How to Install the Central Quarantine console and server, and how to configure groups to use the Central Quarantine?
Unable to Configure Central Quarantine
A few things to remember before you install:
Symantec Endpoint Protection and Symantec Network Access Control come with the optional administration components that you can use to help you administer clients and servers. Symantec Endpoint Protection includes both Central Quarantine and LiveUpdate management servers.
Installing and configuring the Central Quarantine
The Quarantine Server receives virus and security risk submissions from Symantec Endpoint Protection clients and forwards these submissions to Symantec. The Quarantine Console lets you manage the Quarantine Server and these submissions. If you determine that your network requires a central location for all quarantined files, you can install the Central Quarantine.
The Central Quarantine is composed of the Quarantine Server and the Quarantine Console. The Quarantine Console and the Quarantine Server can be installed on the same or different supported Windows computers.
Note: If you install the Quarantine Server or Quarantine Console from the individual installation folders on the CD, run Setup.exe rather than run the .msi file. Using Setup.exe ensures that all of the files that Windows Installer requires are installed on the destination computer before the .msi installation package runs.
Note: Install the Quarantine Console first and then install the Quarantine Server. If you do not follow this order, the AMS is not properly configured. If you do not follow this order and want to properly configure AMS, associate AMS with the Quarantine Server with the Alerting Properties. Then restart the Quarantine Server.
Installing the Quarantine Console
The Quarantine Console lets you manage submissions to the Quarantine Server.
To install the Quarantine Console
Installing the Quarantine Server
The Quarantine Server receives virus submissions. The Quarantine Server requires a restart after installation.
To install the Quarantine Server
Configuring groups to use the Central Quarantine
To configure Central Quarantine network communications, you must specify the port on which the Quarantine Server listens. You must also create and apply an Antivirus Policy to a group that specifies the Quarantine Server computer and port. You configure the Quarantine Server listening port with the Symantec Quarantine Console and you create the Antivirus Policy with the Symantec Endpoint Protection Manager Console.
Note: The Quarantine Console user interface lets you select the IP protocol or the SPX protocol and specify the port number to configure. This IP protocol and port number is TCP. Do not select SPX. Also, the TCP port number that you enter is not what appears for the Quarantine server's listening port when displayed with tools like netstat -a. For example, if you enter port number 33, netstat -a displays
TCP port 8448. The hexadecimal numbers and the decimal numbers misconvert and transpose. For more details, see 'Quarantine Server appears to be using a different port than it is configured to use'
To configure the Quarantine Server
To configure an Antivirus Policy (SAV)
For configuring SEP clients to submit quarantined items to a Quarantine Server, please see 'Setting up Symantec Endpoint Protection clients to forward infected files to a Central Quarantine Server.'
Installation Guide for Symantec™ Endpoint Protection and Symantec Network Access Control