When you install a management server, the Symantec Endpoint Protection Manager console includes one domain, which is called Default. A domain is a structural container in the console that you use to organize a hierarchy of groups, clients, computers, and policies. You set up additional domains to manage your network resources.
Each domain that you add shares the same management server and database, and it provides an additional instance of the console. All data in each domain is completely separate. This separation prevents administrators in one domain from viewing data in other domains. You can add an administrator account so that each domain has its own administrator. These administrators can view and manage only the contents of their own domain.
If your company is large, with sites in multiple regions, you may need to have a single view of management information. You can delegate administrative authority, physically separate security data, or have greater flexibility in how users, computers, and policies are organized. If you are a managed service provider (MSP), you may need to manage multiple independent companies, as well as Internet service providers. To meet these needs, you can create multiple domains. For example, you can create a separate domain for each country, region, or company.
See Adding a domain.
You can copy policies and clients from one domain to another. To copy policies between domains, you export the policy from the originating domain and you import the policy into the destination domain. To copy clients between domains, you use the SylinkDrop tool. This tool replaces the communication file on a client to allow the client to talk to a different management server.