Endpoint Protection Manager disaster recovery consideration when integrated with Threat Defense for Active Directory
book
Article ID: 174259
calendar_today
Updated On:
Products
Endpoint ProtectionEndpoint Threat Defense for Active Directory
Issue/Introduction
When the Symantec Endpoint Protection Manager (SEPM) is integrated with Threat Defense for Active Directory (TDAD), additional considerations need to be made during disaster recovery.
Resolution
The following steps should be applied, depending on the disaster recovery media available.
Only Recovery File restore
Create a backup of the SEPM Server Private Key Backup recovery files
Uninstall SEPM
Re-install SEPM on the same machine and then use the recovery back up
Re-register the SEPM with TDAD and re-assign the appropriate TDAD policy to clients/groups
Only Recovery File & DB restore
Create a backup of the SEPM Server Private Key Backup recovery file and database
Uninstall SEPM
Re-install SEPM on the same machine and then use the recovery back up
Now restore the DB
After the restore has completed and during the Management Server Configuration Wizard select the Server Private Key Backup recovery file.
Once TDAD has communicated with the SEPM, policies can be re-assigned from TDAD to SEP clients/groups.