New Features of Symantec Endpoint Protection 12.1
Articles Blog

New Features of Symantec Endpoint Protection 12.1

January 5, 2020

We all know the Internet is a nasty place,
and enterprises need lots of different kinds of protection to keep from getting infected
or compromised. That’s where version 12.1 of Symantec’s Endpoint Protection comes in
handy. It is a powerful and full-spectrum collection of various security applications
for all of your endpoint PCs. We are looking at its main dashboard, and you can see overall
status, what endpoints are being managed, and whether any threats have been recently
detected. The management console can also be accessed
from a Web browser and other remote methods, as you can see here. This is David Strom and today I will show
you around SEP, as it is called. Viruses now number in the millions, and thanks to automated
crypter and packer tools anyone can create a brand new one in a matter of minutes that
can slip through some defenses. Malware authors have switched tactics and
gone from mass to micro distribution, and now build custom-made viruses that are very
targeted, often to just a single computer, again the better to avoid detection. You can setup the managed SEP client on either
32 or 64-bit Windows or Macs with a full suite of rules and policies First you install its management server called
the Symantec Protection Center that can install on just about any Windows PC with 2 GB of
RAM ? as long as it isn’t running Vista. Then you install individual clients using wizards,
sending an email or Web link, or pushing an MSI file as you see here.
On the client side, after it has been installed, it shows you this status screen.
There are four broad categories of protective features that are automatically enabled: network
intrusions, the traditional file-based anti-virus scanning, Reputation and Behavioral. Let’s
discuss each of them. The bread and butter of SEP is file-based
protection, and here you see the various anti-virus algorithms that are available, including email
attachments using Outlook and Lotus Notes, downloaded files, and a separate section for
Mac clients too. Network-based intrusion protection is this
product’s strong suit and comes with built-in protocol awareness, along with browser protection
features. To enable it, you just check two boxes. New to this version of SEP is reputation-based
protection using Symantec’s Insight service. Insight identifies new and zero-day threats
by using the collective wisdom of over millions of systems in hundreds of countries, and is
designed for the fast-changing customized threat landscape. If we click on the download
protection, we can access this service and adjust the severity levels and customize notification
messages. And beefed up from previous versions is the
behavioral protection using Symantec’s SONAR algorithms, which protects against threats
before they have been identified and before they can damage your computer. The value in this product is its simple reports
that can keep you current with what is happening on your network without burying you in copious
logs with every event. There are also preconfigured email notifications that inform you of the
most frequently used events such as when new client software is available, when a policy
changes, when it is time to renew your license, and when the management server locates unprotected
computers. And adding a scheduled report is easy, as you can see here. The latest version of SEP has improved its
scanning performance because it can skip many of the apps it already knows about, and the
scans purposely happen when the computer is idle too. There are three different versions of SEP:
the enterprise one we are showing you here that offers the virtual machine protection
for thousands of endpoints, an SMB version for smaller installations and a Cloud version
too. Speaking of virtual machines, SEP comes with
awareness on how to scan and protect VMs. There are a variety of specialized features
that enable you to do offline VM image scanning, and other techniques that can boost performance
and minimize disk operations too. I didn’t like that the reputation system relies
on having a constant Internet connection for its operations. If you are offline, you could
allow an exploit to access to your desktop. But this is very unlikely. Here is where you
can go for more information about SEP and how to download a free 60-day trial with unlimited
licenses to the full product. The software is very competitively priced compared to just
anti-virus only products. This is David Strom. Thanks for watching another
screencast video review at Webinformant dot tv. You can check out my other videos, book
me for your next conference, and read my articles on these links here.я

Leave a Reply

Your email address will not be published. Required fields are marked *