Prerequisites for Anti-Malware

Before configuring Anti-Malware, you must:

1. Configure the Endpoint Security Management Server to work with a proxy server

   1. On the Endpoint Security Management Server, run:

      cpstop

   2. Open $UEPMDIR/engine/conf and edit the local.properties file.

      Note - Delete the # character from the beginning of each row that you edit.

   3. Add these properties:

      Property	Example
      Proxy server's IP address	http.proxy.host=<IP address>
      The proxy server's listening port	http.proxy.port=<port number>
      The username if basic authentication is enabled on the proxy server. Leave it empty if no authentication is required.	http.proxy.user=<username>
      The password if basic authentication is enabled on the proxy server.	http.proxy.password=<password>

   4. Save the $UEPMDIR/engine/conf/local.properties file.

   5. On the Endpoint Security Management Server, run:

      cpstart

2. Configure the Firewall Gateway to accept traffic from Anti-Malware signature update servers and Cloud Reputation services

   After configuring the proxy server, configure the Firewall Gateway to accept the traffic to the Anti-Malware update servers.

   1. In your Firewall Gateway, allow outbound internet connectivity.

   2. In your Firewall Gateway, allow outbound connectivity to the Anti-Malware update server.

3. Configure the Firewall Gateway to allow the Endpoint Security server to access ports 80 and 443

   The Endpoint Security server must have access to ports 80 and 443 on the Anti-Malware Signature Update Server to retrieve the latest malware definitions. Make sure that your Firewall Gateway allows this traffic.

4. Install the Anti-Malware Engine on the Endpoint Security Servers

   The Endpoint Security Management Server gets the Malware signatures from the central Malware definition server. Endpoint Security clients with the Anti-Malware component get Malware signature updates either from the Endpoint Security Management Server or from their Endpoint Policy Server.

   By default, the Endpoint Security Management Server and the Endpoint Policy Servers do not have the Malware update engine installed. You must install the Malware update engine on:

   • The Endpoint Security Management Server - From SmartEndpoint.

   • Endpoint Policy Servers - By installing a hotfix using CPUSE .

   To Install the Malware update engine on the Endpoint Security Management Server

   1. Open SmartEndpoint

   2. From the Menu, select Tools > Anti-Malware Updates.

   3. Click Download and install engine.