Configuring the clean upgrade installation option on Windows
The clean upgrade option uninstalls the previous version of Symantec Protection Engine and installs the newer version. During clean upgrade installation, you can select the authentication option to access the Symantec Protection Engine console. You can select either Symantec Protection Engine-based authentication or Windows Active Directory-based authentication.
- To configure Symantec Protection Engine clean upgrade installation option on Windows with Symantec Protection Engine-based authentication
- Log on to the computer on which you plan to install Symantec Protection Engine as administrator or as a user with administrator rights.
- In the Symantec Protection Engine .zip file, runSymantecProtectionEngine.exe.
- In theWelcomepanel, clickNext.
- In theLicense Agreementpanel, after you read the agreement, indicate that you agree with the terms of the Symantec Software License Agreement, and then clickNext.The default value is that you do not agree with the terms of the Symantec Software License Agreement. If you do not indicate that you agree, the installation is canceled.
- In theUpgrade the Symantec Protection Enginepanel, selectClean upgrade, and then clickNext.
- In theDeployment Scenariopanel, select the type of deployment that Symantec Protection Engine should protect.If you selectOther Application, enter the name of the application in the provided field.The maximum length of the application name can be up to 40 characters.This step is applicable for Symantec Protection Engine for Cloud Services only.
- Select one of the following NAS device type that you want to protect.NetApp ® devices (over RPC protocol only)Select this option if you have NetApp device that communicates over RPC protocol.Other NAS devicesSelect this option if you have NAS device other than NetApp.
- Select one of the following the NetApp NAS device type:
- 7-Mode
- Cluster Mode
- Cluster and 7-Mode both
- In theDestination Folderpanel, select the location to install Symantec Protection Engine, and then clickNext.The default location is C:\Program Files\Symantec\Scan Engine.If you plan to change the default location to install Symantec Protection Engine, make sure the new directory has the same permissions as that of the Program Files directory.If the new location to install Symantec Protection Engine does not have the same permissions as that of the Program Files directory, malicious users with lower privilege can read and copy file contents, replace malicious data in tags, rename the file, or even delete the product files.
- In theInitialization Methodspanel, select one of the following options, and clickNext:Core server with user interface (requires JRE)Select this option if you want to use the user-interface console of Symantec Protection Engine.This method requires you to install JRE.Core server only (does not require JRE)Select this option if you do not want to use the user-interface console of Symantec Protection Engine.This method does not require JRE to be installed.
- In theUI Authentication methodpanel, selectSymantec Protection Engine-based authentication, and then clickNext.
- In theAdministrative UI Setuppanel, configure the following options:Administrator PasswordType a password for the administrative account that you intend to use to manage Symantec Protection Engine.Confirm Administrator PasswordConfirm the password by typing it again.
- ClickNext.
- In theAdministrative UI Setuppanel, configure the following options:Administrator PortType the port number on which the Web-based console listens.If you change the port number, use a number that is greater than 1024 that is not in use by any other program or service. The default port number is 8004. You can disable the console by typing 0. If you disable the console, you can configure Symantec Protection Engine by editing the configuration file.SSL PortType the Secure Socket Layer (SSL) port number on which encrypted files are transmitted for increased security.The default SSL port number is 8005. If this port is already in use, select an SSL port that is not in use by any other program or service. Use a port number that is greater than 1024.
- ClickNext.
- In theURL Filteringpanel, selectEnable URL Filtering and download URL Filteringdefinitions to enable URL filtering feature.
- In the Reputation-based Protection (Insight) panel, select theSelect Insight Aggression Levelfrom the list.The Insight aggression level defines how sensitive the Symantec Insight ™ feature is to a file's reputation score.
- In theReady to Install the Programpanel, clickInstall.
- ClickFinish.
- To configure Symantec Protection Engine clean upgrade installation options on Windows with Active Directory-based authentication
- Log on to the computer on which you plan to install Symantec Protection Engine as administrator or as a user with administrator rights.
- In the Symantec Protection Engine.zip file, runSymantecProtectionEngine.exe.
- In theWelcomepanel, clickNext.
- In theLicense Agreementpanel, after you read the agreement, indicate that you agree with the terms of the Symantec Software License Agreement, and then clickNext.The default value is that you do not agree with the terms of the Symantec Software License Agreement. If you do not indicate that you agree, the installation is canceled.
- In theUpgrade the Protection Enginepanel, selectClean upgrade, and then clickNext.
- In theDeployment Scenariopanel, select the type of deployment that Symantec Protection Engine should protect.If you selectOther Application, enter the name of the application in the provided field.The maximum length of the application name can be upto 40 characters.
- In theDeployment Scenariopanel, select the type of deployment that Symantec Protection Engine should protect.If you selectOther Application, enter the name of the application in the provided field.The maximum length of the application name can be upto 40 characters.This step is applicable for Symantec Protection Engine for Cloud Services only.
- Select one of the following NAS device type that you want to protect.NetApp ® devices (over RPC protocol only)Select this option if you have NetApp device that communicates over RPC protocol.Other NAS devicesSelect this option if you have NAS device other than NetApp.
- Select one of the following the NetApp NAS device type:
- 7-Mode
- Cluster Mode
- Cluster and 7-Mode both
- In theDestination Folderpanel, select the location to install Symantec Protection Engine, and then clickNext.The default location is C:\Program Files\Symantec\Scan Engine.If you plan to change the default location to install Symantec Protection Engine, make sure the new directory has the same permissions as that of the Program Files directory.If the new location to install Symantec Protection Engine does not have the same permissions as that of the Program Files directory, malicious users with lower privilege can read and copy file contents, replace malicious data in tags, rename the file, or even delete the product files.
- In theInitialization Methodspanel, select one of the following options, and clickNext:Core server with user interface (requires JRE)Select this option if you want to use the user-interface console of Symantec Protection Engine.This method requires you to install JRE.Core server only (does not require JRE)Select this option if you do not want to use the user-interface console of Symantec Protection Engine.This method does not require JRE to be installed.
- In theUI Authentication methodpanel, selectWindows Active Directory-based authentication, and then clickNext.
- In theWindows Active Directory-based Authentication Settingspanel, in theGroupNamebox, type a valid security group name in the Domain\Groupname format.
- ClickNext.If the group name is incorrect, anGroup Name Validationscreen appears.ClickBackto try the security group name again.Alternatively, clickNextto continue the installation without a valid security group name.The Symantec Protection Engine service starts after installation but you cannot access the console. Once the installation is complete, you must go to configuration.xml and enter a valid security group name in the Domain\Groupname format to access the console.
- In theAdministrative UI Setuppanel, configure the following options:Administrator PortType the port number on which the Web-based console listens.If you change the port number, use a number that is greater than 1024 that is not in use by any other program or service. The default port number is 8004. You can disable the console by typing 0. If you disable the console, you can configure Symantec Protection Engine by editing the configuration file.SSL PortType the Secure Socket Layer (SSL) port number on which encrypted files are transmitted for increased security.The default SSL port number is 8005. If this port is already in use, select an SSL port that is not in use by any other program or service. Use a port number that is greater than 1024.
- ClickNext.
- In theURL Filteringpanel, selectEnable URL Filtering and download URL Filteringdefinitions to enable URL filtering feature.
- In theReputation-based Protection (Insight)panel, select theInsight Aggression Levelfrom the list.The Insight aggression level defines how sensitive the Symantec Insight ™ feature is to a file's reputation score.
- In theReady to Install the Programpanel, clickInstall.
- ClickFinish.