Video Screencast Help

Basic Symantec Endpoint Protection Monitor Pack

Created: 19 May 2009 • Updated: 12 Oct 2009 | 13 comments
Joseph_Carson's picture
+5 5 Votes
Login to vote

This is a basic Monitor Pack to monitor the SEP Windows Services and any Critical NT Events that occur on the Server.  This will allow you to ensure that SEP is running on the server and alert you to any problems that may occur.

This Pack now contains both Agent Based and Agentless Policies.  Agent Based can be run on Servers and Agentless can be targeted for both Servers and Desktops.

Symantec Endpoint Protection Policy monitors the following items:

SEP Windows Services with Auto Remediation Restart via Service Control Task

The SEP Monitor Pack has now been updated to monitor for the following Alerts:

  • SEP Access Denied
  • Anomaly Found
  • Client has not checked in
  • Shield Violation
  • License Error
  • Scan Omission
  • Auto-Protect Error
  • Auto-Protect Load Error
  • Tamper Attempt
  • TruScan Engine Load error
  • Unable to create backup
  • Virus Behavior Detected
  • Virus Found



Comments 13 CommentsJump to latest comment

Hear4U's picture

Thank you to everyone who requested this SEP File.  Let us know what other types of downloads you would like to see.

Eric

check out the community at www.infoblox.com/community

0
Login to vote
Ziaul Hassan Khan's picture

Kindly send me the Installation and management procedure for Symantec endpoint so that I will able it to configure and install in my environment.

Thanks

0
Login to vote
Joseph_Carson's picture

Hello All,

The Basic Symantec Endpoint Protection Monitor Pack is an add-on to the Altiris Server Management Suite Monitor Solution in which the link to the trialware can be found below and additional information for what else is available within Server Management Suite.

http://www.symantec.com/business/server-management-suite

Customers using both Server Management Suite and SEP on their Servers can now Monitor that SEP is running, if the service fails it will automatically restart and also report any Critical NT Events using the SEP Monitor Pack.

A demonstration Video will be made available this week on the Monitor Pack Community that will show a Demo for Monitoring using the SEP Monitor Pack and also additional Demo Video's for Installation, Configure, Monitoring Security Groups Changes, Monitoring Disk Space and other additional helpful video's.

Please join the Group to get Notifications or Alerts when these Video's will be available for viewing.

Again please do not hesitate to contact me for further information.

Joseph Carson

+1
Login to vote
Jobert's picture

thanks Joseph_Carson...
this is what I needed..

0
Login to vote
kamran 2's picture

Please tell me how to use this .I wll be greatful

0
Login to vote
Joseph_Carson's picture

Hello kamran 2,

If you are currently using Altiris Server Management Suite 7 and Monitor Solution you can easily import the Monitor Pack using the Import Monitor Task and this will import the Basic SEP Monitor Pack.  There should be a demo video on the Monitor Community on how to do this along with Install instructions also. 

Once you have importated the Pack then all you need to do is assign the Monitor Policy to the Servers running SEP and they will then start to be monitored and in the case that the SEP Service has any problems or is stopped it will be automatically restarted and an alert will be generated appearing in the Event Console.  Also if any NT events occur on the Server with SEP the alert will be displayed in the Event Console in which you can see the details and decide if you need to remote restart the service or do maintenace of any kind.

If you need more help i would be more than happy to assist.

Best Regards,

Joseph Carson
Product Manager - Monitoring and Alerting

+1
Login to vote
Amihan's picture

this is very helpfull indeed...
thank you

0
Login to vote
brav's picture

Can this be used without Altiris ?

m00

0
Login to vote
Joseph_Carson's picture

Hello Brav,

No this Monitor Pack cannot be used without Altiris.  it requires Server Management Suite and Symantec Endpoint Protection.

Kind Regards,

+1
Login to vote
Joseph_Carson's picture

 

This is a basic Monitor Pack to monitor the SEP Windows Services and any Critical NT Events that occur on the Server.  This will allow you to ensure that SEP is running on the server and alert you to any problems that may occur.

This Pack now contains both Agent Based and Agentless Policies.  Agent Based can be run on Servers and Agentless can be targeted for both Servers and Desktops.

Symantec Endpoint Protection Policy monitors the following items:

SEP Windows Services with Auto Remediation Restart via Service Control Task

The SEP Monitor Pack has now been updated to monitor for the following Alerts:

  • SEP Access Denied
  • Anomaly Found
  • Client has not checked in
  • Shield Violation
  • License Error
  • Scan Omission
  • Auto-Protect Error
  • Auto-Protect Load Error
  • Tamper Attempt
  • TruScan Engine Load error
  • Unable to create backup
  • Virus Behavior Detected
  • Virus Found
+1
Login to vote
Brian_W's picture

Hi J_C,

Do you have anything I can use to monitor my SEP servers? We are using Microsoft Operations Manager. Even any suggestions on what event log errors to monitor would be very helpful.

Thanks!

0
Login to vote
chanakavip's picture

Hi,

I want to monitor SEP from Microsoft System center Operations Manager 2007 R2 ,

kindly helpe me on this.

 

cheers

 

chanaka

0
Login to vote
aenagy's picture

When will Symantec release a SEP management pack for SCOM 2007/R2?

0
Login to vote