Endpoint Protection

Symantec Endpoint Manager is installed on a domain.

I have many managed computer on the domaine.

Can i do the same thing on a non-domain computer?

I gonna have to set local credential of the computer insted of my domain admin acount when i deploy the Antiviruse from the server but after this...

I am going to be able to see the virus definition version and manage the scan from the server?

Even if the password of the account which I used during the installation changes?

Thanks!

Jim

yep, no problems with that

@Jim2009:

Finding unmanaged computers would allow you to search either by IP or Computer Name with Logon credentials that can allow you to logon on a Domain or Workgroup level. It's in the Clients window of SEP Management Console.

After installation, as long as the connection between the server and client is maintained or can be made, then you can manage the computer.

Is this for a desktop or a laptop?

It's for laptop.

What do you mean by as long as the connection between the server and client is maintained or can be made?

Laptops goes out of the network often in a week.

When they come back the connection can be done without any credential?

If i understand, the credential is only for the installation, after the client can contact the server without any problem is the computer is on the same network.

Thanks!

Jim

You can enable locations to get the job done, one location is the client communication to the management server by default, and other location is client not communicate to the management server. each location setting can have its own way to configure the policy, I think the most you care is how client can receive virus definitions when the laptops are not communicating to your management, which you can configure the client to go to Symantec LU site to receive the av definitions. Hope this is helpful.

I know about location and how to configure update for laptop when they are not on the network.

I just want to be sure that i can see  information about Virus definition version, viruses detection... of non-domain computer.

Thanks

Jim

When the laptop connects to the network. It will report its logs to the SEPM.
I'm assuming that it gets its updates from the internet.

It is possible, but you will need open the firewall port so that your client can communicate with your management server. but I will not recommend to do that.

Here is the SEP communication port
http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2007090614430148

yes, you need to open a port between the client and the SEPM, however you can customize the port.

Cheers
Pete!

You can manage all ur clients if it is accesseble in network

Say you have 50 clients on a diffrent domain or a workgroup out of which 10 are laptops.

For the clients to be able to get updates from the server and to be able to communicate to the server

1)Make sure you are able to ping client from the server
2)Make sure port for File & Print sharing are open for Client to be able to post logs and retreive updates from the server.
3)For the laptops you can put them in a diffrent group and you can enable Manual Liveupdate scheduling and downloading.
4)It does not matter how you are installing SEP on them Deploying them or Locally installing them with the exported package.

yes, it is possible.

HAHA. ROTFFL !!!!!

@ Kajal - WOW, the simplest answer I've seen till date on the forums!!!!!

you can create new location. thats why you can create new live update policy.
we have laptops too and i create new location. and out of office rule. its rule works with this rule
"If client cannot connect to SEPM" change location"
and out of office rule say go to internet for live update.
Have a nice day. 

"I just want to be sure that i can see information about Virus definition version, viruses detection... of non-domain computer"

No need to worry whether the client is part of Domain or Workgroup.

After creating a Client installation package, if you install it on the Domain Client or Workgroup Client it will start reporting to the SEPM and provide the information about the Defintion date, scan or not etc...

Only for laptop users who are roaming for them the information on the console will not be changed untill and unless they are on network.

Hope this address your query

Tank you for all you answer!!!

Jim