUA website
    2. Select Schedules from the Download and Distribute menu
    3. Select the Distribution Schedule currently configured to distribute Content Updates to the SEPM and click the Edit button
    4. Click the Add button in the Select Products section
    5. Re-Check the checkbox next to the Symantec Endpoint Protection v. 11.0 product
      • The Checkbox icon will change from a square to a checkmark indicating all content available for SEPM has been selected.
    6. Click the Add button
    7. Click the OK button to save the Download Schedule


    Manually Downloading and Distributing new content:
    To ensure the new Content Updates are available as soon as possible, manually download and distribute the new updates.
    1. Click the Download and Distribute tab on the LUA website
    2. Select Schedules from the Download and Distribute menu
    3. Select the newly configured Download Schedule and click the Run Now button
    4. Once the manual download completes, select the newly configured Distribution Schedule and click the Run Now button


    Updating the Symantec Endpoint Protection Manager:
    The SEPM must first download and apply the 2010 definitions patch. After the 2010 definitions patch has been downloaded, the SEPM must then download and apply an updated product catalog in order to be able to download the new definitions with 2010 dates. Once the content catalog is updated, the SEPM will need to LiveUpdate one more time in order to download the newly created 2010 definitions.
    1. To download and apply the 2010 definitions patch:
      1. In the SEPM, click on the Admin Tab
      2. From the Admin menu, choose Servers
      3. Select the Local Site from the list
      4. Select Download LiveUpdate Content from the Tasks Pane
      5. Click the Download button in the Download LiveUpdate Content window
      6. This update will require a restart of the SEPM server
    2. To download the updated Content Catalog:
      1. In the SEPM, click on the Admin Tab
      2. From the Admin menu, choose Servers
      3. Select the Local Site from the list
      4. Select Download LiveUpdate Content from the Tasks Pane
      5. Click the Download button in the Download LiveUpdate Content window
      6. Click the Close button once the LiveUpdate session has completed
    3. To download new 2010 dated definitions:
      1. In the SEPM, click on the Admin Tab
      2. From the Admin menu, choose Servers
      3. Select the Local Site from the list
      4. Select Download LiveUpdate Content from the Tasks Pane
      5. Click the Download button in the Download LiveUpdate Content window
      6. Click the Close button once the LiveUpdate session has completed

    Caveats and considerations:
    • After making these changes, the LUA server will download both 12/31/2009 and 2010 definition sets until Security Response returns to normal publishing routines for SEP definitions.
      • This means each definition revision will require approximately double disk space on the LUA server and any distribution center.
      • Once the 2010 definition issue patch has been distributed to customers, Security Response will no longer publish 12/31/2009 rev. xxx definitions and the disk space required to host SEP definitions will return to normal.



 

Hide details for Instructions for LiveUpdate Administrator 2.1.x Users:Instructions for LiveUpdate Administrator 2.1.x Users:
 

    Updating the LiveUpdate Administrator Product Updates List:
    1. Log into the LiveUpdate Administrator (LUA) website
    2. Click on the Configure tab
    3. Choose Update Symantec Product Catalog in the My Symantec Products Tasks list


    Updating the LUA Download Schedule:
    1. Click the Download and Distribute tab on The LUA website
    2. Select Schedules from the Download and Distribute menu
    3. Select the Download Schedule currently configured to download Content Updates for distribution to the SEPM and click the Edit button
    4. Select Symantec Endpoint Protection v11.0 from the Product list and click the Delete button
    5. Click the Confirm Delete button on the confirmation page
    6. Click the Add button in the Select Products section
    7. Check the Symantec Endpoint Protection v11.0 checkbox and click the Add button
    8. Click the OK button to save the Download Schedule

    Reconfiguring the LUA Distribution Center:
    In order to ensure the LUA is updated with all of the needed Content Catalog entries for the new content streams needed for downloading 2010 definitions, any cached Product Catalog information must be flushed from the list. Follow these steps to flush any cached Content Catalog information.
    1. Click the Configure tab on the LUA website
    2. Select Distribution Centers from the Configure menu
    3. Select the Distribution Center currently configured to distribute Content Updates to the SEPM and click the Edit button
    4. Click on Symantec Endpoint Protection v11.0 English in the Product List section and click the Delete button
    5. Click the Confirm Delete button on the confirmation page
    6. Once the Endpoint Protection content has been flushed from the Distribution Center, click the Add button next to the Product List section
    7. Check the Symantec Endpoint Protection v.11.0 checkbox in the Add Products list
    8. Click the OK button to add the product to the Distribution Center
    9. Click the OK button to save the changes to the Distribution Center

    Updating the LUA Distribution Schedule:
    1. Click the Download and Distribute tab on The LUA website
    2. Select Schedules from the Download and Distribute menu
    3. Select the Distribution Schedule currently configured to distribute Content Updates to the SEPM and click the Edit button
    4. Select Symantec Endpoint Protection v11.0 from the Product list and click the Delete button
    5. Click the Confirm Delete button on the confirmation page
    6. Click the Add button in the Distribute available updates for this product list section
    7. Check the Symantec Endpoint Protection v11.0 checkbox and click the Add button
    8. Click the OK button to save the Distribution Schedule


    Manually Downloading and Distributing new content:
    To ensure the new Content Updates are available as soon as possible, manually download and distribute the new updates.
    1. Click the Download and Distribute tab on the LUA website
    2. Select Schedules from the Download and Distribute menu
    3. Select the newly configured Download Schedule and click the Run Now button
    4. Once the manual download completes, select the newly configured Distribution Schedule and click the Run Now button


    Updating the Symantec Endpoint Protection Manager:
    The SEPM must first download and apply the 2010 definitions patch. After the 2010 definitions patch has been downloaded, the SEPM must then download and apply an updated product catalog in order to be able to download the new definitions with 2010 dates. Once the content catalog is updated, the SEPM will need to LiveUpdate one more time in order to download the newly created 2010 definitions.
    1. To download and apply the 2010 definitions patch:
      1. In the SEPM, click on the Admin Tab
      2. From the Admin menu, choose Servers
      3. Select the Local Site from the list
      4. Select Download LiveUpdate Content from the Tasks Pane
      5. Click the Download button in the Download LiveUpdate Content window
      6. This update will require a restart of the SEPM server
    2. To download the updated Content Catalog:
      1. In the SEPM, click on the Admin Tab
      2. From the Admin menu, choose Servers
      3. Select the Local Site from the list
      4. Select Download LiveUpdate Content from the Tasks Pane
      5. Click the Download button in the Download LiveUpdate Content window
      6. Click the Close button once the LiveUpdate session has completed
    3. To download new 2010 dated definitions:
      1. In the SEPM, click on the Admin Tab
      2. From the Admin menu, choose Servers
      3. Select the Local Site from the list
      4. Select Download LiveUpdate Content from the Tasks Pane
      5. Click the Download button in the Download LiveUpdate Content window
      6. Click the Close button once the LiveUpdate session has completed

    Caveats and considerations:
    • After making these changes, the LUA server will download both 12/31/2009 and 2010 definition sets until Security Response returns to normal publishing routines for SEP definitions.
      • This means each definition revision will require approximately double disk space on the LUA server and any distribution center.
      • Once the 2010 definition issue patch has been distributed to customers, Security Response will no longer publish 12/31/2009 rev. xxx definitions and the disk space required to host SEP definitions will return to normal.


 

Hide details for Instructions for LiveUpdate Administration Utility 1.5.x Users:Instructions for LiveUpdate Administration Utility 1.5.x Users:
 

    1. Click on the Retrieve Updates tab in the LiveUpdate Administration Utility window
    2. Ensure the Download Directory is populated with a directory location on a drive with enough free space (minimum 1 - 2 GB)
    3. If LiveUpdate Administration Utility (LUAU) has not been previously configured to download SEP content:
      LUAU must first download the latest Product Catalog before SEP updates will be available in the LUAU interface. The following steps will update the Content Catalog.
      1. Check the English checkbox in the Language Updates section
      2. Check the SymEvent checkbox in the Symantec Product Line section
      3. Click the Retrieve button - this initiates a Windows LiveUpdate session.
      4. Click the Start button on the LiveUpdate window
      5. Click the Close button When LiveUpdate completes - a LiveUpdate Administration Utility dialog box will notify you of how many updates were retrieved.
      6. Click the OK button on the LiveUpdate Administration Utility notification window
      7. Uncheck the SymEvent checkbox in the Symantec Product Line section
      8. Check the Symantec Endpoint Protection checkbox in the Symantec Product Line section
         
    4. If LUAU has been previously configured to download SEP content:
      LUAU must be updated before the new 2010 definition content will be listed in the Product Catalog. Once the new content is listed, the cached Product Line entries must be refreshed in order to download the new 2010 content.
      1. Click the Retrieve button - this initiates a Windows LiveUpdate session.
      2. Click the Start button on the LiveUpdate window
      3. Click the Close button When LiveUpdate completes - a LiveUpdate Administration Utility dialog box will notify you of how many updates were retrieved.
      4. Click the OK button on the LiveUpdate Administration Utility notification window
      5. Uncheck the Symantec Endpoint Protection checkbox in the Symantec Product Line section
      6. Re-check the Symantec Endpoint Protection checkbox in the Symantec Product Line section
         
    5. Downloading updated SEP/SEPM/SPC content in LUAU:
      1. Click the Retrieve button - this initiates a Windows LiveUpdate session.
      2. Click the Start button on the LiveUpdate window
      3. Click the Close button When LiveUpdate completes - a LiveUpdate Administration Utility dialog box will notify you of how many updates were retrieved.
      4. Click the OK button on the LiveUpdate Administration Utility notification window







Technical Information
To download the definitions with 2010 dates for patched SEPMs, please ensure that "SESM Virus Definitions Win32 v11 v2"  "SESM Virus Definitions Win64 (x64) v11 v2" and the v2 "SESM IPS Signatures " are selected for download in LUA 2.x.

 


 


Ensure that Distribution is configured to include these  v11 v2 contents. Distribution will not automatically be added when the v11 v2 definitions are added to the download schedule. The following sample screenshots show healthy download and distribution status for the necessary contents.
 



 


 


 

Please note that SEPMs which are not patched do not require these v2 definitions.  The v2 definitions are only for patched SEPMs.



Legacy ID



2010010901022848


Article URL http://www.symantec.com/docs/TECH98456


Terms of use for this information are found in Legal Notices