Endpoint Protection

Hi All,

Could you share the Sylink.xml all locations detail for Symantec SEP 11 & SEP 12 for Windows 32 bit & 64 bit for Windows 2003 & 2008.

Thanks :)

Jayant Salunkhe

sylink.xml for SEP11 (win 2003/2008):

C:\Program Files\Symantec\Symantec Endpoint Protection

sylink.xml for SEP 12.1 (win 2003):

C:\Documents and Settings\All Users\Application data\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Config

sylink.xml for SEP 12.1 (win 2008):

C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Config

Hello,

"Thumbs up" to WD

However for 64 bit machines, 

SEP 12.1

"C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.xx.xx.xx\Data\Config"

SEP 11.x

C:\Program Files (x86)\Symantec\Symantec Endpoint Protection

Hope that adds!!

Thanks WD & Mithun,

Where 'smc' located for 64 bit Win 2003 & win 2008 please for SEP 11 client :)

Path for smc is

C:\Program Files\Symantec\Symantec Endpoint Protection

Where 'smc' located for 64 bit Win 2003 & win 2008 please for SEP 11 client

please share in details :)

Hello,

Easy to find the Location.

1. Start > Run > Type "services.msc" and click OK
2. Under Services window, scroll down to Symantec Management Client.
3. Right click on the same and Click on Properties
4. Check the Path for Executable

In Windows 2003, it is C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\Smc.exe" 

Hope that helps!!

Default path woul be C:\Program Filesx86\Symantec\Symantec Endpoint Protection

could any provide me detail for;

still not getting answer for;

1) Where 'smc' located for Win 2008 64 bit OS SEP 11 client installed machine?

2) Where 'smc' located for Win 2003 64 bit SEP 11 client installed machine?

Apologies for asking same question in different manner!!, I don't have machine to check..

please help.

Hello,

Easy to find the Location.

1. Start > Run > Type "services.msc" and click OK
2. Under Services window, scroll down to Symantec Management Client.
3. Right click on the same and Click on Properties
4. Check the Path for Executable

11.x 

C:\Program Files\Symantec\Symantec Endpoint Protection\

12.1

In Windows 2003, it is C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\Smc.exe" 

In Windows 2008, it is C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\Smc.exe" 

Hope that helps!!

SEP 11.0 64 Bit

C:\Program Files (x86)\Symantec\Symantec Endpoint Protection

SEP 11.0 32 Bit

C:\Program Files\Symantec\Symantec Endpoint Protection

Thanks could you provide me detail for as below;

For 64 Bit OS :-

1) 'smc' location for Win 2008 - 64 bit OS SEP 11 client installed machine?

ANS :

2) 'sylink.xml' location for Win 2008 - 64 bit OS SEP 11 client installed machine?

 ANS :

3) 'smc' location for Win 2003 - 64 bit OS SEP 11 client installed machine?

ANS : 

4) 'sylink.xml' location for Win 2003 - 64 bit OS SEP 11 client installed machine?

ANS :

--------------------------------------------------------------------------------------------------------------------------------

For 32 Bit OS :-

A) 'smc' location for Win 2008 - 32 bit OS SEP 11 client installed machine?

ANS :

B) 'sylink.xml' location for Win 2008 - 32 bit OS SEP 11 client installed machine?

 ANS :

C) 'smc' location for Win 2003 - 32 bit OS SEP 11 client installed machine?

ANS :

D) 'sylink' location for Win 2003 - 32 bit OS SEP 11 client installed machine?

ANS :

Thanks.. :)

Actually am preparing script as below;

1)Stop service (smc)

2) Copy existing sylink.xml file as sylink%Random%.xml

3) Copy for sylink.xml file from folder to location for 32/64 bit - Win 2003/2008 respectively.

4) Start service (smc)

Script as below;

"C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\smc" -stop
if exist "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SyLink.xml" copy "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SyLink.xml" "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SyLink%RANDOM%.xml"
COPY "%~dp0SyLink.xml" "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\" /y
Ping -n 10 127.0.0.1>nul
"C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\smc" -start
pause

Ccould you provide me all in script;

if we have folder (ABC), having all four sylink.xml files (32/64 bit - Win 2003/2008) and the script file.

Challenge is - after execute script - should find OS type & version, based on that copy respective location's existing xml as backup & copy new xml from folder (ABC) :)

Jayant Salunkhe .... cheers...

If you want to distribute sylink.xml files, you can use the SylinkReplacer tool which you'll get from Symantec Technical support: http://www.symantec.com/docs/TECH105211

If it doesn't work for you (which I assume), have a look at Sylinkdrop.exe. You will find it under \Tools\NoSupport\SylinkDrop on SEP11 CD2.

Sylinkdrop.exe is scriptable (it has a silent mode) and does all the stuff you are fighting with in your script: Stopping the smc service, copying sylink.xml into the correct location (well, I hope -- I never tried it on all your platforms) and restarting the smc service. Combine it with the psexec tool from Sysinternals (Microsoft) to distribute and execute it remotely.

Thanks for your proposal, but we need to send this all in one script with sylink.xml to customer, then their engg. will run script in mix environment like above

if you could do this please suggest, its a 2012 challenge for us :)

i am trying & will make it, thats sure!

When you said that you will need this all in one script, does that mean that the script will contain other tasks not related to Symantec?

If you are replacing multiple Sylink.xml files, greg12's proposal of using the tool is the best option. Provided that the user has full access and you have File and Printer Sharing Services enabled.

And if you'll be using a script, you would need to make one for each unique path or do a scripting that locates the existing sylink file. Also not that for the sylink.xml file to be used, it should be in that exact filename. "2) Copy existing sylink.xml file as sylink%Random%.xml"

May we know the purpose of this exercise?

Cheers.

1) The Script am preparing only for Symantec for for 32/64 bit - Win 2003/2008 respectively situation.

2) Am avoiding to tool if there is most easy option available. Tool will use if Script fails.

3) Yes, user have full access for Script & tool prospects.

4) yes, 1st script will find OS version then script will work on 'if' state.

5) We need to send this all in one script with all sylink.xml to customer to easy change SEPM management server for 1000+ machines. :)

Please suggest!

Ok, now I get it. You are helping your client move from one management server to another. The paths everyone provided are correct and you can use it in a script which basically contains the commands.

Here's how it should go - replacing the text in brackets with the actual locations:

[symantec path]\smc -stop

ren [target path]\sylink.xml sylink.[choose your own extension]

copy [source]\sylink.xml [target]\sylink.xml

[symantec path]\smc -start

However, here's what I recommend:

How to move Symantec Endpoint Protection Manager from one machine to another

Article URL http://www.symantec.com/docs/TECH104389

Thanks for updating; The script you have provided the same I have also made for one single machine as above from me.

However we require ALL IN ONE Script for 32/64 bit - Win 2003/2008 environment.

I wrote a script that does exactly what your trying to do, while I can't give you the script, I can tell you a bit about how I get my variables, we have both SEP 11 and SEP 12 machines as well as 32/64 and XP thru Server 2008 R2, so it's similar to your environment.

If the OS is X86 then I read the following registry keys to get the path to the HomeDirectory and what Product Version I'm working with:

("HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\AV", "Home Directory")
("HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\SMC", "ProductVersion")

if OS is X64 then read these keys into variables:

("HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Symantec\Symantec Endpoint Protection\AV", "Home Directory")
("HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Symantec\Symantec Endpoint Protection\SMC", "ProductVersion")

To find the Sylink file, I use this:

If $ProductVersion < "12.0.0000.000" Then
    $PathToSylink = $HomeDirectory
ElseIf $ProductVersion > "12.0.0000.000" Then
    $PathToSylink = "%AllUsersProfile%\Symantec\Symantec Endpoint Protection\CurrentVersion\Data\Config"
Endif

Along with the great information you've received from the all posts above, it appears that you should have enough to get you going.

As a side note, if tamper protection is enabled, you will probably need to incorporate the Sylink Drop utility into your script.

Good luck and if your script is not proprietary, you may consider posting it here so that we can see the work you have already done and can offer suggestions for filling in any gaps.

-Mike

Based on below script three script please suggest, how it works for 32/64 bit environment ! :)

Cheers !!

1) Script to detect OS 32/64 bit;

@echo off

Set RegQry=HKLM\Hardware\Description\System\CentralProcessor\0

REG.exe Query %RegQry% > checkOS.txt

Find /i "x86" < CheckOS.txt > StringCheck.txt

If %ERRORLEVEL% == 0 (

Echo "This is 32 Bit Operating system"

) ELSE (

Echo "This is 64 Bit Operating System"

)

pause

2) Script to replace sylink.xml file for 32 bit OS

"c:\Program Files\Symantec\Symantec Endpoint Protection\smc" -stop
if exist "c:\Program Files\Symantec\Symantec Endpoint Protection\SyLink.xml" copy "c:\Program Files\Symantec\Symantec Endpoint Protection\SyLink.xml" "c:\Program Files\Symantec\Symantec Endpoint Protection\SyLink%RANDOM%.xml"
COPY "%~dp0SyLink.xml" "c:\Program Files\Symantec\Symantec EndPoint Protection\" /y
Ping -n 10 127.0.0.1>nul
"c:\Program Files\Symantec\Symantec Endpoint Protection\smc" -start
pause

3) Script to replace sylink.xml file for 64 bit OS

"C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\smc" -stop

if exist "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SyLink.xml" copy "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SyLink.xml" "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\SyLink%RANDOM%.xml"

COPY "%~dp0SyLink.xml" "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\" /y

Ping -n 10 127.0.0.1>nul

"C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\smc" -start

pause