Video Screencast Help

Provide a program interface so EPP can be called to scan something

Created: 19 May 2010 | 3 comments
uwHarry's picture
0 Agree
0 Disagree
0 0 Votes
Login to vote

We produce microwave instruments and devices, many of which contain media that can be infected and can then pass the infection on to customers. We work hard to avoid this scenario, manually scanning all media before delivery, but mistakes can be made. In an effort to minimize that possibility, we would like to automate the scan of the media along with the process of putting data on the media. But I have been unable to find a way to automate a call to Symantec EPP to scan a drive. Is this possible with Symantec End Point Protection version 11? If not, please add this capability.

Comments 3 CommentsJump to latest comment

AKM's picture

Could you please clarify exactly what you are trying to accomplish? Symantec Endpoint Protection 11.0 has a feature called AutoProtect that scans activity on the protected client system. This would include any files being transferred from the protected system to other media (assuming "scan when file is accessed" is an active option in the client's policy). A better explanation would aid in identifying your desired feature.

Sr. Technical Support Engineer
Endpoint Security Advanced Team
Symantec Corporation
www.symantec.com

+1
Login to vote
uwHarry's picture

We produce data for customer products and deliver it on USB drives which are a common infection vector. New ones aren't such a problem, but we service in servicing our product, we get them back from customers. Some come back to us with infections. We need to update the data on the drive, so we need to scan it when it's plugged in before adding data. I need a way for my production program to call to SEP to scan the drive and possibly report if it's clean. I need the report as evidence that it was scanned and found to be not infected.It's a regulatory compliance issue. I want to automate it because people forget. But if my data production program can call SEP and get a reply then the user doesn't have to do it manually.

0
Login to vote
uwHarry's picture

No comments from Symantec support since my last post June 2011. I assume that means Symantec does not have these features and has no plans to provide them. In that case, I will start lobbying our IT department to look for another vendor that can supply these features.

To be clear, these are the features I need:

I need the capability to call to Symantec EPP from a data production program to request a scan of a drive letter complete with a return indicating it's clean or infected. I also need the capability to query EPP for it's version and anti-virus definitions dates to include on my scan report.

0
Login to vote