Endpoint Protection

This is a two part question. I would like to create a package and assign it to a group. 1. Is it possible to do this and for clients that have NO AV installed? For Example my "New York group" has 11 RU6 installed, on 10 PC's. An 11th is added without any AV package, is it possible to force SEP to be installed using this method?

2. How can I get the upgrade package to direct at a local server, and not over an HTTP or HTTPS address or from the management serever. Such as, My New York clients need the upgrade, but I don't want to push from a remote site, I want NYServer have the install package and do it....

Confused !!!!!

1. You cannot install AV on the client where SEP is not installed. To install you have to Enable NAC & use DHCP enforcer to complete this.

2. Create a IIS Server in New york  & publish the virtual directory & add the client package to update the clients


Regards...
Ramji Iyyer

For your Question 1, you cannot do it using the "Install Packages" method. You would need to do it via the Find Unmanaged Computer option on the Clients tab and push it that way from SEPM

I wanted an automated install for any new systems that did not have it. I guess it can be done via a script.

If you export a package that joins a computer to group 'New York', you could place it on a webserver or fileserver and have it automatically run on new machines when they join the domain by way of Group Policies.  Make the install silent and not require a reboot and it should just be another step that occurs in the background when the computer first authenticates to your network.