ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

How to convert an unmanaged Endpoint Protection for Macintosh client to managed

book

Article ID: 152371

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

It is necessary to convert an unmanaged Symantec Endpoint Protection (SEP) for Macintosh client into a managed client.

NOTE:
This process can also be used to update the sylink file on a previously managed client.

 

Resolution

Export communications settings (sylink.xml) from the target client group within the Symantec Endpoint Protection Manager (SEPM), then copy it to the Desktop of the Macintosh you wish to make managed.

The SyLinkDrop tool is installed with the SEP 14 for Mac client in the /Applications/Symantec Solutions directory.

The SyLinkDrop version used must match the SEP for Mac client version. This is due to differences in the SEP master service that SyLinkDrop tries to restart after replacing the sylink.xml.

  1. On the Macintosh where SEP is installed, launch the SylinkDrop tool.
  2. Click "Browse" to browse for the sylink.xml file previously exported from the SEPM.
  3. Press "Update SyLink" to update. You will be prompted to input your admin password.
  4. If successful, you will see the message: "Replace SyLink File Successfully"
  5. Press "Exit" to close the application.

For all versions of SEP, you may also manually place the sylink.xml file into the appropriate folder on the Macintosh client computer per the following instructions:

  1. Open the Symantec Endpoint Protection Manager (SEPM) console.
  2. Click on the Clients tab, and then right-click on the group that the SEP for Mac client should reside in once converted to managed.
  3. Choose "Export Communications Settings", and when prompted, save the file to a location such as the Desktop. (Note: the file will have a long name prefaced with the group information. Please rename the file so that it is only called "sylink.xml".)
  4. On the client computer that's going to be converted to a managed client, stop the symdaemon (see Technical Information below).
  5. Copy the sylink.xml file to the client machine, pasting it into the following folder:

    SEP 14.2 RU2: /Library/Application Support/Symantec/Silo/MES/SMC
    SEP 14.2 RU1 MP2 and older: /Library/Application Support/Symantec/SMC

    NOTE: there are multiple Library folders on Mac systems, the correct one can be found in Finder>Go>Computer in the computer's hard drive.

  6. Reboot the computer, or restart the smcdaemon (or symdaemon) on the Macintosh.




Technical Information

From Terminal command line:

sudo launchctl unload /Library/LaunchDaemons/com.symantec.symdaemon.*plist

sudo launchctl load /Library/LaunchDaemons/com.symantec.symdaemon.*plist

NOTE:
  • When prefacing the command with sudo, there will be a prompt to authenticate with an administrator password (the password entry will not echo to the Terminal window).
  • The asterisk in daemon pathnames will accommodate suffix variations - SEP 14.0 uses .NFM.plist
     

 

 

 

Attachments