Endpoint Protection

 View Only

  • 1.  Scanning PC before full network access

    Posted Aug 11, 2014 10:43 AM

    I have a scenario where I have Symantec Endpoint Protection (12.1) on all my PC's/laptops but would like to have a system that would scan any system that has been off the network for say 7 days etc before its allowed full network access.

    Idea being that if someone was working away offline and had picked something nasty up for a USB etc when it next touches the network a full scan would be started and the system held in some sort of container until the scan was complete.

    Im not sure such a practice is supported by SEPM but thought I would ask.

    Thanks

     

     



  • 2.  RE: Scanning PC before full network access

    Posted Aug 11, 2014 10:47 AM

    SEP wouldn't be able to schedule this but you could use SNAC to write a policy to identify those systems and have them scanned before coming onto the network.



  • 3.  RE: Scanning PC before full network access

    Posted Aug 11, 2014 10:51 AM

    Thanks I thought that might be the answer, I suppose the issue I would have is that they would still connect to the network with all the same access as they had before, so if something was infected yes the scan could run quickly and identify it however it would still be happily on the network whilst its scanning.