Solved

Symantec AV Upgrade -

Posted on 2009-05-13
1
440 Views
Last Modified: 2013-12-09
Currently, we are running Symantec Enterprise 10.1.7.  

We will be moving to Symantec Endpoint Protection 11 this month.  Symantec 10 and 11 will run on separate hardware but will be live on the network together as clients are removed from 10 and then installed from 11.  

We will also be migrating to a new domain in three months (project due to end in three months).

In preparation to migrate to the new domain, we have one DC already migrated over as a first step as we begin migrating more servers over.

New servers added to the network are being joined to the new domain so that we will not have to deal with migration issues later in the next three months.

That being said:

Would it be better to build the Symantec 11 server on the new domain, and have it service computers on the old domain as systems are being migrated over?

Would be nice to know the pros and cons of this decision.  

OR

Would it be better to build the Symantec 11 server on the present (old) domain and then migrate the server to the new domain as the clients are migrated over to the new domain.

Would be nice to know the pros and cons of this decision.


Any advise on this would be greatly appreciated.
0
Comment
Question by:fraunkd
1 Comment
 
LVL 4

Accepted Solution

by:
barryhiggins3 earned 500 total points
ID: 24379058
Hi,

I would advice putting the Endpoint Server in the new domain and making sure you have a trust setup between the old and new domain. That way when your deploying clients you can authenticate using admin credentials from the new domain to deploy to computers in both the old and new domain.

There isnt really any point in setting the server up in the old domain as you will only have to migrate it, a simple service account in the new domain with local admin privalges on p.c's in both domains should do the trick (and would be needed anyway).

You can deploy the Endpoint cleints to P.C's by scanning IP ranges so there's nothing to stop you deploying to both domains at once.

Another tip- If you are planning on running your Endpoint database on a seperate MS SQL server DO NOT use anything pre MSSQL 2005 as there is a know issue that we have spent weeks working with Symantec trying to resolve. If you can get away with it just use the Endpoint server's built in Database instance as it will save you alot of hassle.
0

Featured Post

Webinar: Aligning, Automating, Winning

Join Dan Russo, Senior Manager of Operations Intelligence, for an in-depth discussion on how Dealertrack, leading provider of integrated digital solutions for the automotive industry, transformed their DevOps processes to increase collaboration and move with greater velocity.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OVERVIEW This guide provides information on the process performed when the Symantec Endpoint Protection (SEP) client checks in with the Symantec Endpoint Protection Manager (SEPM). AUDIENCE Information Technology personnel responsible for suppo…
By the time you finish reading this article, you may have already lost all your money because you don't know the simple steps to securing your BitCoin wallet. BitCoin is an incredible invention. It is a decentralized currency system, which is the…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question