Preparation checklist for reinstalling ATP 3.x

book

Article ID: 171913

calendar_today

Updated On:

Products

Endpoint Detection and Response Advanced Threat Protection Platform

Issue/Introduction

In preparation for reinstalling Symantec Advanced Threat Protection (ATP) Platform, a checklist of required materials is needed.

Resolution

Materials checklist for an ATP scanner

  • Screen shots of the property pages for the ATP scanner within ATP UI
  • Screen shots of or verbatim logging of output of exportcfg that is ran at admin CLI of ATP Platform
  • Communications password that is shared by the ATP Management Server and ATP scanner
  • Download the .iso or .ova file from fileshare.symantec.com

 

Additional materials checklist for an ATP management server or All-In-One

  • Screen shots of all ATP UI settings
  • Copy of certificate file that is used to secure ATP UI
  • Copy of each certificate file that is used to secure communications between ATP and SEPM
  • User name and password for each configured SEP DB connection or SEPM Controller connection
  • Export of ATP Blacklist entries (can be exported through ATP UI Policies page)
  • Export of ATP Whitelist entries (can be exported through ATP UI Policies page)
  • Symantec License File (.slf file) for ATP that contains a start_date before the current date and contains an end_date after the current date

 

The following additional pieces of evidence may be necessary if you are engaged in a technical support case:

  • Backup file from the admin CLI command backup
  • Diagnostic file that is collected with support assistance by gather_evidence