How do I install SonicWall Enforced Client?

A notice has been issued for SonicWall Enforced Client's (McAfee and Kaspersky). Please see Notice: End of Support for SonicWall Enforced Client for more information.

Step 1: Activating Client AV Enforcement on the SonicWall Appliance

Activate the Client AV Enforcement licenses on the www.Mysonicwall.com account, and then go to Manage |Security Services | Base Setup page and click on Synchronize button to update the Client AV Enforcement license on the SonicWall Appliance.

1. Login to SonicWall Firewall Appliance
2. Go to  Manage | Security Services | Base Setup page and ensure that the Client AV Enforcement is licensed.
3. On the Security Services | Client AV Enforcement page double-check the Number of AV licenses and Expiration date.
   Alert! If you are using SonicOS Standard skip the next step.  
4. Go to Network | Zone page and edit the zone (LAN, DMZ etc...) and enabled the option "Client AV Enforcement Service" and click OK.  

For license manager connectivity issues please see Troubleshooting License Manager Connectivity issues.

Step 2: Pre-requisites for Installing Enforced Client Anti-Virus

CAUTION: You must uninstall existing anti-virus software before installing the SonicWall Enforced Client Anti-virus software.

1. Configure your browser. Total Protection Service requires Microsoft Internet Explorer 5.5 SP2 or later during installation. Total Protection Service works with the default security settings in Internet Explorer.

NOTE: If on your administrative or client computers you typically use a non-Microsoft browser, such as Mozilla Firefox or Opera, you must install Internet Explorer before installing Total Protection Service. After the software is installed, you can continue to use your default Internet browser. You can access the SecurityCenter with Internet Explorer (version 5.5 or later) or Firefox (version 1.5 or later).

Step 3: Installing Client AV on the computers

To install the software yourself, you must have local administrator rights on the computer. If you do not, your administrator can install a program on your computer that will resolve this issue. 

1. If Client AV Enforcement is enabled on the SonicWall firewall appliance, when you try to access the Internet your web browser will be redirected to a page displaying the following message:
   

2. Click on the Install VirusScan button.

   NOTE: You may be prompted to allow ActiveX control. Acceptance is not required on computers running Windows Vista, or if you have previously agreed to accept all ActiveX controls from SonicWall, or if the security settings in Internet Explorer are set to a low level that allows ActiveX controls to be downloaded without a prompt.

3. Before installing the software you will be prompted to enter your email address or an identifier, which is used to identify the computer where the installation is taking place. You are not required to enter an email address to complete the installation. However, entering one enables your administrator to communicate with you about security issues affecting your computer. It is important that your administrator knows how to contact you.
   
4. Enter your email or an identifier and click Continue.
5. On the page that displays, click the Install button to begin the installation.
6. Click Run to begin the installation, or click Save to save the installer file and then manually launch the file. For installation, SonicWall  Enforced Client uses a cookie created at this time. The cookie expires after 24 hours. If you save the installation file and then try to install it after 24 hours have passed, or delete the cookie, you are prompted to begin the installation process again.
7. On computers running Windows Vista, if the User Account Control dialog box appears, click Continue.
8. Your browser will be redirected to www.sonicwall.com and SonicWall SonicWall Enforced Client installation will begin.
   
9. When the installation is complete, the SonicWall Enforced Client will display the following screen:
   
10. Click the Completing the Installation link to view more information on securing your computer or proceed to the Completing the installation section.

Step 4: Completing the installation

After installing SonicWall Enforced Client, perform these procedures to ensure that your software is working correctly and your computer is protected.  

Scan your computer

After installing the virus and spyware protection service for the first time, we recommend running an on-demand scan of all your computers drives. This checks for and cleans or deletes existing threats in files. In the future, files are scanned when they are accessed, downloaded, or saved.

To scan your computer:

1. Click M icon in the system tray.
2. Select Open Console, then select Action Menu, then Scan My Computer.   Scan your Inbox   After installing the virus and spyware protection service for the first time, we recommend running an on-demand email scan. This checks for threats in email already in your Microsoft Outlook Inbox. Future emails are scanned before they are placed in your Inbox.

To run an on-demand email scan:

From the Tools menu in Outlook, select Scan for Threats.   The On-Demand Email Scan dialog box appears when the scan starts. You can stop, pause, and restart the scan. You can also check the results of the scan.  

Set up the default firewall 

To ensure complete protection on computers running Windows XP or Windows Vista, the firewall protection service automatically disables the Windows firewall and configures itself as the default firewall. This enables it to monitor communications for Internet applications and track events for reporting purposes, even if the Windows firewall is also running.   We recommend that you do not re-enable the Windows firewall while the Total Protection Service firewall is enabled.

If both firewalls are enabled, the Total Protection Service firewall lists only a subset of the blocked IP addresses in its Inbound Events Blocked by the Firewall report. The Windows firewall blocks some of these addresses; however, it does not report them because event logging is disabled in the Windows firewall by default. If both firewalls are enabled, you must enable Windows firewall logging to view a list of all blocked IP addresses. The default Windows firewall log is C:\Windows\pfirewall.log. Enabling both firewalls also results in duplicate status and alert messaging.