Configuring Group Update Providers in Symantec Endpoint Protection 11.0 RU5
Configuring Multiple GUPs in SEP 11.0 RU5 release, has added a certain dynamics's to the way virus definitions are provided to the clients.
The figure below is a representation of various possibilities of configuring a Group Update Provider:
As shown above, you can either configure a Single GUP or Multiple GUPs in SEPM.
When to use multiple GUPs:
- You run the latest client software on the computers in your network Multiple Group Update Providers are supported on the computers that run the latest client software. Multiple Group Update Providers are not supported by legacy clients. Legacy clients cannot get content from multiple Group Update Providers. Legacy clients cannot be designated as a Group Update Provider even if they meet the criteria for multiple Group Update Providers. You can create a separate LiveUpdate Settings Policy and configure a single, static Group Update Provider for a group of legacy clients
- You have multiple groups and want to use different Group Update Providers for each group You can use one policy that specifies rules for the election of multiple Group Update Providers. If clients change locations, you do not have to update the LiveUpdate Settings Policy. The Symantec Endpoint Protection Manager combines multiple Group Update Providers across sites and domains. It makes the list available to all clients in all groups in your network.
- Multiple Group Update Providers can function as a failover mechanism. Multiple Group Update Providers ensure a higher probability that at least one Group Update Provider is available in each subnet.
Following screenshots will give you a glimpse of how to configure GUPs in RU5:
Here is the screen you see when you go to SEPM Console->Policies->Liveupdate Policy-> Liveupdate Settings Policy-> Server Settings-> Group Update Provider:
- As we have chose multiple GUPs, we have to provide a GUP List:
- When you click on Add, you have to specify Rule Criteria:
- The first option you get is If you want to specify a Computer name or IP Address:
- The second option is to specify the registry Keys that will define a GUP:
- Once you choose the main type as the Registry key, you can further specify 3 attribuites :
1. Registry Key :
2. Registry Value:
3. Registry key Name:
The Third option we have is to choose from the Supported Operating Systems for installing SEP 11 RU5.
- All these rules can be in 1 Rule Set. You can have multiple Rule Sets in your GUP configuration.
Here are some tips to know about the Rule Sets:
Rules are matched based on the logical OR and AND operators as follows:
* Multiple rule sets are OR'ed. A client must match one rule set. This can be useful while roaming across multiple locations. Your client will pass 1 rule set in a location and 2'nd Rule set in a different one, so the IP addresses of GUP will change automatically.
* Multiple rules are AND'ed. A client must match all the rules that are specified in a rule set.
* Multiple values for a rule condition are OR'ed. A client must match one value. For example, you might create RuleSet 1 that includes an IP address rule with several IP addresses. You then create RuleSet2 that includes a host name rule and an operating system rule each with multiple values.A client computer must match either RuleSet1 or RuleSet2.