Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

how to update virus defs in unmanaged symantec clients without access to internet

Created: 10 Sep 2013 • Updated: 12 Sep 2013 | 9 comments
This issue has been solved. See solution.

Hi all,

I have installed unmanaged client in few machines, and those have no access to internet. Is there any way i could download latest virus defs in some other system and dump them to these machines.

I know if those have internet access , live update is the way. In my case there is no SEPM and clients have no internet access.

And i have SEP 12.1.2 version with me.

Please suggest.

Operating Systems:

Comments 9 CommentsJump to latest comment

.Brian's picture

Use intelligent updater found here:

http://www.symantec.com/security_response/definiti...

Just download the version for your architecture and run it and it will update the defs

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

anoopjeevan's picture

hi brian,

will this work even if the unmanaged clients have no access to internet??

Regards,

Anoop

.Brian's picture

Yes, intelligent updater contains the full def set

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

SOLUTION
anoopjeevan's picture

hi Brian, 

So all i need is to install the setup and run this intelligent updater. My system would be with latest virus defs. 

Regards,

Anoop Jeevan.

Tq brian for quick reply 

.Brian's picture

Yes just download, run the file and the AV defs will update.

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

.Brian's picture

glad to help

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

Mithun Sanghavi's picture

Hello,

Check this Article:

How to update virus definitions and other content with Symantec Endpoint Protection and Symantec Network Access Control

http://www.symantec.com/docs/TECH102467

You may be interested in this Script available in the Download section:

Script to download Definitions from SEPM

Secondly, Incase if this is only 1 or few unmanaged client machines, then you could update these clients Manually by Downloading and Running the Intelligent updater which would update the Definitions.

Check this Article:

How to update definitions for Symantec Endpoint Protection using the Intelligent Updater

http://www.symantec.com/docs/TECH102606

The below articles tell you how to do this:

Using Intelligent Updater files to update client virus and security risk definitions

http://www.symantec.com/docs/HOWTO80903

How to manually update definitions for a managed Symantec Endpoint Protection Client using the .jdb file

http://www.symantec.com/docs/TECH104363

The above article will need to be used with this article (http://www.symantec.com/docs/TECH105498) to get the unmanaged client to allow 3rd party content distribution.

However, incase if you are carrying a Number of Unmanaged clients, then you may need to take assistance of Liveupdate Administrator Utility.

Check these Articles below to update:

Is it Supported to Configure Unmanaged Symantec Endpoint Protection Clients to Update from LiveUpdate Administrator 2.x rather than the Symantec Endpoint Protection Manager?

http://www.symantec.com/docs/TECH123388

Installation and configuration of LUA

https://www-secure.symantec.com/connect/articles/i...

Updating downloads in an internal LiveUpdate Administrator 2.x Server using the downloads from an external LiveUpdate Server

http://www.symantec.com/docs/TECH106254

How to change the LiveUpdate source of an unmanaged Windows Symantec Endpoint Protection 12.1 Client

http://www.symantec.com/docs/TECH166129

In case, you migrate to the Latest version of SEP 12.1 RU3, you may be able to use the Intelligent Updater for SONAR and IPS as well - 

SONAR and IPS Intelligent updater (IU) are now available on :

http://www.symantec.com/security_response/definitions.jsp

NOTE: These SONAR and IPS Intelligent updater are only for SEP 12.1 RU3.

Hope that helps!!

Mithun Sanghavi
Senior Consultant
MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

Chetan Savade's picture

Hi,

Thank you for posting in Symantec community.

I would request to use SEP 12.1 RU3 version to have more protection on unmanaged clients.

Because when you run intelligent updater it will update only AV/AS. It can't update  Proactive Threat Protection (PTP) & Network Threat Protection (NTP).

However with SEP 12.1 RU3 onwards Intelligent Updater support for Proactive Threat Protection and Network Threat Protection.

This is a summary of the feature updates in SEP 12.1 RU3. For full details, read the  Release Notes.

  • Plug-in support for Microsoft Outlook 2013
  • Support for Microsoft Exchange 2013 Server
  • Intelligent Updater support for Proactive Threat Protection and Network Threat Protection
  • FIPS 140-2 certification

For more reference check this article: http://www.symantec.com/docs/TECH206828

Chetan Savade
Sr.Technical Support Engineer, Endpoint Security
Enterprise Technical Support
CCNA | CCNP | MCSE | SCTS |

Don't forget to mark your thread as 'SOLVED' with the answer that best helps you.<