Solved

Symantec AV Upgrade -

Posted on 2009-05-13
1
442 Views
Last Modified: 2013-12-09
Currently, we are running Symantec Enterprise 10.1.7.  

We will be moving to Symantec Endpoint Protection 11 this month.  Symantec 10 and 11 will run on separate hardware but will be live on the network together as clients are removed from 10 and then installed from 11.  

We will also be migrating to a new domain in three months (project due to end in three months).

In preparation to migrate to the new domain, we have one DC already migrated over as a first step as we begin migrating more servers over.

New servers added to the network are being joined to the new domain so that we will not have to deal with migration issues later in the next three months.

That being said:

Would it be better to build the Symantec 11 server on the new domain, and have it service computers on the old domain as systems are being migrated over?

Would be nice to know the pros and cons of this decision.  

OR

Would it be better to build the Symantec 11 server on the present (old) domain and then migrate the server to the new domain as the clients are migrated over to the new domain.

Would be nice to know the pros and cons of this decision.


Any advise on this would be greatly appreciated.
0
Comment
Question by:fraunkd
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 4

Accepted Solution

by:
barryhiggins3 earned 500 total points
ID: 24379058
Hi,

I would advice putting the Endpoint Server in the new domain and making sure you have a trust setup between the old and new domain. That way when your deploying clients you can authenticate using admin credentials from the new domain to deploy to computers in both the old and new domain.

There isnt really any point in setting the server up in the old domain as you will only have to migrate it, a simple service account in the new domain with local admin privalges on p.c's in both domains should do the trick (and would be needed anyway).

You can deploy the Endpoint cleints to P.C's by scanning IP ranges so there's nothing to stop you deploying to both domains at once.

Another tip- If you are planning on running your Endpoint database on a seperate MS SQL server DO NOT use anything pre MSSQL 2005 as there is a know issue that we have spent weeks working with Symantec trying to resolve. If you can get away with it just use the Endpoint server's built in Database instance as it will save you alot of hassle.
0

Featured Post

Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

So you got the Conficker. You could go to each machine and run the eye chart test (http://www.confickerworkinggroup.org/infection_test/cfeyechart.html), but in a bigger environment, or if you prefer to work smarter and not harder, you need some …
PREFACE The purpose of this guide is to explain what the SEPC Status Utility is and how it works. I have written the utility using AutoIt and have included the source code for your review. You are welcome to modify the code to your liking, but I wi…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question