Video Screencast Help

Guide for setting up SEP (stand alone) for SQL server

Created: 24 Oct 2012 • Updated: 25 Oct 2012 | 6 comments
This issue has been solved. See solution.

Hi,

Does anyone know if Symantec have released any sort of guide for setting up SEP (ideally for a stand alone client) on an SQL server? i.e. which folders should be excluded from scanning and are there any functions which should be disabled so as not to conflict with the SQL side of things?

Thanks.

Comments 6 CommentsJump to latest comment

Ashish-Sharma's picture

configuring SQL should be in accordance with Microsoft recommendation. For exclusion of MS SQL on SEP installed client, you can check this URL

http://www.symantec.com/business/support/index?page=content&id=TECH105240

Best Practices guide for Installing the Symantec Endpoint Protection Manager with a SQL Server 2005 Database
http://www.symantec.com/docs/TECH104405

Best Practices guide for Installing the Symantec Endpoint Protection Manager 11 RU5 with a SQL Server 2008 Database
http://www.symantec.com/docs/TECH96451

Microsoft SQL Server requirements for Symantec Endpoint Security 11.0 and Symantec Network Access Control 11.0

http://service1.symantec.com/SUPPORT/ent-security.nsf/2326c6a13572aeb788257363002b62aa/216db2f2828c1274ca25737b0040d3e5?OpenDocument

Also, check this Thread with similar issue:

https://www-secure.symantec.com/connect/forums/best-practices-sql-servers-sep

https://www-secure.symantec.com/connect/forums/best-practices-sql-server-0

Thanks In Advance

Ashish Sharma

 

 

fred2k's picture

Thank you very much for the reply, some of those links were helpful.

A lot of them were for SEP Manager though, and I'm using SEP stand alone client so it's hard to know which points are relevent.

I have added a Security Risk Exception and a SONAR Exception for

C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\ MSSQL\Data

Is this likely to leave the database exposed at all?

 

Two more questions which I wasn't able to ascertain from any of those articles:

  • Should I be adding the SQL application to the exception lists too? 
  • It mentions some Windows Server roles may need to be added to the exceptions lists but it doesn't say which. Does anyone have any idea which ones (and why?)

Thanks again.

 

Ashish-Sharma's picture

Should I be adding the SQL application to the exception lists too ?

SQL you need to create Manual Exclusions

http://www.symantec.com/connect/forums/sep-exchange-and-sql

 

Thanks In Advance

Ashish Sharma

 

 

Mithun Sanghavi's picture

Hello,

Check this Thread which is very similar - 

Best practices for SQL Server

https://www-secure.symantec.com/connect/forums/best-practices-sql-server-0

Hope that helps!!

Mithun Sanghavi
Senior Consultant
MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

fred2k's picture

Thanks again guys, I found what I was looking for in one of those thread. I'll post the link directly here for other people's benefit:

 

MS guide on AV exceptions for SQL files/folder, with useful notes:

http://support.microsoft.com/kb/309422

SOLUTION
Ashish-Sharma's picture

HI Fread2k

This link also available in my first comment URL

How to exclude MS SQL files and folders using Centralized Exceptions

http://www.symantec.com/business/support/index?page=content&id=TECH105240

Thanks In Advance

Ashish Sharma