We are in the process of migrating our clients from Sophos to Symantec Endpoint Protection (12.1.2015.2015) and are trying to configure how laptops that are not always connected to the network receive their updates when off-site. With Sophos, this was achieved through an update policy that stated to use the internal update manager as the primary location and to use an update repository that was located on a server in our DMZ as the secondary location.
Will we need to do something similar when using Symantec Endpoint Protection Manager or is the recommended method outlined in this article? If we need to do something similar, where do we find documentation to accomplish this? If the article is the recommended method, then we have followed that and created the policy, the location and assigned the policy.
Is there a way to find out the status of systems that are not on the network very often to ensure they are receiving updates and are not infected?
Thank you.