Hello,
some questions abour the SNAC on SEP 12.1 clients :
- I have a Host integrity policy in a Location, and a lot of other policies (Antivirus, Firewall, Exceptions...).
I want to have my client put in the Quarantine zone if the HI fails. In this Quanrantine zone, I set a different Firewall and Liveupdate policy. Do I have to duplicate in this Quarantine zone all other policies, even if they are the same as in the no-quarantine zone ?
One strange behaviour is than it seems that when I'm in this Quarantine zone, the IPS on lcient goes to disabled... Only thing that can explain this is that in the quarantine zone I don't duplicate the IPS policy. If that is the reason, why does my Antivirus is not disabled because I don't have the duplicate policy in this quarantine zone as well ?
- In the HI policy, I check the signature age on client. I checked 'If not, update the signature file' and enter the following program command line : ' "c:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SepLiveUpdate.exe" '.
I heard that this file replace the LUALL and is ONLY able to update on LUA servers over internet or localy, but not SEPM servers ! So how can I do if I need to force a client to check update on the SEPM server if I don't have local LUA and no access on internet ? Is there a solution with the URL update and a specific SEPM URL ? Or an 'intelligent package' -like that can be created on hte SEPM to be available for the client ?
Moreover, If the sepliveupdate fails, how to force a repeated check each X minutes for example ? I saw an option in the HI policy but only for URL download..
Thanks in advance for your help.
Regards