K1000 patching and Symantec Endpoint Protection 12.1
I've recently stepped into the role of managing our K1 and K2. Noticed recently that we seem to have been set up to receive Symantec Endpoint Protection updates (virus def files) from BOTH the K1000 and from our preexisting Symantec server.
Should only one or the other entity be delivering the patches for Symantec? It doesn't seem to have broken much so far (been this way, AFAIK, for ~2 years) but it seems kind of incorrect. Does anyone else have any advice or experience along these lines?
0 Comments
[ + ] Show comments
Answers (3)
Please log in to answer
Posted by:
SMal.tmcc
9 years ago
I leave ours on so if something happens to the Symantec server Kace will update them, it is not much overhead to allow both to run.
Comments:
-
also both do not do the update just one will. Both SAV and K1000 have a check/detect task to see if the version is current with the one they have to push, if you do have the correct version they move on. - SMal.tmcc 9 years ago
-
also typically SAV get the updates a day or 2 prior to kace having it available due to having to process it into a patch package - SMal.tmcc 9 years ago
Posted by:
Asevera
9 years ago
I don't expect it will cause much of an issue. We're doing the same thing here (our SEP 12.1 clients go out to the web for updates, along with the K1 pushing them down). So long as the updates are hitting the devices we decided not to care where they come from. Gotta live dangerously and all that.
Comments:
-
So your company is not using an Endpoint security server, if they're going to web + K1? - agibbons 9 years ago
-
I'm not the security guy so I'm just relaying the bits of the discussion we had about the issue, but yes, I believe that is the case. - Asevera 9 years ago
-
I see. Thanks for the input! I agree, kinda just glad the updates arrive in some manner :) Hope to hear from someone with both a Symantec Endpoint server and our friend K1000. - agibbons 9 years ago
Posted by:
jknox
9 years ago
I would look at it as the K1000 being a last line of defense as the Symantec Endpoint server should update much more quickly than the K1000 will with regards to Symantec updates.
