As of version 14.2, you set up replication between one site that is enrolled in the cloud console, and additional sites that are not. You enroll one site as the master site. All other sites can replicate directly with the master site, or replicate with each other. For example, if Site A is the master site, you enroll Site A into the cloud console. You configure Site B and Site C to replicate with Site A. Or, you can configure Site B to replicate with Site A, and configure Site C to replicate with Site B.
Table: Process for enrolling multiple replicated sites
Step 1: Replicate the two sites before you enroll in the cloud console.
Replicate all policies, groups, and log events before you enroll the master site to avoid any database conflicts.
You can also add a replication partner after you enroll the master site in the cloud.
Step 5: (Optional) Switch control of groups and devices to the cloud console.
By default, when you enroll an unreplicated Symantec Endpoint Protection Manager domain, the cloud console manages the client group structure. By default, when you enroll a replicated site, Symantec Endpoint Protection Manager manages the group structure.
If Symantec Endpoint Protection Manager is the master, you can add groups and policies on the master site, which then gets replicated on the partner site.
If you make the cloud console the master, first run replication with the partner site. This replication ensures that groups and policies you added on the partner site sync to the cloud console.
To switch control to the cloud console, enable the Manage Devices option after enrollment in Settings > Symantec Endpoint Protection Manager Enrollment in the cloud console.
You cannot perform failover or load balancing for the replicated partner.
If you configure Content Analysis System settings, configure them on the master site so that the functionality is available on the cloud console. If you configure CAS on the partner site, the CAS settings do not synchronize with the cloud console.
Removing and restoring replication between the sites that are enrolled in the cloud console
If you remove the partnership between the master site and a partner site, you also remove the relationship with the cloud console.
To restore the partnership with the master site, use the Add Existing Replication Partner wizard.
You can also enroll the partner site in the cloud console directly as an individual site. In this case, you must create a different Symantec Cyber Defense Manager account. To restore the partnership with the master site, you must unenroll the partner site. Then, on the master site, reconfigure the partnership with the Management Server Configuration Wizard.
As a best practice, keep the partner site as an individual site and do not try to restore the replication with the master site.