I. Back Up SEPM certificate.
Copy the most newly created *.xml and *.jks files from C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Server Private Key Backup.
!!Those files have to have the same date in its name.!!
II. SQL Server
1. Create new query an execute:
use sem5 –-sem5 schould be changed for the SEP DB name
SELECT [NAME]
,[TYPE]
,[DOMAIN_ID]
FROM [sem5].[dbo].[IDENTITY_MAP]
Where type in ('SemServer','SemSite','SemDomain','SemDomain')
2. As a result you should get Table. Notice that values could vary.
III. SEPM console
After SEPM installation use Management Server configuration Wizard to configure SEPM.
1. Install first site.
2. Give proper Server Name which you received in result of query execution in SQL Management Studio.
3. Give proper site name which you received in result of query execution in SQL Management Studio.
4. Select SQL Database as one to use by SEPM.
5. Create a new database.
!!Remember to create new database and new DB user!!
6. As you can see. You have got clear Manager without groups.
7. Go to [Admin] -> [Servers] -> [Management Server ] -> [Tasks] -> [Manage Server certificate].
In the new window check Update the server certificate and press [Next] button.
8. Chose “JKS keystore (jks)” and press [Next] button.
9. Browse *.jks keystore file and copy keystorepass value from server*.xml file and paste it into “Keystore password” and “Key password”.
10. Add new domain and place an old Domain ID from the query which you received in result of query execution in SQL Management Studio.
11.Delete an old Domain. Leave only newly created one.
12. Use Management Server Configuration Wizard to reconfigure SEPManager.
13. Chose Reconfigure the management server.
14. Chose Microsoft SQL Server.
15. If Wizard ask you about replacing some data like Management server press yes.
16. As you can see, groups where gotten from an old SQL DB.
17. Also clients are starting to connect to the new SEPManager.