Endpoint Protection

 View Only

  • 1.  SEPM Server Died

    Posted Sep 14, 2009 01:51 PM
    Hi

    Over the weekend my SEPM server died.  Once I have re-installed SEPM on new hardware, how can I get the clients to connect to the new server without re-installing them? Can I recover any policies or settings from the existing clients?

    I intend on giving the new hardware the same server name.

    Anything else I need to know?

    Many thanks,



  • 2.  RE: SEPM Server Died

    Posted Sep 14, 2009 02:16 PM
    I think that simply naming the server the same will not get clients communicating with the SEPM.  There is a certificate that should be exported after installation of SEPM servers to re-enable communication with clients after issues like this. 

    Also if you have an external (SQL) database you're policies and settings would still be intact.  If you had the embedded database the settings are lost, unless you did a backup of the database.

    good luck.


  • 3.  RE: SEPM Server Died



  • 4.  RE: SEPM Server Died

    Posted Sep 14, 2009 02:33 PM
    Once the sylink is replaced the cleints will start commuincating with the SEPM. But they will not get the old policy back/

    Do you have any back up of the database??

    Replace the sylink using any of these

     

        https://www-secure.symantec.com/connect/downloads/sylinkreplacer-tool-connecting-sep-clients-sepm


    'Preparing for and Recovering from Disaster with Symantec Endpoint Protection'

     http://service1.symantec.com/support/ent-security.nsf/docid/2008081906512748?Open&seg=ent



  • 5.  RE: SEPM Server Died

    Posted Sep 14, 2009 03:00 PM
    It seems not..... ho hum - no way of copying a policy from a machine to server?

    Thanks


  • 6.  RE: SEPM Server Died

    Posted Sep 14, 2009 03:41 PM
    Can I recover any details from a client and put them on the server to save the need of doing sylink to all PCs?


  • 7.  RE: SEPM Server Died

    Posted Sep 14, 2009 03:48 PM
     yes the Domain ID that you can get from sylink.xml..with that you wont have to replace sylink on all the computers. but make sure the new computer has same name and IP.



    Restoring client communications without a database backup

    For each Endpoint Protection domain, you must create a new domain and insert the same domain ID into the database.
    Best practice is to create a domain with a name identical to the previous name.

    The Default domain is the System domain.
    To recreate the Default domain, Add a new Domain and append some value to the name.
    For example, Default_02. After restoring the domains, you can delete the old Default Domain, and rename the new one to Default.


    Log on to the Symantec Endpoint Protection Manager Console

    Go to > Admin > Domains > Add Domain > Enter the Domain Name

    Click Advanced > Copy/Paste the Domain ID from the SEPM_Backup.txt file > OK

    Repeat these steps for each domain to recover.



    If you use only one domain:

    × Administer the newly created Default_02 domain.
    × Delete the unused Default Domain
    × Rename the new domain to Default

    for more details check :http://service1.symantec.com/support/ent-security.nsf/docid/2008081906512748?Open&seg=ent