Current location - Quotes Website - Signature design - What are the key points of SEPM disaster recovery?
What are the key points of SEPM disaster recovery?
Tasks to perform when preparing for disaster recovery:

Make sure to back up the database regularly (preferably once a week) and store the backups in different places.

1. The database backup directory is located at:

\ \ ProgramFiles \ Symantec \ Symantec endpoint protection manager \ data \ backup.

The backup file name is

2. Move this database to another storage area, because it will be deleted when uninstalling.

3. Find the keystore file and the server.xml file.

The name of the keystore file is keystore _

4. During the installation, these files will be backed up to the following directory:

\ \ program file \ Symantec \ Symantec endpoint protection manager \ server private key backup.

Note: You can also back up these files from the administrator panel of the Symantec Endpoint Protection Manager console.

5. Use a text editor to create and open a text file.

6. Name the file Backup.txt or something similar.

7. Open server.xml, find the password of keystorepass, and copy and paste it into the text file above.

8. Leave the text file open.

Note: This password can be used for storepass and keypass. Storepass is used to protect JKS files. Keypass is used to protect private keys. Enter these passwords to recover the certificate. Password string is similar to keystore pass = "wjcuzx7kmx $ QA1u1".

9. Copy and paste the string between double quotation marks. (Do not include double quotation marks. )

10. If there is only one domain, please find and copy the sylink.xml file from the following directory:

\ \ Program Files \ Symantec \ Symantec Endpoint protection manager \ data \ outbox \ agent .

1 1. Paste it into:

\ \ program files \ Symantec \ Symantec endpoint protection manager \ server private key backup.

12. If there are multiple domains, please find and copy the sylink.xml file for each domain on the client computer, and then paste it into:

\ \ program files \ Symantec \ Symantec endpoint protection manager \ server private key backup.

13. If the database is not backed up, you must provide the domain ID. This ID is located in the sylink.xml file on the client computer in each domain.

14. open each sylink.xml file, find the DomainId, copy and paste it into the Backup.txt text file.

15. Add this ID to the new domain created to include existing clients.

The string in the sylink.xml file is similar to: "domain id =" b44ac676c08a165009ed819b746f1".

16. Copy and paste the string between double quotation marks. (Do not include double quotation marks. )

17. In the Backup.txt file, type the encryption password used when installing the first site in the installation instance.

18. Please retype this key when reinstalling Symantec Endpoint Protection Manager.

Note: If there is no backup database to restore, you must retype the same key.

If there is a backup database to restore, you do not need to retype the same key, but it is a best practice to retype the same key.

19. In the Backup.txt text file, type the IP address and host name of the computer running Symantec Endpoint Protection Manager.

20. In case of catastrophic hardware failure, Symantec Endpoint Protection Manager must be reinstalled on a computer with the same IP address and host name.

2 1. In the Backup.txt file, type the site name that identifies Symantec Endpoint Protection Manager.

22. Save and close the Backup.txt file, which contains the basic information needed for disaster recovery.

Although the site name is not strictly required for reinstallation, it helps to create a consistent recovery.

24. Copy these files to removable media and store the media in a safe place, preferably a safe.

25. After ensuring the security of these files, you should delete them from the computer running Symantec Endpoint Protection Manager.

The following example illustrates a text file that contains information needed for a successful disaster recovery.

If you create this file, you can copy and paste this information if necessary during disaster recovery.

About the disaster recovery process

The disaster recovery process needs to complete the following three processes in turn:

Restore Symantec endpoint protection manager

Recover server certificate

Resume client communication

The way to restore client communication depends on whether you have access to database backups.

Restore Symantec endpoint protection manager

In case of disaster, please restore the protected files after the initial installation. Then open the Backup.txt file containing password, domain ID and other information.

About identifying a new computer or a rebuilt computer

If there is a catastrophic hardware failure, it may be necessary to rebuild the computer. If you rebuild the computer, you must specify the original IP address and host name. This information should be in the Backup.txt file.

Reinstall Symantec endpoint protection manager.

The key task to perform when reinstalling Symantec Endpoint Protection Manager is to type the installation contents.

Pre-authorization key name used when installing Symantec Endpoint Protection Manager (installation failed).

Reinstall Symantec endpoint protection manager.

1. Insert the installation CD,

2. Start installing Symantec Terminal Protection Manager.

3. In the welcome panel, choose to install my first site.

4. Click "Next".

5. Continue the installation until you are prompted to enter the pre-* * access key.

6. In the "site information" panel >; In the Encryption Password box, type.

Note: When restoring without backing up the database, if you type the password incorrectly, the restore will fail.

7. Click Next.

8. When prompted, re-create the same type of database.

9. Continue the installation until the Management Server Installation Wizard-Configuration Complete Panel is displayed.

10. In the Configuration Complete panel, under Run Migration and Deployment Wizard Now, select No.

1 1. Click Finish.

Restore server certificate

Server certificate is a Java keystore, which contains a public certificate and a private-public key pair. You must enter the password contained in the Backup.txt file. The password is also located on the original server _

Restore server certificate

1. Log in to the console.

2. Click "Administrator".

3. Under Tasks, click Server.

4. Under View Server, expand Local Sites.

5. Click the computer name that identifies the local site.

6. Under Tasks, click Manage server certificates.

7. In the welcome panel, click Next.

8. In the Manage Server Certificates panel, select Update Server Certificates.

9. Click Next.

10. Under Select the certificate type to import, select the JKS keystore.

1 1. Click Next.

Note: If you have implemented one of the other certificate types, please select it.

12. In the JKS keystore panel, click Browse.

13. Find and select the backed-up keystore _

14. Click OK.

15. Open the disaster recovery text file.

16. Select and copy the keystore password.

17. Activate the JKS keystore dialog box.

18. Paste the keystore password into the keystore and key box.

Note: Only the paste mechanism of Ctrl+V is supported.

19. Click Next.

Note: If the error message indicates that the keystore file is invalid, you may have entered an invalid password. Please try copying and pasting the password again. (This error message is misleading. )

20. In the Finish panel, click Finish.

2 1. Log off from the console.

22. Click Start > Settings > Control Panel >; "administrative tools" > "services"

23. In the Services window, right-click Symantec Endpoint Protection Manager.

Click Stop.

Note: Please do not close the Service window until the disaster recovery is completed and client communication is re-established.

25. right-click Symantec endpoint protection manager.

26. Click Start.

Note: stopping and starting Symantec endpoint protection manager can fully restore the certificate.

Resume client communication

If you have access to database backups, you can restore this database and then restore client communication. The advantage of using database backup for recovery is that clients will reappear in their corresponding groups and still follow the original policy. If you cannot access the database backup, you can still resume communication with the client, but the client will appear in the temporary group. You can then recreate the group and policy structure.

Restore client communication using database backup.

The database cannot be recovered on the computer running the active Symantec Endpoint Protection Manager service, so the service must be stopped and started several times.

Restore client communication using database backup.

1. If you have closed the service window, click Start > Settings > Control Panel >; "administrative tools" > "services"

2. In the Services window, right-click Symantec Endpoint Protection Manager.

3. Click "Stop".

Note: Please do not close the service window until this process is completed.

4. Create the following directory: \ \ Program files \ Symantec \ Symantec endpoint protection manager \ data \ backup.

5. Copy the database backup file to this directory.

Note: By default, the database backup file name is

6. click start > programs > Symantec endpoint protection manager >: "Database Backup and Recovery".

7. In the Database Backup and Recovery dialog box, click Restore.

8. In the Restore Site dialog box, select the backup file that has been copied to the backup directory.

9. Click OK.

Note: The database restore time varies with the size of the database.

10. Click OK at the message prompt.

1 1. Click Exit.

12. click start > programs "> Symantec endpoint protection manager >; Manage server configuration wizard.

13. In the welcome panel, select Reconfigure Management Server.

14. Click Next.

15. In the server information panel, modify the input values as needed to match the previous input, and then click Next.

16. In the database server selection panel, select the database type that matches the previous type, and then click Next.

17. In the database information panel, modify and insert the input value to match the previous input, and then click Next.

Note: The configuration process takes several minutes.

18. In the configuration completion dialog box, click Finish.

19. Log in to Symantec Endpoint Protection Manager console.

20. Right-click your group.

2 1. Click the Run command on Group >; "Update content".

22. If the client does not respond after about half an hour, please restart the client.

Client communication can be resumed without database backup.

For each domain you use, you must create a new domain and reinsert the same domain ID into the database. These domain ids are located in the disaster recovery text file (if someone typed this information in the file). The default domain is the system domain.

The best practice is to create a domain name that is exactly the same as the previous domain name. To recreate the system (default) domain, attach a value, for example: _2 (System_2). After restoring the domain, you can delete the original System domain and rename the new domain to System.

Client communication can be resumed without database backup.

1. Log in to the Symantec Endpoint Protection Manager console.

2. In the console, click Administrator.

3. In the System Administrator panel, click Domains.

4. Click "About" in the upper right corner.

5. Hold down Shift+Ctrl+Alt, and double-click the mouse three times quickly anywhere in the About dialog box.

6. Click OK.

7. Under Tasks, click Add Domain.

8. Open the disaster recovery text file.

9. Select and copy the domain ID.

10. Select the Add Domain dialog box, and then paste the domain ID into the domain ID box.

Note: If the domain ID box does not appear, please repeat steps 4, 5, 6 and 7 until the box is displayed. Only the paste mechanism of Ctrl+V is supported.

1 1. Click OK.

(Optional) Repeat steps 7, 8, and 9 for each domain you want to restore.

12. Under Tasks, click Manage Domains.

Restart all client computers. These computers will appear in the temporary group.

(Optional) If only one domain is used, delete the unused default System domain and rename the newly created domain to System.