When migrated Security Policies in NSX-T use a partner service that provides only Endpoint Protection or both Endpoint Protection and Network Introspection, deploy an instance of the partner service after all the clusters are migrated to NSX-T.
Only a host-based service deployment is supported.
In a host-based service deployment, one partner service virtual machine is installed on each host of the migrated cluster. In the vCenter Server, the vSphere ESX Agency Manager (EAM) service is internally used to deploy a partner service VM on each host of the cluster.
Prerequisites
- All the hosts in the cluster are migrated to NSX-T.
- All the migrated hosts are managed by a vCenter Server.
- A transport node profile is applied to the cluster.
Procedure
Results
What to do next
Go to the Partner Console and verify whether the endpoint protection service is activated. Now, the migrated endpoint protection rules are enforced on the workload VMs that are running on the NSX-T prepared cluster.
For more information about activating the endpoint protection service in the Partner Console, see the partner documentation.