Hi,
i have symentic endpoint protection server installed on windows server 2012, i have two AD server with different location. One AD sever is connected to the symentec server, but i want to replicate the another AD server with symentic which is located in another location who is with another public IP, so that the secondry AD server update the deffination files and update to the users.
Thanks.
Does another AD server are connected to SEPM ?
If not you need to open firewall Port 8014 and replace sylink.xml file.
Communication ports used by Symantec Endpoint Protection
https://support.symantec.com/en_US/article.TECH163787.html
Update sylink.xml to restore communications between Endpoint Protection Manager and clients (SylinkDrop)
https://support.symantec.com/en_US/article.TECH157585.html
Thanks for the reply.
I found this article, is this will work for the same.
https://support.symantec.com/en_US/article.TECH181458.html
in that i need to add Server IP to sync, if i put my AD's public IP in that does it work ?
Integrate Active directory with sepm you cannot update defination all AD client,you need to install sep client each system.
You can try to add Ip address and need to open LDAP Port 389,636 (Use Secure Connection) for sync.
yes, my primary AD is integrated with semp, and i installed the client to the users, but my secondary AD is on another location with different public ip, i sync both ADs, but my secondary AD is not syncing with semp. if my secondary AD will sync with semp then my problem will solve.
have you suceesfully added secondary AD ?
yes, my both ADs are working properly.
But in my secondary AD port 8014 in not open, do i have to open that port also ?
No, Have you currently sync secondary AD in SEPM ?
Port 8014 for update SEP client to SEPM for virus defination.,But here is your issue for sync secondary AD in SEPM.
yes. Please suggest me what should i do.
You can add Ip address and open LDAP Port 389,636 (Use Secure Connection) for sync.
LDAP port open in secondary AD server ? and where i have to add IP ?
You need to open SEPM server to AD .
See some of articles
https://support.symantec.com/en_US/article.TECH96201.html
https://www-secure.symantec.com/connect/articles/best-practices-ad-integration-sepm
You're going to expose AD to the Internet?!