Shared Signatures Server

A Shared Signatures Server:

  • Installs as a regular Endpoint Security Client and becomes a "signature server" later.

  • Responsible for holding the latest Anti-Malware signatures.

    The signatures store in a read-only shared folder and update according to policy.

  • Must run on a persistent virtual machine, preferably on the same storage as the clients.

  • Must connect to the Endpoint Policy Server or the Internet to update signatures.

Configuring the Signatures Server

For the Endpoint Security Clients version E84.20 (and higher), you can configure the Signature Server with a policy.

  1. Create a new Virtual Group.
  2. Assign a Golden Image machine to the new group.
  3. From the left navigation panel, click Policy.
  4. In the left pane, click Threat Prevention.
  5. In the policy, clone the applicable Threat Prevention rule.
  6. Assign the new Threat Prevention rule to the new Virtual Group.
  7. In the right pane, click the Web & Files Protection tab.
  8. Scroll down and click the Advanced Settings button.
  9. From the left tree, click Files Protection > Signature.
  10. In the Shared Signature Server section, select the "Set as shared signature server" and enter the local path of the folder.

    Example: C:\Signatures

    Note:

    If the folder does not exist, the endpoint creates it automatically.

  11. Configure the applicable frequency in the Frequency section.
  12. Click OK.
  13. At the bottom, click Save.
  14. At the top, click Install Policy.

Wait 20 minutes to make sure:

  • Anti-Malware Signatures version is current.

  • Shared Signatures folder exists with Anti-Malware signatures.

    Important - If the folder is empty, the setup is not valid.