Endpoint Protection

I've been looking at the Installation Guide for 11.0.5, and it says Endpoint Protection Manager and embedded database is supported on 64 bit Windows server, but Quarantine Server says "Not tested". Not tested? Really? No one at Symantec thought to test Quarantine Server on a 64 bit server? Sure. Maybe it should say "Not Supported". So what's the real story? If SEPM runs on 64 bit (I think I read on one of the forums that it's just the 32 bit version), why wouldn't Quarantine Server run on 64 bit? Has anyone here tried it? Does it work? I'd like to move all of my servers to 64 bit, and if it's a choice between 32 bit with Quarantine Server or 64 bit without Quarantine Server, I'm inclined to run 64 bit and go without Quarantine Server until Symantec releases a 64 bit compatible version.

Also, I see Windows XP SP1 is supported (up to 100 clients), but not Vista or Windows 7. I had hoped to use a dedicated Windows 7 virtual machine to run this. When I upgraded from Symantec Antivirus Corporate Edition 9 to 10 I had some pretty ugly problems (turned out to be a conflict with some other software), so I'd hoped to install SEPM in its own VM; I also don't want to waste a Windows Server license just for this. If someone could explain why it won't run on 7, I'd feel a lot less frustrated.  Better yet, is there a workaround?

 

Not many people use the quarantine server at all.  I can see why it is, what it is.  

And what are you talking about 100 user limit?  

SEPM can be virtualized, the embedded database supports up to 5000 clients (win2k3, XP, win2k8, 7).  A workstation OS is not supported for production, and only for test purposes.  That said the only supported OS, is a Windows Server OS to be the SEPM server.  11.0.5 is the only support Win7/Win2k8 SEP version.

 From SAV to SEP there was ONLY 1 thing that was not changed/Upgraded - Quarantine Server.
No NEw Quarantine Server has been released for SEP and as it is very less used and the current version works well..So there is a little bit to no chance of getting new Q server being released.
Where SAV was considered 64 bit was almost non-compatible( other than i can install SAV client )

WIn XP,2k3,2k all use IIS 5/6. In Server2008 IIS 7 was released and MR4 was compatible with it.
However Vista was released with IIS7 and Win7 also uses IIS7.
But WIn2008 being server class gave addtional components for IIS7 main IIS 6 backward compatibility..which i am not sure if it is present in vista and win7.

Well I am disappointed that they didn't include 64-bit support here, I'm not sure the average installation needs a quarantine server.  I'm not sure what advantage it would give the typical installation that wouldn't be equally offset by the increased overhead to manage it.

Hi Eric,

I'm considering an install of our SEPMs on 64 bit VMs- did you notice any gotchas when installing the SEPM on a 64 bit server?

Apparently I'm unusual in that I've been using Quarantine Server for years. I first started using Norton Antivirus Corporate Edition 7 (7.5?), and I'm pretty sure I had Quarantine Server running then. I've keep it up through my current 10.2. I don't submit viruses to Symantec, but I do find Quarantine Server very handy to help keep track of what computers keep getting infected and what viruses keep getting in my network. I'm one of those people who *strongly* believes that people should NOT be logged on with Administrator rights, so some of my users have a separate account with Administrator rights (and most don't have Admin rights at all). If I can quickly bring up the Quarantine Console and show management that a user is abusing the privileged and causing problems, I can prove my point more easily. If Quarantine Server shows the same virus comes in on different computers, it can also help me identify where I might need to investigate security problems I hadn't realized existed. So why don't other people use it? I see it as one more tool in my security toolbox, although I use it for reporting, not for fixing.

We haven't noticed anything unusual with the VMs or running SEPM on 64 or 32 bit.  The quirks seem to be more universal.

I would love to use it for reporting purposes but don't have any say. Never got a straight answer to why it couldn't be used either. I did set it up in a test environment and love it.

This, well, doo-doo about it not being used is just that, IMO.
I use it and ALWAYS HAVE.
Folks who don't have no idea how handy it is in an environment where the computer users are, well, total dummies and clutzes with a computer and can't follow simple instructions for even shutting one off.
Our people also HAVE NOT RIGHTS. Computers should NOT be used with users as administrators! Too risky, too dangerous, and NO control!
We can't even dream of them quarantining anything or submitting it and we don't have the people to travel over 40 offices across the state, so Q-server to the rescue!
ANY item that's quarantined ends up back here on the q-server, where I can restore it, check it out, and even SUBMIT it myself, and trust me, to date, and this is ONLY April, I've submitted several and I mean several files that there was no detection for directly and new defs were built from my submissions.
So don't tell me it's not handy, useful, or serves no purpose or doesn't do much.
I can also see at a glance the files themselves here locally from 40 different offices, it's a great list of who got infected, what sort of file it was, and from where.
Q-server is a great tool.
Submissions, reporting, etc - and IF Symantec would just wake up a tad and upgrade it and make it what it was, we could also AUTOMATE new defs going out from our submissions! WOW, how often have I had to MANUALLY do all this when Q-server used to do it for me with SAV.
Do a search for my ID here with quarantine server or q-server as the terms - you'll see what it's done for us and why I love it.
In fact, it's one reason to use the products at all, IMO. It could automate your entire system! Literally! Quarantine something it goes to a central server, it's submitted, defs come back, they can be piloted, the pushed into production - all from this one product.
How wonderful is that?
Not a useful product? BUNK
Few even use it? I'd like to see the proof or study or numbers........
Count me in with P. Gibson..................

PS - do a generic search for the "quarantine server" terms - you might be surprised as how many are asking about it.
Not commonly used?
BUNK!! (family forum)
I was amazed, no, not really, at the hits when I did a search.
Quarantine server users are not alone, and not small in numbers, so why is this great feature for SAV and SEP not taken seriously by it's creator??