Endpoint Protection

 View Only
  • 1.  benefit for upgrade

    Posted Sep 29, 2014 03:43 AM

    What is the benefit for upgrade the version in 12.1 ru5?

    What is the change and effect for upgrade from 11.0.6?

    Please submit the comment not the article number.



  • 2.  RE: benefit for upgrade
    Best Answer

    Posted Sep 29, 2014 03:48 AM

    First benefit is that ADC policy for 64 bit OS is support in 12.x version.

    Windows 8 and 8.1 orupgraded Os supported in the 12.1 RU5.

     SEPM 12.5 converts all of the content from full definitions to delta definitions. Disk space issue for SEPM server is fixed.



  • 3.  RE: benefit for upgrade

    Posted Sep 29, 2014 04:00 AM

    Many Changes are available after SEP 11.x to SEPM 12.1.5

    Some new feature are available SEPM 12.1.5

    See Chetan articles

    What's new in SEPM 12.1 RU5 & User interface (differences) - Part 1

    https://www-secure.symantec.com/connect/articles/whats-new-sepm-121-ru5-user-interface-differences

    What's new in SEPM 12.1 RU5 & User interface (differences) - Part 2

    https://www-secure.symantec.com/connect/articles/whats-new-sepm-121-ru5-user-interface-differences-part-2

    New fixes and features in Symantec Endpoint Protection and Network Access Control 12.1.5

    Article:TECH224706 | Created: 2014-09-17 | Updated: 2014-09-19 | Article URL http://www.symantec.com/docs/TECH224706

    Upgrading or migrating to Symantec Endpoint Protection 12.1.5

    Article:TECH224034 | Created: 2014-08-22 | Updated: 2014-09-24 | Article URL http://www.symantec.com/docs/TECH224034


  • 4.  RE: benefit for upgrade

    Posted Sep 29, 2014 04:01 AM

    Thanks any more features?



  • 5.  RE: benefit for upgrade

    Posted Sep 29, 2014 04:04 AM

    In SEPM 12.1.5 SNAC feature are inbulid.

    See blog

    Symantec has Released a New Version of Symantec Endpoint Protection

    https://www-secure.symantec.com/connect/blogs/symantec-has-released-new-version-symantec-endpoint-protection



  • 6.  RE: benefit for upgrade

    Posted Sep 29, 2014 04:05 AM

    Please submit the comments not the article for read.
     



  • 7.  RE: benefit for upgrade
    Best Answer

    Posted Sep 29, 2014 04:11 AM

    If you will need full information you will be read articles.

    In SEPM 12.1.5 are provided many New fixes and features

    New fixes and features in Symantec Endpoint Protection and Network Access Control 12.1.5

    Article:TECH224706 | Created: 2014-09-17 | Updated: 2014-09-19 | Article URL http://www.symantec.com/docs/TECH224706


  • 8.  RE: benefit for upgrade
    Best Answer

    Posted Sep 29, 2014 06:31 AM

    The articles contain everything you need for the upgrades. You need to read thru the.

    What's new in Symantec Endpoint Protection 12.1.5

    Table: New features in Symantec Endpoint Protection 12.1.5

    Feature

    Description

    OpenSSL 1.0.1h for Symantec Endpoint Protection Manager

    Symantec Endpoint Protection Manager now uses OpenSSL 1.0.1h. The update to OpenSSL addresses several security vulnerabilities, including the one known as Heartbleed, which the OpenSSL Security Advisory for CVE-2014-0160 describes. Earlier versions of OpenSSL can reveal sensitive information from the computer's memory to a remote attacker.

    You can read the full text of the OpenSSL Security Advisory at the following link:

    OpenSSL Security Advisory for CVE-2014-0160

    System requirements

    The Symantec Endpoint Protection client for Linux replaces the Symantec AntiVirus client for Linux and supports a greater range of distributions and kernels. Added distributions include Red Hat Enterprise Linux Server (RHEL) 6.5 and CentOS 6.5.

    Symantec Endpoint Protection 12.1.5 adds the following operating system support:

    • Windows 8.1 Update 2

    • Windows Server 2012 Update 2

    • Mac OS X 10.10

    You can now access Symantec Endpoint Protection Manager from the following browsers:

    • Microsoft Internet Explorer 10.2, 11

    • Mozilla Firefox 5.x through 31.0

    • Google Chrome through 37.0.2062.94

    For the complete list of system requirements:

    Windows client protection features

    The Windows client provides the following new protection enhancements:

    Virus and Spyware Protection:

    • Power Eraser can now be run from the Symantec Endpoint Protection Manager console. Power Eraser provides aggressive scanning and analysis to help resolve issues with heavily infected Windows computers. You should only run Power Eraser in emergency situations, such as when a repair fails or a computer is unstable. Note that when you run Power Eraser from the management console, Power Eraser does not scan and analyze user-specific locations. Use Power Eraser in the SymHelp tool directly on the client computer to examine user-specific locations.

      See What you should know before you run Power Eraser from the Symantec Endpoint Protection Manager console.

    • Download Insight and SONAR can now scan Office 2013 applications.

      See Managing scans on client computers.

    • The client no longer scans and deletes backed up files on a server where the Symantec Endpoint Protection client and either Symantec Backup Exec or Symantec NetBackup is installed.

    Network Threat Protection:

    • For firewall rules, you can now define a host group with an IPv6 IP address. Intrusion Prevention policies do not support host names with IPv6 addresses.

      See Adding host groups.

      The default firewall policy includes a default Allow ICMPv6 firewall rule that contains ICMPv6 types of 1-4,128-132,141-143,148,149,151-153. You can also add a rule with ICMPv6 as a protocol in the network service list.

      See Adding network services to the default network services list.

    • You can now use SHA-256 checksums as well as MD5 checksums for file fingerprints in the firewall rules and the application learning feature.

      See Adding a new firewall rule.

      See Creating a file fingerprint list with checksum.exe.

      See Configuring system lockdown.

    • IPS audit signatures monitor the network traffic of certain applications on Windows computers. For example, you can use these signatures to detect Yahoo IM logons. You can enable logging, review the Network Threat Protection traffic logs, and then decide whether or not to take action on the traffic.

    Linux management

    The Symantec Endpoint Protection for Linux client replaces the Symantec AntiVirus for Linux client. You can now provide Virus and Spyware Protection on the clients that run Linux. Symantec Endpoint Protection Manager provides client policy management, reporting, monitoring, logging, and licensing in a single client package for Linux.

    See Customizing the virus and spyware scans that run on Linux computers.

    Policy enforcement

    The Host Integrity policy is now included with Symantec Endpoint Protection. The Host Integrity policy evaluates the client computers and ensures that they meet the security policies you have downloaded to those client computers.

    See How Host Integrity works.

    See Setting up Host Integrity.

    Management server updates

    • You can now remotely deploy the Mac client installation package in addition to deploying it with a third-party installation tool.

      See Installing clients with Remote Push.

    • Symantec Protection Center 1 is removed for Symantec Endpoint Protection 12.1.5. You can still integrate Symantec Endpoint Protection Manager with Symantec Protection Center 2, but the feature is no longer tested or available for download.

      See About Symantec Endpoint Protection and Protection Center.

    • You can configure the installation package to remove from the client computer over 300 third-party software products from more than 60 vendors. For more information, see:

      Third-party security software removal support in Symantec Endpoint Protection

    • Client password settings dialog box

      The client password protection settings now appear in a more accessible location in Clients > Policies > Password Settings. This dialog also provides a new option to enable password protection globally for all clients. You can also access the Password Settings dialog box when you log on to Symantec Endpoint Protection Manager.

      See Password-protecting the client.

    • You can no longer set the console timeout to Never. For security reasons, the maximum timeout period is one hour.

      See Changing the time period for staying logged on to the console.

    • After an administrator's failed logon attempts trigger an account lockout, the lockout interval now doubles with each subsequent lockout. Symantec Endpoint Protection Manager reverts to the original lockout interval after a successful logon, or after 24 hours since the first lockout.

      See Unlocking an administrator's account after too many logon attempts.

    Management server integration with network security technology

    Web services on the management server now support integration with Symantec Managed Security Services. Together, Symantec Managed Security Services and Symantec Endpoint Protection Manager provide advanced threat monitoring and targeted remediation options.

    The following new web services are also available for use by third-party remote monitoring and management solutions:

    • You can run the new Power Eraser commands.

    • You can place clients into Quarantine.

    • You can run an Evidence of Compromise command on the client.

    Documentation and other tools for remote monitoring and management support appear in the web services SDK. The SDK is located in the Tools installation file in the following folder:

    /Integration/SEPM_WebService_SDK

    Management server integration with advanced reporting

    Symantec Endpoint Protection 12.1.5 comes with a new version of IT Analytics. This new version removes the need for the Symantec Management Platform, supports most common browsers, requires no plug-ins, and also supports mobile devices. IT Analytics delivers advanced reporting and query capability for customers who want more sophisticated reporting than Symantec Endpoint Protection Manager can provide alone. The IT Analytics installer is located in the Tools installation file in the following folder:

    /ITAnalytics

    Management server and client performance

    The management server and the client include the following performance improvements:

    • Bandwidth control for client communication

      The management server now includes an Apache module that you can configure to control network bandwidth. The module reduces the network load between Symantec Endpoint Protection Manager and the client computers, especially when the clients download content definitions or client installation packages.

       

    • To reduce hard disk space, Symantec Endpoint Protection Manager now stores only the most recent full set of virus definitions, plus the deltas for previous versions. Storing the deltas reduces delivery time and network bandwidth, and improves disk storage requirements on the management server by 65% to 80%.

       

      See Increasing Symantec Endpoint Protection Manager available disk space before upgrading to version 12.1.x.

      See Configuring a site to download content updates.

    • The client startup time has improved by more than 10%.

    • The client service needs fewer processes to run.

    • Enhancements to the scan throttling logic for the Windows client improve scan performance. These enhancements also minimize the effect on computers with solid-state drives (SSDs) or that run in a virtualized or Terminal Services environment.

    • If Symantec Endpoint Protection and Critical System Protection are both installed on the same client computer, these applications now share Symantec components.

    Documentation

    Symantec Endpoint Protection provides the following documentation changes:



  • 9.  RE: benefit for upgrade
    Best Answer

    Broadcom Employee
    Posted Sep 29, 2014 07:03 AM

    Hi,

    Thank you for posting in Symantec community.

    What is the benefit for upgrade the version in 12.1 ru5?

    --> Symantec Insight technology reduces antivirus scans while SONAR stops cyber-criminals and zero-day attacks. Only Symantec Endpoint Protection 12.1.5 provides the security you need through a single, high-powered agent, for the fastest, most-effective protection available.

    Symantec Endpoint Protection is built on multiple layers of protection, including Symantec Insight and SONAR both of which provide protection against new and unknown threats. Built for virtual environments, it can integrate with VMware vShield Endpoint for dramatically improved performance. Symantec Endpoint Protection 12.1.4 includes the latest features for improved security, performance and management.

    There are many benefits, few are listed here:  

    https://www-secure.symantec.com/connect/articles/feature-differences-between-sep-11x-and-sep-121

    If you look specifically for SEP 12.1 RU5 new features, check these articles:

    What's new in Symantec Endpoint Protection 12.1.

    http://www.symantec.com/docs/HOWTO101747

    Few GUI improvements I tried to list down here:

    https://www-secure.symantec.com/connect/articles/whats-new-sepm-121-ru5-user-interface-differences

    https://www-secure.symantec.com/connect/articles/whats-new-sepm-121-ru5-user-interface-differences-part-2 

    What is the change and effect for upgrade from 11.0.6?

    --> Upgrade from 11.0.6 to SEP 12.1 RU5 is supported. After an upgrade you can get all use all the features listed above.