How to install the Endpoint Protection Linux agent on a client that does not have internet access.
Symantec Endpoint Protection version: 14.3 RU1 or greater
Use the SEP Linux Packager Tool (seplpkg), to create a full or offline LinuxInstaller package on Linux or Windows platform.
Note: This only works with clients managed by the Endpoint Protection Manager (SEPM).
In order to create an offline installation package the following is required:
Note¹: Linux Agent needs access to the following site to create the offline package: https://linux-repo.us.securitycloud.symantec.com
Note²: An "online" client should be registered with the Operating System's registration system, if required (e.g. Red Hat Subscription).
Please review the article URLs that allow SEP and SES to connect to Symantec servers for more information on Symantec sites.
To create an offline installation package:
Copy the new installer to the "offline" clients. Extract it, switch to extracted directory and run install script with -g (ignore repository and use local packages). For example:
./LinuxInstaller.rhel7 -xt SEP
Note: The "-g" parameter does not work in SEP 14.3 RU1, RU2 and RU3. Please upgrade to SEP 14.3 RU4 or later to ignore repository and use local packages.
./LinuxInstaller -dt /path/to/folder... to unzip the installer files into target folder and download rpm/deb packages suitable for current system. If required manually add additional packages for other various targets.
Below is the full list of dependent packages which are required to be installed on the "online" Linux client where creating the offline installation package.
Core System Packages:
upstart "An event-driven init system." (Before RHEL/CentOS 7)
bash "The GNU Bourne Again shell (bash)."
sed "A GNU stream text editor."
gzip "The GNU data compression program."
tar "The GNU file archiving program."
gawk "The GNU version of the awk text processing utility."
grep "The GNU versions of grep pattern matching utilities."
findutils "The GNU versions of find utilities (find and xargs)."
coreutils "The GNU core utilities -- a set of commonly used utility applications."
module-init-tools "Kernel module management utilities." (Before RHEL/CentOS 7)
util-linux-ng "A collection of basic system utilities." (Before RHEL/CentOS 7)
filesystem "The basic directory layout for a Linux system."
shadow-utils "Utilities for managing accounts and shadow password files."
zip "A file compression and packaging utility compatible with PKZIP."
openssl "The OpenSSL toolkit (x86_64)."
glibc "The GNU libc libraries (x86_64)."
libstdc++ "The GNU Standard C++ Library v4 (x86_64)."
libgcc "GCC version 4.0 shared support library (x86_64)."
pam "PAM Authentication Libraries (64bit libpam.so)."
zlib "A Massively Spiffy Yet Delicately Unobtrusive Compression Library (x86_64)."
libacl "Utilities to administer Access Control Lists (x86_64)."
at "Job spooling tools"