Endpoint Protection

Dear Team ,

We are having infrastructure in which i have one SEP server with all configuration done residing at DC . And rest other branches are having GUP configured for updation of local systems at different branch  . But due to low bandwith at remote  site . I need to build up a SEP server for load balanace that few remote site should always have a handshaking with server one and few site should have handshaking with server 2 for any policy changes  . It should not point to single SEP server for policy changes . it should be in a load balance mode .

Note : Due to bandwith issue we have put all the sites in pull mode for LU  . Because of which AV updation is not happening properly . Kindly provide me a solution how better we can come up with the solution with no impact on existing one .

You need to set the set the priority list for the clients which SEPM should they contact. However the traffic between SEPM and SQL should also needs to be considered.

This article should provide valuable insight - Configuring failover and load balancing for Symantec Endpoint Protection Manager

http://www.symantec.com/docs/HOWTO17967

http://www.symantec.com/docs/HOWTO17970

You can either install Failover/Load balancer or install a replication partner and set the replication schedule of business hours.

Do not replicate Content and let the other SEPM down its content.Thus less bandwidth will be consume even between SEPMs.

Now Create Management server List with Priority 1 as New SEPM and Priority2 as Old SEPM and assign it to the groups you want to manage with new SEPM.

You can either create 1 more Management server list with opposite settings so that if Main SEPM fails clients can go to New SEPM or else leave it as it is.