Symantec Endpoint Protection
To install the Symantec Endpoint Protection client for Mac: Double-click. Symantec Endpoint Protection. To begin the installation, click. To install a helper tool that is needed for installing the. Symantec Endpoint Protection. Client, enter your Mac's administrative username. May 20, 2021 Endpoint Protection 15 is a cloud-based product, but it uses the Endpoint Protection 14.x client. To download the client, see Creating and installing a Symantec Agent installation package. To see which versions of the Endpoint Protection client are installed when using Endpoint Protection 15, see Released versions of Symantec Endpoint Protection. Symantec protects all your traditional and mobile endpoint devices with innovative technologies for attack surface reduction, attack prevention, breach prevention, and detection and response. All this protection is powered by our Global Intelligence Network, one of the largest in the world.
Uninstall options include:
- Client uninstall (including remote uninstalling of large groups)
- What to do when conventional uninstall methods fail: CleanWipe, manual removal methods
Client uninstall
Here are the recommended methods for uninstalling the Symantec Endpoint Protection client.
Uninstall for a small group of clients | For small numbers of clients, use the standard Windows uninstall method. |
Uninstall for a large group of clients | When accessing each client physically is not practical, there are many ways to automate the process. These include:
|
Removing specific client components
It is possible to remove specific components from a Symantec Endpoint Protection client without the need to fully uninstall and reinstall.
Symantec Endpoint Protection Login
Removing components from a client | You can modify the installation for managed or unmanaged clients using Add or Remove Programs, or Programs and Features. You can find more information by visiting Add or remove features to existing Endpoint Protection clients. |
Removing components from multiple clients | You can use the Symantec Endpoint Protection Manager (enterprise edition only) to modify the installation features on an entire group. Instructions for doing this can also be found in Add or remove features to existing Endpoint Protection clients. |
Uninstall and reinstall LiveUpdate | To uninstall and reinstall LiveUpdate without uninstalling the Symantec Endpoint Protection Manager, see Reinstall LiveUpdate for Endpoint Protection Manager. |
Symantec Endpoint Protection Manager (SEPM) uninstall
The Symantec Endpoint Protection Manager uninstall is fairly straightforward and should be done on a per-manager basis. The following table lists topics that are related to this process.
Backing up the Symantec Endpoint Protection Manager | You should back up the Symantec Endpoint Protection Manager using disaster recovery procedures. If you need to uninstall the Symantec Endpoint Protection Manager, making these preparations in advance makes it easier to reconnect with existing clients and use previously configured policies when you reinstall. For information on preparing for disaster recovery, see Disaster recovery best practices |
Removing the Symantec Endpoint Protection Manager | The recommended method is to use the standard Windows uninstall method. For more information, see Uninstalling Symantec Endpoint Protection Manager. |
Connecting existing clients to a new or reinstalled Symantec Endpoint Protection Manager | If it becomes necessary to uninstall and reinstall the Symantec Endpoint Protection Manager without preparing in advance for disaster recovery, it is possible to reconnect existing Symantec Endpoint Protection clients to a new manager installation. See the following document for more information: How to point clients to a new Endpoint Protection Manager after decommissioning or replacing the existing one. |
What to do when conventional uninstall methods fail
Sometimes the recommended and preferred methods for uninstalling Symantec Endpoint Protection fail or do not work as expected.
CleanWipe | The CleanWipe utility is intended for use only when uninstalling Symantec Endpoint Protection from the Windows control panel fails. For this utility, see Uninstalling Symantec Endpoint Protection with the CleanWipe removal tool. |
Manual Removal | You can perform a manual removal. |
Mac client uninstall
Removing the Symantec Endpoint Protection client from Mac computers requires different methods and tools.
Removal from a single client or small group of clients | As of version 14, you can uninstall directly on the Mac.
For 12.1.x, Use the Symantec Uninstaller. For detailed instructions and how to get the tool, see Uninstalling the Symantec Endpoint Protection client for Mac. |
Removal from a large group of clients | You can accomplish removing a large number of clients at once by using the SymantecRemovalTool in conjunction with a remote management system like Apple Remote Desktop. You can find more information about SymantecRemovalTool by visiting the appropriate section in Remove Symantec software for Mac OS using RemoveSymantecMacFiles. |
What to do if conventional methods fail | The RemoveSymantecMacFiles utility will remove all files and folders related to the Mac client install. More information and instructions for use can be found in the document Remove Symantec software for Mac OS using RemoveSymantecMacFiles. WARNING: RemoveSymantecMacFiles/SymantecRemovalTool will remove ALL Symantec products from a Mac. |
Symantec Endpoint Protection Manager GUI, version 14.2 | |
Developer(s) | Broadcom Inc. |
---|---|
Stable release | 14.3 (Build 1169) / 8 September 2020; 8 months ago[1] |
Operating system | Windows, macOS and Linux |
Platform | IA-32 and x86-64 |
Type | Anti-malware, intrusion prevention and firewall |
License | Trialware |
Website | www.broadcom.com/products/cyber-security/endpoint |
Symantec Endpoint Protection, developed by Broadcom Inc., is a security software suite that consists of anti-malware, intrusion prevention and firewall features for server and desktop computers.[2] It has the largest market-share of any product for endpoint security.[3]
Version history[edit]
Symantec Endpoint Protection Update
The first release of Symantec Endpoint Protection was published in September 2007 and was called version 11.0.[4] Endpoint Protection is the result of a merger of several security software products, including Symantec Antivirus Corporate Edition 10.0, Client Security, Network Access Control, and Sygate Enterprise Edition.[4] Endpoint Protection also included new features.[4] For example, it can block data transfers to unauthorized device types, such as USB flash drives or Bluetooth devices.[4]
At the time, Symantec Antivirus Corporate Edition was widely criticized as having become bloated and unwieldy.[2] Endpoint Protection 11.0 was intended to address these criticisms.[2] The disk footprint of Symantec Corporate Edition 10.0 was almost 100 MB, whereas Endpoint Protection's was projected to be 21 MB.[2]
In 2009, Symantec introduced a managed service, whereby Symantec staff deploy and manage Symantec Endpoint Protection installations remotely.[5] A Small Business Edition with a faster installation process was released in 2010.[6] In February 2011, Symantec announced version 12.0 of Endpoint Protection.[7] Version 12 incorporated a cloud-based database of malicious files called Symantec Insight.[7] Insight was intended to combat malware that generates mutations of its files to avoid detection by signature-based anti-malware software.[7] In late 2012, Symantec released version 12.1.2, which supports VMware vShield.[8]
A cloud version of Endpoint Protection was released in September 2016.[9] This was followed by version 14 that November.[10] Version 14 incorporates machine learning technology to find patterns in digital data that may be indicative of the presence of a cyber-security threat.[10] It also incorporates memory exploit mitigation and performance improvements.[3]
Features[edit]
Symantec Endpoint Protection is a security software suite that includes intrusion prevention, firewall, and anti-malware features.[11] According to SC Magazine, Endpoint Protection also has some features typical of data loss prevention software.[12] It is typically installed on a server running Windows, Linux, or macOS.[13] As of 2018, Version 14 is the only currently-supported release.[14]
Endpoint Protection scans computers for security threats.[11] It is used to prevent unapproved programs from running,[11] and to apply firewall policies that block or allow network traffic.[15] It attempts to identify and block malicious traffic in a corporate network or coming from a web browser.[16] It uses aggregate information from users to identify malicious software.[12] As of 2016, Symantec claims to use data from 175 million devices that have installed Endpoint Security in 175 countries.[12]
Endpoint Protection has an administrative console that allows the IT department to modify security policies for each department,[11] such as which programs or files to exclude from antivirus scans.[12] It does not manage mobile devices directly, but treats them as peripherals when connected to a computer and protects the computer from any malicious software on the mobile device.[12]
Vulnerabilities[edit]
In early 2012, source code for Symantec Endpoint Protection was stolen and published online.[17] A hacker group called 'The Lords of Dharmaraja' claimed credit, alleging the source code was stolen from Indian military intelligence.[18] The Indian government requires vendors to submit the source code of any computer program being sold to the government, to ensure that they are not being used for espionage.[17] In July 2012, an update to Endpoint Protection caused compatibility issues, triggering a Blue Screen of Death on Windows XP machines running certain third-party file systemdrivers.[19] In 2014, Offensive Security discovered an exploit in Symantec Endpoint Protection during a penetration test of a financial services organization.[20] The exploit in the Application and Device control driver allowed a logged-in user to get system access.[20] It was patched that August.[20] In 2019, Ofir Moskovitch, a Security Researcher discovered a Race Condition bug which involves 2 Critical Symantec Endpoint Protection Client Core Components: Client Management & Proactive Threat Protection and directly results in Protection Mechanism Failure that can lead to a Self-Defense Bypass, aka 'SEMZTPTN' - Symantec Endpoint Minimized Timed Protection.[21]
Reception[edit]
According to Gartner, Symantec Endpoint Protection 14 is one of the more comprehensive endpoint security products available and regularly scores well in independent tests.[3] However, a common criticism is that customers are 'fatigued' by 'near constant changes' in the product and company direction.[3]SC Magazine said Endpoint Protection 14 was the 'most comprehensive tool of its type . . . with superb installation and documentation.'[12] The review said EndPoint Protection had a 'no-brainer setup and administration,' but it does have a 'wart' that support fees are 'a bit steep.'[12]
Forrester said version 12.1 was the most complete endpoint security software product on the market, but the different IT security functions of the software were not well-integrated.[22] The report speculated the lack of integration would be addressed in version 14.[22]Network World ranked Symantec Endpoint Protection sixth in endpoint security products, based on data from NSS Labs testing.[23]
Symantec Endpoint Protection Download
References[edit]
- ^'What's new for all releases of Symantec Endpoint Protection 14.x'. Release versions, notes, new fixes, and system requirements for Endpoint Security and all versions of Endpoint Protection. [Symantec]. 17 November 2020.
- ^ abcdWalsh, Lawrence (November 2007). 'Troubled Waters'. CSO Magazine. 6 (10). CXO Media.
- ^ abcdOuellet, Eric; McShane, Ian; Litan, Avivah (30 January 2017). 'Magic Quadrant for Endpoint Protection Platforms'. gartner.com. Gartner.
- ^ abcdMessmer, Ellen (24 September 2007). 'Symantec revamps endpoint security product'. Network World. Retrieved 16 April 2017.
- ^Messmer, Ellen (23 June 2009). 'Symantec unveils endpoint protection services'. Network World. IDG.
- ^Moltzen, Edward (1 January 2010). 'Security In 20 Minutes, Really'. CRN. The Channel Company.
- ^ abcMessmer, Ellen (15 February 2011). 'Symantec looks to protect users from mutating malware'. Network World. IDG.
- ^Messmer, Ellen (3 December 2012). 'Symantec releases first anti-malware software to work with VMware vShield security system'. Network World. IDG.
- ^Kuranda, Sarah (13 September 2016). 'Symantec Rolls Out New Cloud-Based Endpoint Protection Solution For SMBs'. CRN. The Channel Company.
- ^ abOsborne, Charlie (1 October 2016). 'Symantec launches endpoint protection solution based on artificial intelligence'. ZDNet. CBS Interactive.
- ^ abcd'Symantec Endpoint Protection and the details for buyers to know'. SearchSecurity. 8 February 2018. Retrieved 8 February 2018.
- ^ abcdefgStephenson, Peter (22 August 2016). 'Symantec Endpoint Protection 14'. SC Magazine. Haymarket Media Group. Retrieved 20 April 2017.
- ^Stephenson, Peter (1 August 2012). 'Symantec Endpoint Protection 12 v12.1'. SC Magazine. Haymarket Media Group. Retrieved 16 April 2017.
- ^'Released versions of Symantec Endpoint Protection'. Enterprise Technical Support. Symantec. 16 March 2017. Retrieved 18 April 2017.
- ^'About the Symantec Endpoint Protection firewall'. Enterprise Technical Support. Symantec. 28 October 2016.
- ^'How intrusion prevention works'. Enterprise Technical Support. Symantec. 28 October 2016.
- ^ abVijayan, Jaikumar (6 January 2012). 'Symantec confirms source code leak in two enterprise security products'. Computerworld. Retrieved 18 April 2017.
- ^Akhtar, Iyaz (6 January 2012). 'That stolen Symantec source code? It's for older enterprise products'. CNET. CBS Interactive. Retrieved 18 April 2017.
- ^Raywood, Dan (16 July 2012). 'Symantec fixes 'blue screen of death' bug'. SC Magazine UK. Haymarket Media Group. Retrieved 16 April 2017.
- ^ abcKirk, Jeremy (5 August 2014). 'Symantec patches privilege escalation flaws in Endpoint Protection'. Network World. IDG.
- ^'Symantec Endpoint Protection Vulnerability'. YouTube.
- ^ abSherman, Chris; McClean, Christopher; Schiano, Salvatore; Dostie, Peggy (19 October 2016). 'The Forrester Wave: Endpoint Security Suites, Q4 2016'.
- ^'NSS Labs rated 13 advanced endpoint security products, flagged 2 with caution rating'. Network World. IDG. 15 February 2017. Retrieved 18 April 2017.