Directly contact our Support Team

Configuring Faronics Deep Freeze to work along with Endpoint Security

Endpoint Security by Bitdefender is a fully-automated computer security program, managed remotely by your network administrator. Once installed, it protects you against all kinds of malware (such as viruses, spyware and trojans), network attacks, phishing and data theft. It can also be used to enforce your organization's computer and Internet usage policies.

Faronics Deep Freeze helps eliminate computer damage and downtime by making computer configurations indestructible. Once Deep Freeze is installed on a computer, any changes made to the computer—regardless of whether they are accidental or malicious—are never permanent. Deep Freeze provides immediate immunity from many of the problems that plague computers today—inevitable configuration drift, accidental system misconfiguration, malicious software activity, and incidental system degradation.

Overview

Having Faronics Deep Freeze Enterprise installed on a computer will cause the signature updates installed by Endpoint Security to be deleted at every system reboot.

This article is meant to help you understand how to configure Faronics Deep Freeze Enterprise to work along with Endpoint Security without blocking:

Signatures updates after a system reboot
Policy assignment from Control Center
Endpoint Security product updates

This procedure is also detailed in a knowledge base article from Faronics website.

Installing Endpoint Security with Faronics Deep Freeze Enterprise

Configure manually

  1. Install Faronics Deep Freeze Enterprise version 7 or higher on a server in your network.
  2. Use the Deep Freeze Configuration Administrator utility to configure a password and a new partition (for instance, T:\) with minimum of 1.5 GB capacity as thawspace. The thawspace includes the files that will be kept after a system is rebooted with Deep Freeze active.
  3. Use the Deep Freeze Configuration Administrator utility to create an installation package for the systems protected by Deep Freeze. Go to File -> Create Workstation Install Program.
  4. Install the newly created package on the target machine and select the Boot Thawed option (this option will be used to install Faronics Data Igloo and Endpoint Security).
  5. Install Faronics Data Igloo.
  6. Open the regedit utility on the target machine and create the registry key HKEY_LOCAL_MACHINE\Software\Bitdefender.
  7. Using Faronics Data Igloo change the target of the HKEY_LOCAL_MACHINE\Software\Bitdefender key to a folder located on the T:\ partition.
  8. Create the folders %ProgramFiles%\Bitdefender\Endpoint\Signatures and %ProgramFiles%\Bitdefender\Endpoint\ThreatScanner on the partition containing the operating system.
  9. Using the Folder Redirection tab from Faronics Data Igloo, redirect these two folders to a folder from T:\ partition.
  10. Install Endpoint Security by Bitdefender on the target machine.

Configure using scripting functionality

  1. Install Faronics Deep Freeze Enterprise version 7 or higher on a server in your network.
  2. Use the Deep Freeze Configuration Administrator utility to configure a password and a new partition (for instance, T:\) with minimum of 1.5 GB capacity as thawspace. The thawspace includes the files that will be kept after a system is rebooted with Deep Freeze active.
  3. Use the Deep Freeze Configuration Administrator utility to create an installation package for the systems protected by Deep Freeze. Go to File -> Create Workstation Install Program.
  4. Install the newly created package on the target machine and select the Boot Thawed option (this option will be used to install Faronics Data Igloo and Endpoint Security).
  5. Install Faronics Data Igloo.
  6. Download the Bitdefender redirection script.
  7. Run the downloaded .vbs script file. On operating systems with User Active Control enabled, launch cmd.exe as administrator and use it to run the script.
  8. Install Endpoint Security by Bitdefender on the target machine.

Endpoint Security will have the update module fully working and the updates will be kept during a system reboot.
To exclude the posibility of a security breach, switch Faronics Deep Freeze Enterprise to the Boot Frozen mode and hide the T:\ partition.

Running an Endpoint Security product update

Important: The entire process involves rebooting the target system three times.

To successfully run an Endpoint Security product update:

  1. Switch the target machine to Boot Thawed mode. Deep Freeze will require a reboot in order to boot into Boot Thawed mode.
  2. Run the Update task from the Control Center. Aditionally, you can right-click the system tray icon of Endpoint Security and select About. This will trigger the product update.
  3. Reboot the target machine after the update is complete.
  4. Log in to Control Center to confirm the product update has been installed successfully by generating an Update Status report.
  5. Switch the target machine to Boot Frozen mode. Deep Freeze will require a reboot in order to boot into Boot Frozen mode.
Can't find a solution for your problem? Open an email ticket and we will answer the question or concern in the shortest time possible.

Rate this article:

Submit