Home FAQ

Symantec Endpoint Protection Upgrade 14.2 To 14.3 New!

Comprehensive Guide to Upgrading Symantec Endpoint Protection from 14.2 to 14.3

Client Upgrade Settings (Best Practice)

| Setting | Recommendation | |---------|----------------| | Stagger upgrade | 10-20% of group per day | | Allow rollback | Keep 14.2 cache until 14.3 verified | | Reboot handling | Suppress reboot, notify user | symantec endpoint protection upgrade 14.2 to 14.3

Post-SEPM Upgrade:

• Apply patch (RU2/RU3) if needed.
• Test a single group/client upgrade.

Phase 1: Upgrading the Symantec Endpoint Protection Manager (SEPM)

1. Download the Installer: Log into your Broadcom support portal and download SEPM_14.3_RUx_Win64_Installation.exe (where RUx is the latest maintenance release, e.g., RU7).
2. Run as Administrator: Right-click the installer and select Run as Administrator.
3. Language Selection: Choose the language that matches your current installation to avoid display errors.
4. Installation Type: Select "Upgrade" (not New Installation).
5. License Agreement: Accept the terms.
6. Database Upgrade Prompt: The installer will detect the existing 14.2 database. It will ask for database credentials (SA or Windows authentication). Click Yes to proceed with schema upgrades. Warning: This is irreversible.
7. Web Console Configuration: The installer will migrate your IIS settings for the SEPM console.
8. Completion: Once the progress bar reaches 100%, click Finish. The SEPM service will restart.

Stop Services: Manually stop the Symantec Endpoint Protection Manager and Symantec Management Client services. Apply patch (RU2/RU3) if needed

7. Potential Issues & Mitigations

| Issue | Likelihood | Mitigation | |-------|------------|-------------| | Database upgrade fails (SQL compatibility) | Medium | Ensure SQL is at least 2016, run DBCC CHECKDB pre-upgrade. | | Client communication breaks after SEPM upgrade | Low | Restart Symantec Management Service; check firewall port 8014. | | Custom policies lost or reset | Low | Export all policies before upgrade as XML backup. | | High memory usage post-upgrade (Java console) | Medium | Increase SEPM heap size (set SEPM_JVM_MAX_MEMORY). | | 14.3 client fails on Windows 7 / old OS | High | Do not upgrade – keep 14.2 client or retire the OS. | Phase 1: Upgrading the Symantec Endpoint Protection Manager

Pause Services: Manually stop the three main SEPM services (Manager, API Service, and Web Server) and any syslog services that might lock files. Step-by-Step Upgrade Process 1. Upgrade the Management Server (SEPM)