South Africa Security and Compliance User Group

Expand all | Collapse all

Does tamper protection need to be disabled before upgrade via Altiris (RU6)

  • 1.  Does tamper protection need to be disabled before upgrade via Altiris (RU6)

    Posted 07-15-2015 07:15 AM

    We are about to upgrade to RU6 to about 45000 machines that have a mixture of SEP 12.1 RU1-RU4MP1 . They already have tamper protection(uninstall password) on the AV policy. Do I need to remove tamper protection before upgrading to RU6 or not? We will be using Altiris to do the deployment for the upgrade to RU6.

    Is there a way to configure Altiris to deploy the package with the tamper protection password to complete the upgrade?



  • 2.  RE: Does tamper protection need to be disabled before upgrade via Altiris (RU6)

    Posted 07-15-2015 07:17 AM

    Should be no reason to disable it. I've never had an issue with it for upgrades.

    Did you have issues during testing? If so then you may need to add tamper protection exclusions. I can only speak from my experience that whether pushing from Altiris, SCCM, GPO, SEPM, etc. that I never needed to add them.



  • 3.  RE: Does tamper protection need to be disabled before upgrade via Altiris (RU6)

    Posted 07-15-2015 07:26 AM

    as per this document you need to create exclusions for altiris.

    Altiris Triggers Tamper Protection Alerts in Endpoint Protection
    https://support.symantec.com/en_US/article.TECH96718.html



  • 4.  RE: Does tamper protection need to be disabled before upgrade via Altiris (RU6)

    Posted 07-15-2015 09:39 AM

    You do not need to "remove" it per se from the feature set deployed, just disable via policy in the SEPM on your Groups\Locations before your Altiris deployment. Verify of course your Policy Serial Number reflecting this change. You may find step # 3, second bullet: Upgrade or migrate to Symantec Endpoint Protection 12.1.6 (Article: TECH230601) very informative.



  • 5.  RE: Does tamper protection need to be disabled before upgrade via Altiris (RU6)

    Posted 07-15-2015 10:37 AM

    Except for the Auto Upgrade feature inbuilt to SEPM, you don't need to remove the "Uninstall Password". Don't confuse yourself with the SEP password protection with Tamper protection. SEP password protection is designed to prevent user from accidentally/intentionally changing/Removing the SEP client, policies or the communication settings. 

     

    Whereas Tamper protection is designed to prevent other process/ users abusing/tampering the SEP client files,registry keys and processes.  Please let us know if you need more information.

     



  • 6.  RE: Does tamper protection need to be disabled before upgrade via Altiris (RU6)

    Posted 07-16-2015 05:02 AM

    Thanks for all the input. Will test and let you know.



  • 7.  RE: Does tamper protection need to be disabled before upgrade via Altiris (RU6)

    Broadcom Employee
    Posted 07-16-2015 10:19 AM

    Basically there isn't any such pre-requisite before making SEP client upgrade.  You can create the custom pacakge with password setting & push it through Altiris

    Can refer this guide: Installing and deploying SEP software with Altiris