Endpoint Protection

Hey there,

I know there is really no official support for this yet.  I rolled in on our network and I like it so far.

Very simple client interface.  Lightweight too.  Let's hope it's highly protective.  That's what we need. 

Does anyone know if the clients can check in over the Internet/ w/o a vpn.  Open the management ports on a firewall and aim it at an IP or a url?

Will that be supported? 

I searched high and low last night on how to aim the client to a different server address.  All of the documentation/forums/etc..  You used to do this in grc.dat in SAVCE...

Thanks!!

theoretically you should be able to do that at least in SEP11 - you can modify manamgement server list and add second IP. But I need to check v12. I t may be impossible because v12 isn't build for HA so no replication or multiple server configuration is available.

You won't be able to do this in the first release of SEPSBE 12.0 since there is no way to change the management server list the client uses.

Note that clients will update via LiveUpdate anyway so they will stay updated.. but wont be able to check in with the server while they are not connected to the company network.

 

Thanks Paul.

It's too bad because it works great in VIPRE Enterprise and is fully suported.

I'm still fighting to stay in the Symantec camp.  I rolled one big customer to VIPRE the other day before I heard about SEP SBE.  Now I'm hoping to move everyone from SAVCE to SEP SBE, but I have to like the product/features.  I don't have the firewall installed by deafult.  Is that an add-on?

How often will the computers check in for updates via Live Update when they are off the network?

Any endpoint features in SBE like usb and drive lock down?

Any other selling points?

Thanks!

Hi Mark,

Its something we could consider, but I'm not sure how big the requirement would be in the SMB sector.

With SEPSBE, you can choose whether you want to install Network Threat Protection or not, I would certainly recommend you do install it, it doesn't cost any more and you can run the firewall component of it with an "open" ruleset if you wish (thats pretty much how it is out of the box anyway) the added feature though with Network Threat Protection is our IPS engine, which is now really doing so much more than just IPS, take a look at my article on Krypton here for more info: https://www-secure.symantec.com/connect/articles/so-what-krypton-anyway

SEPSBE is really designed for those small customers who are still running SAVCE and want to up the ante in terms of protection, but still have something thats easy to manage and look after.  By default the clients will check LiveUpdate once per day, but this can be easily changed using the LiveUpdate policy from the management server and the policy can be wrapped up into a client install without a problem.

SEPSBE at this moment in time does not include application or device control, customers wanting those sorts of features should stick with "SEP Enterprise" (current v.11).  SEPSBE delivers easy install, easy management, easy reporting and notification and easy security to the small business customer.