Endpoint Protection

 View Only

  • 1.  Active Directory Login ID

    Posted Jun 09, 2012 03:47 PM

    How can I able to connect the AD with Symantec console.?

    I want to login the Active Directory id on Symantec console?



  • 2.  RE: Active Directory Login ID
    Best Answer

    Posted Jun 09, 2012 03:49 PM

    Folow the link

    http://www.symantec.com/business/support/index?page=content&id=TECH104726

     

    Step A - Add the Active Directory Server to the SEPM:

    1. Login to the SEPM
    2. Click Admin Servers
    3. Right-click your SEPM's name (top-left)
    4. Click Edit Properties
    5. Click Directory Servers Add
    6. Enter a name to identify your Active Directory server
    7. Select Active Directory next to Server Type
    8. Enter the Active Directory server hostname or IP address
    9. Enter a username and password that the SEPM can use to communicate with the Active Directory server
    10. Click OK. The SEPM will test the Directory Server information which was entered to confirm it works properly.

    Step B - Create a new SEPM Administrator account:

    1. Login to the SEPM
    2. Click Admin Administrators Add Administrator
    3. Enter a username for the new administrator account. This will be the username used to login to the SEPM.
    4. Enter a full name for the new administrator account. This is used for informational purposes only.
    5. Leave the Password and Confirm Password fields blank
    6. Click Change
    7. Select Directory Authentication
    8. In Directory Server, select the Active Directory server configured in Step A-6
    9. In Account Name, enter the account name as it appears in Active Directory
    10. Click OK
    11. Click OK

    Testing the newly created account:

    1. Logoff the SEPM if logged in
    2. Use the username entered in Step B-3. Usernames are case sensitive.
    3. Use the Active Directory password for the Active Directory account specified in Step B-9.
    4. Leave the Domain field blank. (This field expects a SEPM domain and not an Active Directory domain)
       

    WARNING
    Do not use the built-in SEPM "admin" account when setting up Active Directory Authentication, doing so can prevent logon access to SEPM with "Authentication Failure" error. Lockout issues can occur when changing the Active Directory account, upgrading Active Directory, changing Active Directory mode, and when removing SEPM(s) as a replication partner.

    SEPM Active Directory Authentication is only supported for Admin accounts that have been created in SEPM by clicking "Add Administrator."

    NOTE: The SEPM user name is taken from SEPM database while the password is taken from Active Directory for the account you specified in Account Name.



  • 3.  RE: Active Directory Login ID

    Posted Jun 09, 2012 04:19 PM

     How to setup a SEPM administrator account to use your Active Directory authentication

    http://www.symantec.com/docs/TECH104726

    video

    https://www-secure.symantec.com/connect/videos/importing-active-directory-sepm



  • 4.  RE: Active Directory Login ID

    Posted Jun 09, 2012 11:14 PM

     

    to setup a Symantec Endpoint Protection Manager administrator account to use Active Directory authentication

    http://www.symantec.com/business/support/index?page=content&id=TECH104726



  • 5.  RE: Active Directory Login ID

    Posted Jun 11, 2012 04:48 AM

    Check This:-

     

     

    How to synchronize/Integrate Active directory with the Symantec Endpoint Protection Manager (SEPM).

    Problem


    How to add a Directory server in the SEPM console for Active Directory (AD) synchronization.


    Environment


    Product :- 12.1 RU1

    Operating system:-  Windows server 2008 R2


    Solution


    • Login to the SEPM console.
    • Click Admin > Servers.
    • Right-click on the server name and select Edit the server properties.
    • Click Directory Servers tab.
    • Click Add.

     

    • Add Directory Server window will pop up.
    • In the General tab type the domain name.
    • For Server Type select Active Directory.
    • In Server IP Address or Name enter IP or Domain Name (For e.g. If Cu's Email address is ABC@symantec.com then try to putsymantec.com in domain name.)
    • Enter domain administrator's username and password.
    • Click OK. (If it is not successful Check Use Secure Connection, which will use LDAP Port 636.  Click OK.)

     

    • In Server Properties window the Directory Server gets listed after credentials are successfully verified.
    • Under Synchronized Directory Settings check Synchronize with Directory Servers.
    • Select Schedule as per your convenience.
    • Click OK.

     

    • To import OUs select the Clients tab.
    • Click on the My Company group.
    • Under Tasks click Import Organizational Unit or Container.
    • Integrate with Organizational Unit Tree window will pop up.
    • Select the domain from the drop down.
    • Click OK.

     

    Select the appropriate OU as desired to integrate with SEPM and click OK.

    It will successfully synchronize AD and will integrate with the OU structure.

    In case of issues with AD Sync check following logs in C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Tomcat\logs\ADSITask-0.log (for a 64 bit machine the location would be C:\Program Files(x86)\Symantec\Symantec Endpoint Protection Manager\Tomcat\logs\ADSITask-0.log)

    Search for "Error Code" and next few lines for the reason.


     
    http://www.symantec.com/business/support/index?page=content&id=TECH181458

     



  • 6.  RE: Active Directory Login ID

    Broadcom Employee
    Posted Jun 11, 2012 10:12 AM

    Hi,

    We have beautiful video about how to import active directory to SEPM.

    https://www-secure.symantec.com/connect/videos/importing-active-directory-sepm

     



  • 7.  RE: Active Directory Login ID

    Posted Jun 11, 2012 12:37 PM

    All the above forum comments are helpful to you.

    According to your Q.

    1) How can I able to connect the AD with Symantec console.?

    answer avil in the attach link

    http://www.symantec.com/business/support/index?page=content&id=TECH104726

     

    2) I want to login the Active Directory id on Symantec console?

    Ans- After using the attach link yo can able to login easily through AD login ID.