Résumé du cours
The Symantec Endpoint Protection 14x: Maintain and Troubleshooting course is designed for the IT security management professional tasked with troubleshooting Symantec Endpoint Protection 14x.
Students learn how to troubleshoot and upgrade to Symantec Endpoint Protection 14x and how to monitor and troubleshoot the SEPM, client-to-SEPM communication, content distribution, client deployments, and protection technologies.
The class also covers how to follow Symantec best practices for troubleshooting and remediating a virus outbreak and performing advanced monitoring using IT Analytics.
Moyens d'évaluation :
- Quiz pré-formation de vérification des connaissances (si applicable)
- Évaluations formatives pendant la formation, à travers les travaux pratiques réalisés sur les labs à l’issue de chaque module, QCM, mises en situation…
- Complétion par chaque participant d’un questionnaire et/ou questionnaire de positionnement en amont et à l’issue de la formation pour validation de l’acquisition des compétences
Pré-requis
- You must have attended the Symantec Endpoint Protection 14.1: Administration course or have one year of day-to-day experience maintaining a SEP environment, which includes basic troubleshooting.
Objectifs
By the completion of this course, you will be able to:
- Monitor client-to-SEPM communication.
- Maintain a Symantec Endpoint Protection environment.
- Upgrade the Symantec Endpoint Protection environment.
- Monitor and troubleshoot a Symantec Endpoint Protection environment.
- Monitor and troubleshoot SEPM and client content delivery.
- Monitor and troubleshoot protection technologies.
- Use best practices when troubleshooting and remediating a virus outbreak.
- Use IT Analytics to generate comprehensive reports from Symantec Endpoint Protection.
Contenu
This course includes practical hands-on exercises that enable you to test your new skills and begin to use those skills in a working environment.
Introduction
- Course overview
- The classroom lab environment
Troubleshooting Techniques and Tools
- Use a systematic approach for problem solving.
- Describe Symantec and third-party troubleshooting tools and how they are used.
- Know which SEPM and SEP client logs to research when troubleshooting specific issues.
- Use the Symantec Knowledge Base and interact with Symantec Technical Support.
SEPM Console Troubleshooting
- Identify critical SEP 14x services and processes.
- Troubleshoot authentication issues.
- Troubleshoot the embedded and SQL database connection and configuration.
Troubleshoot Installation and Migration Issues
- Describe how data is transferred during replication and know which replication logs are affected.
- Troubleshoot a new SEPM SEP 14x installation.
- Describe how to upgrade the SEPM.
- Ensure a successful SEPM upgrade.
- Upgrade Windows clients and troubleshoot the deployment.
- Ensure Mac compatibility and troubleshoot upgrading Mac clients.
- Install and troubleshoot Linux client installations.
Troubleshooting Client Communication Issues
- Identify the interactions between the client and the SEPM.
- Identify heartbeat process.
- Locate and configure debug logs for client communication issues.
- Describe communications issues from the client perspective.
- Describe the tools and methods to repair communication problems.
- Identify Linux and Mac communication issues.
Content Distribution Issues
- Determine which LiveUpdate source works best for your organization.
- Examine how the SEPM connects to LiveUpdate and downloads content.
- Examine LiveUpdate logs.
- Manage LIveUpdate for SEP 14x clients.
- Describe Symantec best practices for managing and monitoring GUPs, and describe the use the Symantec Endpoint Protection Content Distribution Monitor.
Reporting
- Identify and examine critical SEPM reports for use during a malware outbreak.
- Introducing IT Analytics
- Creating reports using IT Analytics.
Incident Handling
- Life of an outbreak.
- Handling false positives.
- Identifying false positives.
Performance Issues
- Assess SEP performance using sizing and scalability recommendations.
- Optimize performance for the SEPM.
- Optimize performance for the SEP client.
- Utilities and other resources. Case studies.
Moyens Pédagogiques :