Endpoint Protection

 View Only

  • 1.  How to create SEP scan exclusion for a group of server

    Posted Mar 06, 2013 06:42 PM

    Hi,

    I got some of the following servers that I'd like to add some recommended directory exclusion from SEP monthly Full scan policy:

    Active Directory
    Exchange Server
    SQL Server
    Enterprise Vault server
    File servers
    Other clustered server
     

    can anyone please provide me with the KB article in how to set that and which directory should I put the exclusions for those servers above ?



  • 2.  RE: How to create SEP scan exclusion for a group of server

    Posted Mar 06, 2013 06:47 PM

    See this KB article which shows each product that SEP automatically sets exclusions for:

    About the files and folders that Symantec Endpoint Protection excludes from virus and spyware scans

    Article:HOWTO80947  |  Created: 2012-10-24  |  Updated: 2013-01-30  |  Article URL http://www.symantec.com/docs/HOWTO80947

     

    Not all the servers you mentioned above may be in here so there will be some manual work. You may need to check the vendors website for recommended AV exclusions.

    This MS KB Article is very helpful as well:

    Virus scanning recommendations for Enterprise computers that are running currently supported versions of Windows

    http://support.microsoft.com/kb/822158

    Also, a good Symantec KB reference:

    Excluding a file or a folder from scans

    Article:HOWTO80920  |  Created: 2012-10-24  |  Updated: 2013-01-30  |  Article URL http://www.symantec.com/docs/HOWTO80920

     



  • 3.  RE: How to create SEP scan exclusion for a group of server

    Posted Mar 06, 2013 09:07 PM

    Look this

    About the files and folders that Symantec Endpoint Protection excludes from virus and spyware scans

     

    Article:HOWTO54876 | Created: 2011-06-29 | Updated: 2012-10-02 | Article URL http://www.symantec.com/docs/HOWTO54876

    Preventing Symantec Endpoint Protection from scanning the Microsoft Exchange 2007 directory structure

     

    Article:TECH102249 | Created: 2007-01-26 | Updated: 2013-01-04 | Article URL http://www.symantec.com/docs/TECH102249

    configuring SQL should be in accordance with Microsoft recommendation. For exclusion of MS SQL on SEP installed client, you can check this URL

    http://www.symantec.com/business/support/index?page=content&id=TECH105240

     

    Installing a Symantec Endpoint Protection (SEP) client to a cluster server

    http://www.symantec.com/docs/TECH91154

    How to exclude 2008 R2 Cluster Shared Volumes from Symantec Endpoint Protection

    http://www.symantec.com/docs/TECH140062

    What scan exclusions should be applied to all Windows clustered server nodes

    http://www.symantec.com/docs/TECH105581

    Recommended list of antivirus exclusions for Symantec Enterprise Vault

    http://www.symantec.com/business/support/index?page=content&id=TECH48856



  • 4.  RE: How to create SEP scan exclusion for a group of server

    Broadcom Employee


  • 5.  RE: How to create SEP scan exclusion for a group of server

    Posted Mar 06, 2013 11:01 PM

    Hi,

    Please check with this.

    http://www.symantec.com/docs/HOWTO80947

    http://www.symantec.com/business/support/index?page=content&id=HOWTO80920

     



  • 6.  RE: How to create SEP scan exclusion for a group of server

    Posted Mar 06, 2013 11:10 PM

    many thanks guys for the advice and suggestion.

    I assume that once I have created the group in SEPM, then drag the server into the group, then the policy should take effect in the next polling update to the SEPM.



  • 7.  RE: How to create SEP scan exclusion for a group of server

    Posted Mar 06, 2013 11:14 PM

    Yes it's depend your HeartBeat setting



  • 8.  RE: How to create SEP scan exclusion for a group of server

    Broadcom Employee
    Posted Mar 06, 2013 11:17 PM

    correct, once communicate with the SEPm and the group it will download the policy and its take sthe changes.