Video Screencast Help

CentOS compatibility

Created: 04 Jun 2013 | 6 comments

Hi,

I would like to know whether the SEPM latest version compatible with CentOS operating system. 

If not, is SCSP (critical system protection) compatible with centOS ?

Waiting for your advice and related article..

Thanks in advance..

 

Operating Systems:
Discussion Filed Under:

Comments 6 CommentsJump to latest comment

.Brian's picture

SEPM cannot be installed on a LinuxOS. It is only compatible with Windows at this time.

https://www.symantec.com/endpoint-protection/syste...

You can see the full matrix for CSP here:

Symantec™ Critical System Protection Version 5.2 RU9 MP2 Platform and Feature Matrix

Article:DOC6408  |  Created: 2013-03-29  |  Updated: 2013-03-29  |  Article URL http://www.symantec.com/docs/DOC6408

 

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

Alex_CST's picture

Are you looking to use CentOS as the manager for CSP/SEP?  Or do you just want to protect the CentOS?

Please mark posts as solutions if they solve your problem!

http://www.cstl.com

ANTONYMA's picture

Thanks Brian and Alex for the replies.

I want to protect the CentOS and Solaris Server machines.

From the compatibility matrix I understand that CentOS 6 and above are compaible with SCSP to protect.

Any best practice guide to configure CentOS and Solaris OS with SCSP clients. (except the installation guide)

Thanks for the help.

 

Alex_CST's picture

The only thing I can suggest, is use the core unix config, and go from there.  There are no "best practices" because each server is different, and each customer has different requirements.  It depends what you are running on the server, and what you are wanting to prevent.

Please mark posts as solutions if they solve your problem!

http://www.cstl.com

Conventus Tyrrell's picture

Antonyma,

Agree with Alex_CST to use the core unix config. When you apply the policy, understand that tuning it is an iterative process:

1. Apply policy in "Prevention Disabled" mode

2. Evaluate events returned in the console and make decisions whether to allow or deny the activity

3. If allowed, tune the policy and reapply in "Prevention Disabled" mode

4. Return to step 1 and repeat until you no longer see events associated with normal operation of the server

5. Turn on prevention

Please bear in mind that this is not a trivial process and can take a substantial amount of time and effort. Your most efficient strategy may be to bring in consultative help to speed you along the way and provide advice gathered over years worth of implementations. Please don't hesitate to reach out if you need additional assistance.

Chris Tyrrell

Conventus Corp

ctyrrell@conventus-sei.com