Question/Issue:
My system is running slowly since installation of Symantec Endpoint Protection. How do I configure Symantec Endpoint Protection to alleviate performance issues?
Solution:
Communication between the Endpoint Client and Manager are causing network and server slowdown.
- Modify the default communication settings:
- Click the Clients Tab.
- Select the client group you would like to modify.
- Click the Policies tab.
- If this is not the Global group, uncheck Inherit policies and settings from parent group. Ensure that Policy inheritance is OFF.
- Under Location-independent Policies and Settings, with in the Settings box, click Communications Settings.
- In the Download box select Pull mode.
- Modify the default Heartbeat Interval from "5 minutes" to fit your needs. This modifies how often clients check-in with the manager to receive policies, settings, and content (definition) updates.
- Click OK to save settings.
Network file sharing is slow or a network-hosted application runs slowly.
- Disable Network Drive Scanning:
- Click the Policies Tab.
- Click Antivirus and Antispyware.
- Click the policy you would like to modify and then click Edit the Policy.
- Click File System Auto-Protect.
- Under Network Settings, uncheck Network.
- Click OK.
- Assign the policy by clicking Assign the Policy, then check each group to which the policy should apply.
- Click Assign, then click Yes.
All systems in a group run slowly and Endpoint Protection processes are using a abnormally high level of system resources once a week.
- Modify the default weekly scan:
- Click the Policies Tab.
- Click Antivirus and Antispyware.
- Click the policy you would like to modify and then click Edit the Policy.
- Click Administrator-defined Scans.
- Select Weekly Scheduled Scan and click Edit...
- Modify this scan so that it will run at the least intrusive time.
The Application event log on the system is filled with tamper protection alerts.
- Disable Tamper Protection:
- Click the Clients Tab.
- Select the client group you would like to modify.
- Click the Policies tab.
- If this is not the Global group, uncheck Inherit policies and settings from parent group. Ensure that Policy inheritance is OFF.
- Under Location-independent Policies and Settings, with in the Settings box, click General Settings.
- Click the Tamper Protection tab.
- Uncheck Protect Symantec security software from being tampered with or shut down.
The system has trouble delivering email. The email server, with the Symantec Endpoint Protection client installed, runs slowly.
- Deactivate the email tools on Endpoint Protection Clients within a group:
- Click the Admin tab.
- Click Install Packages.
- Under View Install Packages, click Client Install Feature Sets.
- Under Tasks, click Add Client Install Feature Set...
- Type All except AntiVirus Email Protection in the Name box.
- Uncheck AntiVirus Email Protection.
- Click OK. You should see All except AntiVirus Email Protection listed under the default Client Install Feature Sets.
- Click the Clients Tab.
- Select the client group you would like to modify.
- Click the Install Packages tab.
- Double-click the install package that is currently in use, for example Symantec Endpoint Protection version 11.0.780.1109 for WIN32BIT. If there is no package present in this list click Add Client Install Package, then select the package you would like to use from the drop down menu.
- Under Client Features select All except AntiVirus Email Protection from the Select the features you want to use: drop-down menu.
- Click OK.
- Click the Clients tab. Under the Tasks menu click Run Command on Group and select Update Content.
- Part I - Create a custom feature set
Part II - Assign and deploy the custom feature set
Note: The above steps can be useful for adding or removing any product feature.
Original Article here
No comments:
Post a Comment