Endpoint Protection

HELLO!

We have Altiris (6.0...) and SAV (11 MR6) infrastructures which covers over 20 000 clients.
Now we are going to upgrade SAV to SEP.
Before migration we must decide how to update AV definitions, IDS/IPS signatures, PTP signatures on SEP clients (with Altiris or with LUA).
Nowadays we use LUA for SAV, but we want to migrate to Altiris infrastructure in this process completely.

The questions are:
1) Can SEP Integration Component  completely replace LUA? Is there any limitations of definitions upgrade (may be Altiris can't upgrade IDS/IPS signatures)? 
2) Is there any guide how to update  AV definitions, IDS/IPS signatures, PTP signatures on SEP clients on automatic way? There is one on www.altiris.com/upload/sepintegrationhelp.pdf but it is very pure.
3) Can we configure clients to update defs from Symantec LUA when they are outside our company network.


THX.


P.S.
There is one article which describe how to update Virus defs by Altiris, but for many reasons it is not applicable to Enterprise SEP installations:
https://www-secure.symantec.com/connect/articles/manually-installing-sav-signatures-deployment-server

Hi,

       In end point  there are various options for the client to get the live updates.

• SEPM(Symantec endpoint Manager) Console.
• From the Internet.
• From the LUA.
• From a GUP(Group Update Provider.

For GUP please go through the links below

http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2008081810593048

http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2007092720522748

http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2008040113243148


You can install and deploy Symantec client software by using software from Altiris, now part of Symantec. Altiris provides a free Integrated Component for Symantec Endpoint Protection that provides default installation capabilities, integrated client management, and high-level reporting.

Altiris software enables information technology organizations to manage, secure, and service heterogeneous IT assets. It also supports software delivery, patch management, and many other management capabilities. Altiris software helps IT align services to drive business objectives, deliver audit-ready security, automate tasks, and reduce the cost and complexity of management.

For information about the Integrated Component for Symantec Endpoint Protection, go to the following URL:

https://kb.altiris.com/article.asp?article=35819&p=1

page 95 of the installation_guide.pdf of the SEP 11.0.


Check this link as well
http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2008092511045348


As far as the LUA is concerned please follow this link
http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2007101913262648

Your answer and also docs you mention don't cover my questions. 

Hi,

       Sorry for the inconvenience. Here are the answers specific to your questions.


1) Can SEP Integration Component completely replace LUA? Is there any limitations of definitions upgrade (may be Altiris can't upgrade IDS/IPS signatures)? SEP Integration Component can completely replace LUA. As far as Altiris is concerned we have a different queue for it to answer the Altiris specific issue

2) Is there any guide how to update AV definitions, IDS/IPS signatures, PTP signatures on SEP clients on automatic way? There is one on www.altiris.com/upload/sepintegrationhelp.pdf but it is very pure. If it is in regard to Altiris I do not have the information may be the Altiris queue might help, If the question is in regard to endpoint the answer is YES  the SEPM does the updates automatically.

3) Can we configure clients to update defs from Symantec LUA when they are outside our company network. YES, we will have to create a distribution center then publish it