If you install Symantec Endpoint Protection Manager with a Microsoft SQL Server database, there are specific configuration requirements for SQL Server. You can install Symantec Endpoint Protection Manager with either a local database or a remote database.
Table 2-7describes the SQL Server configuration settings that Symantec Endpoint Protection Manager requires.
Table 2-7 SQL server configuration requirements
Symantec Endpoint Protection Manager installation requirement
Configuration setting
Do not use the default name. Create a name such as SEPM.
By default, a database named Sem5 is created in the SQL Server instance when you install the Symantec Endpoint Protection Manager. The default instance is unnamed. It is supported, but can cause confusion if you install multiple instances on one computer. Instance name
Mixed Mode Authentication configuration
Set this password when you set Mixed Mode authentication. sa password SQL Server authentication Authentication TCP/IP Enabled protocol
Enable IP1 and IP2 IP addresses for TCP/IP (SQL Server 2005
only)
Set TCP Dynamic Ports to blank, and specify a TCP Port number. The default is typically 1433. You specify this port number when you create the database.
The Symantec Endpoint Protection Manager database does not support dynamic ports. TCP/IP port numbers for IP1, IP2, and PALL
(SQL Server 2005 only)
Must be started. SQL Server Browser service (SQL Server 2005
only)
If your database is located on a remote server, you must also install SQL Server client components on the computer that runs Symantec Endpoint Protection Manager.
During Symantec Endpoint Protection Manager installation, you make decisions about what database values to set. You should make these decisions before you start the installation.
Table 2-8lists and describes these values and settings.
Installing Symantec Endpoint Protection
Installing and configuring Symantec Endpoint Protection Manager
Table 2-8 Settings for installing Symantec Endpoint Protection Manager with a SQL Server database
Description Default
Setting
■ Use the default Web site
Installs the Symantec Endpoint Protection IIS Web application in the default IIS Web site, and works with any other Web application that is installed in the Web site.
■ Create a custom Web site
Disables the default IIS Web site, and creates a Symantec Web server for Symantec Endpoint Protection Manager.
Use the default Web site Select IIS Web site
configuration options
Name of the computer that runs the Symantec Endpoint Protection Manager.
local host name
Server name
Port number on which the Symantec Endpoint Protection Manager server listens.
8443 Server port
HTTP port used for remote console connections 9090
Web console port
Directory in which the Symantec Endpoint Protection Manager places data files including backups, replication, and other Symantec Endpoint Protection Manager files. The installer creates this directory if it does not exist. C:\Program Files\Symantec
Endpoint Protection Manager\data Server data folder
Site name of the highest level container under which all features are configured and run with the Symantec Endpoint Protection Manager.
Site local host name Site name
The password that encrypts communication between the Symantec Endpoint Protection Manager, clients, and optional Enforcer hardware devices. The password can be from 1-32 alphanumeric characters and is required. Document this password and put it in a secure location. You cannot change or recover the password after you create the database. You must also enter this password for disaster recovery purposes if you do not have a backed up database to restore.
None Encryption password
Table 2-8 Settings for installing Symantec Endpoint Protection Manager with a SQL Server database (continued)
Description Default
Setting
Name of the Microsoft SQL server and the optional instance name. If the database server was installed with the default instance, which is no name, type either host name or the host's IP address. If the database server was installed with a named instance, type either host name\instance_name or IP address\instance_name. Typing host name only works with properly configured DNS.
If you install to a remote database server, you must first install the SQL Server client components on the computer that runs the Symantec Endpoint Protection Manager.
local host name
Database server
Port that the computer running SQL Server is configured with to send and receive traffic.
Port 0, which is used to specify a random, negotiated port, is not supported.
1433 SQL Server Port
Name of the database that is created. sem5
Database Name
Name of the database user account that is created. The user account has a standard role with read and write access. The name can be a combination of alphanumeric values and the special characters~#%_+=|:./. The special characters`!@$^&*()-{}[]\\<;>,?are not allowed. The following names are also not allowed: sysadmin, server admin, setupadmin, securityadmin, processadmin, dbcreator, diskadmin, bulkadmin.
sem5 User
The password to associate with the database user account. The name can be a combination of alphanumeric values and the special characters~#%_+=|:./. The special characters`!@$^&*()-{}[]\\<;>,?are not allowed. None
Password
Location of the local SQL Client Utility directory that contains bcp.exe.
If you create a database on SQL Server 2005, the default numeric directory is 90. The complete default path is C:\Program Files\Microsoft SQL Server\90\Tools\Binn C:\Program Files\Microsoft
SQL Server\80\Tools\Binn SQL client folder
Name of the database server administrator account, which is typically sa.
None DBA user
Installing Symantec Endpoint Protection
Installing and configuring Symantec Endpoint Protection Manager
Table 2-8 Settings for installing Symantec Endpoint Protection Manager with a SQL Server database (continued)
Description Default
Setting
Name of the password that is associated with the database user account.
None DBA password
Location of the SQL Server data directory. If you install to a remote server, the volume identifier must match the identifier on the remote server. If you are installing to a named instance on SQL Server 2000, the instance name is appended to MSSQL with a dollar sign as in
\MSSQL$instance name\Data. If you are installing to a named instance on SQL Server 2005, the instance name is appended to MSSQL with a dot numeric identifier as in \MSSQL.1\MSSQL\Data.
Note:Clicking Default displays the correct installation directory, if you entered the database server and instance name correctly. If you click Default and the correct installation directory does not appear, your database creation fails.
Automatically detected after clicking Default SQL Server 2000: C:\Program Files\Microsoft SQL Server\MSSQL\Data SQL Server 2005: C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Data Database data folder
Name of the default user name that is used to log on to the Symantec Endpoint Protection Manager Console for the first time.
(not changeable) admin
Admin User Name
The password specified during server configuration to use with the admin user name.
None Admin Password