Hi all,

I have been reading a LOT of info on the symantec site about migrations, updates, clean installs etc.  I think I would like to do a fresh install of SEPM 12.x on my existing server after uninstalling SEPM 11.x.  Then if it is not too painful, I'd like to migrate the current clients to the new SEPM and update those clients to 12.x at my leisure b/c I don't have the means to do them all at once.  If anyone has done this successfully, can you list your steps taken or point me to the "best" Symantec Tech article to applies mostly to this scenario?

Tnx in advance...

Upgrading or migrating to Symantec Endpoint Protection 12.1

http://www.symantec.com/business/support/index?page=content&id=TECH163602

Symantec Endpoint Protection 12.1: Installing the Manager for the first time and deploying clients

http://www.symantec.com/business/support/index?page=content&id=TECH163580

Steps to prepare computers to install Symantec Endpoint Protection 12.1 client

http://www.symantec.com/business/support/index?page=content&id=TECH163112

Tnx for the reply.....I have read these.  I am hoping to hear that someone has done this migration successfully without too much difficulty.  Also, some items below I'm not sure about such as how to turn off tamper protection, turning off roaming, unlock server groups, dont think i have a reporting server....I assume this is somewhere in SEPM (hopefully not necessary to change settings on every client SEP).

tnx

 Prepare Symantec Client Security or Symantec AntiVirus for migration

1. Prepare Symantec Client Security or Symantec AntiVirus for migration: Disable scheduled scans, disable LiveUpdate, turn off Tamper Protection, turn off Roaming, Unlock server groups, and uninstall/delete Reporting servers.

So you are migrating SAV 10.x clients as well?

Hi,

We would like to know why you want to uninstall existing SEPM 11.x ? & Install fresh SEPM 12.1?

Why can't go with upgrade?

Total how many clients are reporting to existing SEPM?

Sure....I would prefer the uninstall old/reinstall new method b/c for me it will be more clean.  

In addition, I have had problems upgrading between 11.x versions in the past using all the symatec white papers and proper steps and upgrade version jumps where after completion, things didn't work properly so I had to start from scratch...fresh install...of course that is another past issue not importantto discuss now.  So it's my personal preference. 

Anyway, i'm still unclear on the instructs; 

Prepare Symantec Client Security or Symantec AntiVirus for migration Prepare Symantec Client Security or Symantec AntiVirus for migration: Disable scheduled scans, disable LiveUpdate, turn off Tamper Protection, turn off Roaming, Unlock server groups, and uninstall/delete Reporting servers.

Are these features within the SEPM client group policy settings that I need to set to "off"?  How would this apply if I in effect have the 11.x SEPM off line?  Or is the idea that after the 11.x SEPM is inactvie, visit each client and manually deactivate these features?  

I'm assuming that "Migrating legacy group and policy settings using the Migration Wizard" should be the first thing I do...have not done that before but I assume it will outputa config file that I will "import?" with the new 12.x SEPM?

Thanks...

Hi,

Thanks for clarification.

Prepare Symantec Client Security or Symantec AntiVirus for migration - This option is for legacy SEP version i.e SAV 8.x, 9.x & 10.x

Not applicable for SEP 11 clients.

You are planning to do a fresh install. Have you configured custom policies in SEPM? If yes, how many?

Total how many clients are in the network?

If it is manged clients ,you can use below KB to disable tamper protection

How to configure Tamper Protection in Symantec Endpoint Protection 11.0

For unmanaged cleints you may use below KB

Enabling, disabling, and configuring Tamper Protection in Endpoint Protection on unmanaged Clients

--------------------------------------------------------------------------------------------------------------------------------------

You can install fresh SEPM and you can use sylink replacer utility to connect the clients to new SEPM.

Tnx for the post about tamper protection.  I was lucky doing a "from stratch" install last time when the 11.x upgrade process didn't work b/c I had the backups from my disaster recovery procedure for re-migration of the clients.  However, I don't know if disaster recovery files will be usable from my current 11.x SEPM to 12.x SEPM.  I guess I'll stumble through the process and hope for the best....

Have a look at this KB as well

Using 11.x disaster recovery files with Symantec Endpoint Protection Manager 12.1

Hi,

I strongly recommend you to have a look on the both articles.

So many users and customers complain about issues after migration when they finally realize at the end they didn't respect the migration path supported of the product.

If you have SEPM and SEP clients from 11.0.X to 11.0 RU6MP3, you should migrate to 12.1.1000.157 RU1.

If you really want to migrate to SEPM/SEPM 12.1.1101.401 RU1 MP1, you should migrate to 12.1.1000.157 RU1 first before that.

Related articles about these information:

Migration path supported to migrate to SEP 12.1 RU1 MP1:

http://www.symantec.com/business/support/index?page=content&id=TECH163602

Migration path supported for SEP 12.1.1000.157:

http://www.symantec.com/business/support/index?page=content&id=TECH192779

Please be aware on the second article that where it's displayed SEP 12.1 RTM and higher version, it means higher Release Update (RU) version only (excluding SEP 12.1 RU1 MP1 because you need to migrate first to 12.1.1000.157 RU1 before to migrate to 12.1 RU1 MP1.

The migration done directly to 12.1 RU1 MP1 could work but it's not officially supported and you shouldn't be surprised if short time after the migration that you're facing issues with your clients or your systems.

Kind Regards,

A. Wesker

Hello,

Incase, if you are migrating from SAV 10 to SEP 12, check this Thread: 

https://www-secure.symantec.com/connect/forums/migrating-sav-10x-sep

However, 

Migrating from Symantec Endpoint Protection v.11.x clients to Install Symantec Endpoint Protection v.12.1. could migrate flawlessly without any issues.

It is always recommended to perform a Disaster Recovery for SEPM 11.x before Migrating to SEP 12.1 as a Backup step.

Here are few steps to look at for Migration:

1) How to upgrade the Symantec Endpoint Protection Manager (SEPM) to Version 12.1 RU1

http://www.symantec.com/docs/TECH176260

2) Upgrading and migrating to Symantec Endpoint Protection 12.1

http://www.symantec.com/docs/TECH163602

3) Steps to prepare computers to install Symantec Endpoint Protection 12.1 client

http://www.symantec.com/docs/TECH163112

4) Activating your Symantec Endpoint Protection 12.1 product license

http://www.symantec.com/business/support/index?page=content&id=TECH162623

Also, check the Articles for the Migration on :

Quick Access to Symantec Knowledgebase Articles of Symantec Endpoint Protection 12.1

https://www-secure.symantec.com/connect/articles/quick-access-symantec-knowledgebase-articles-symantec-endpoint-protection-121

SEP 11.x to SEP 12.1 Upgrade process graphical overview

https://www-secure.symantec.com/connect/articles/sep-11x-sep-121-upgrade-process-graphical-overview

WhitePaper for Migration: https://www-secure.symantec.com/connect/downloads/migration-whitepaper-symantec-endpoint-protection-version-121

Hope that helps!! 

Thanks all for the info and links!