Hi Guys,
I have the task of setting up the managed AV for our enterprise.
Our company consists of a head office and 4 state offices, all connected via VPN.
The Head Office and each remote state office has an install of Endpoint Protection Manager.
My bosses would prefer that all servers obtain updates from a single internal liveupdate server rather then each polling symantec liveupdate servers for updates.
Basically, this is my plan.
Install SEPM on each management server, install LUA on a head office VM.
Have each SEPM poll the internal liveupdate server for updates.
All clients to use their default management servers for updates.
There is no real bandwidth saving in setting up the remote state offices to download updates from the liveupdate server rather then Symantec however it gives us a little more administration over which updates are downloaded and which are distributed.
Does this sound like a decent plan?
Any advise or tips based on similiar setups (main office, remote offices on vpn, single liveupdate server)
Edit: The main reason I ask is that in previous versions of SAV, a server installed with SSC could be setup to provide updates to secondary servers without the use of Liveupdate administrator. Is this still possible? or is LUA a necessity to setting up centralised internal update downloading.