New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Script 10_PrepBISF_AV-SEP and 10_PersBISF_AV-SEP #61

Closed
musklor opened this Issue Sep 6, 2018 · 5 comments

Comments

Projects
None yet
3 participants
@musklor
Copy link

musklor commented Sep 6, 2018

We could put the Server in the right SEP GROUP (tamper protection disabled) before processing.

Before:
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\smc -start
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\smc -importsylink
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\smc -updateconfig
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\smc -stop

After:
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\smc -stop
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\smc -importsylink
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\smc -updateconfig
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\smc -start

@matthias-schlimm

This comment has been minimized.

Copy link
Collaborator

matthias-schlimm commented Sep 6, 2018

what you mean with Before and After ? in which of the both SEP scripts possible to run, please explain it in more detail, thx.

@matthias-schlimm matthias-schlimm added this to To do in Bugs Bunny via automation Sep 6, 2018

@matthias-schlimm matthias-schlimm removed this from To do in Bugs Bunny Sep 6, 2018

@musklor

This comment has been minimized.

Copy link
Author

musklor commented Sep 6, 2018

Beginning and end of script

@matthias-schlimm

This comment has been minimized.

Copy link
Collaborator

matthias-schlimm commented Sep 6, 2018

if you start the smc.exe at the end of the preparation, it's not possible. this will create a new GUID on the Master itself, which was deleted before in the registry and the filesystem

@musklor

This comment has been minimized.

Copy link
Author

musklor commented Sep 6, 2018

Of course. My idea isn't good. I don't want to put the sep password inside the script. I think I'll deactivate the tamper protection for the updater AND the target devices. And all your scripts will be fully functional.

@matthias-schlimm

This comment has been minimized.

Copy link
Collaborator

matthias-schlimm commented Sep 6, 2018

sounds good

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment