Enrolling a Symantec Endpoint Protection Manager domain into the cloud console

You must first enroll a
Symantec Endpoint Protection Manager
domain before you can view or manage clients and protection from the Symantec Integrated Defense Manger (ICDm) cloud console.
You can enroll a maximum of 50 Symantec Endpoint Protection Manager domains.
When you upgrade
Symantec Endpoint Protection Manager
, SEPM retains the enrollment status.

Before you start enrollment

Enrollment with the cloud console installs the
Symantec Endpoint Protection Manager
bridge service, or connector, using an .MSI file.
Your environment must meet the following requirements to support the enrollment of a domain into the ICDm cloud console:
  • Paid subscription to Symantec Endpoint Security Complete or Symantec Endpoint Security Enterprise.
  • You can set up this login account when you initiate domain enrollment from
    Symantec Endpoint Protection Manager
    . Or you might have an existing account to use for login.
  • Administrator access to the
    Symantec Endpoint Protection Manager
    .
  • Symantec Endpoint Protection Manager
    14.0.1 or later clients
    You can enroll a
    Symantec Endpoint Protection Manager
    domain into the cloud console with earlier clients, but these earlier clients cannot take advantage of the cloud-only policies.

Step 1: Get an enrollment token from the cloud console

  1. In the cloud console, sign in to your Symantec Security Cloud account.
  2. Go to
    Integration > Enrollment
    .
  3. Select
    Copy to Clipboard
    to copy an enrollment token from this page.

Step 2: Start the enrollment

To start the enrollment from Symantec Endpoint Protection Manager
(version  14.3 MP1 and earlier or a Symantec Endpoint Security Enterprise subscription)
  • Select the
    Cloud
    tab.
To start the enrollment from Symantec Endpoint Protection Manager
(14.2 or earlier)
  • In
    Symantec Endpoint Protection Manager
    , on the
    Home
    page select
    Enroll Now
    or go to the
    Cloud
    tab.
    The
    Get Started
    button takes you to the cloud console sign in page. If you do not have sign in credentials, contact your account team manager.

Step 3: Complete the enrollment

  1. In
    Symantec Endpoint Protection Manager
    , paste the enrollment token into the specified area in the
    Cloud
    page.
  2. Select
    Enroll Symantec Endpoint Protection Manager
    .
    You get a confirmation message.
  3. You can select
    Launch
    in the
    Symantec Endpoint Protection Manager
    Home
    page banner to log on to the cloud console.

Step 4: Choose whether to manage clients and policies from the cloud console

After enrollment, all of your clients computers appear in the cloud console as devices. By default, the
Symantec Endpoint Protection Manager
manages the topology. To manage your topology from the cloud console, you must switch management control on the cloud console. For more information, see:
Whenever you make a change to the device group structure, there is a 10-minute delay before the change appears in
Symantec Endpoint Protection Manager
. The reverse is also true. The behavior is similar to how
Symantec Endpoint Protection Manager
replication functions. During the delay, you should not try to make additional topology changes. The changes might not take effect.
More information