Endpoint Protection

Hello Team,
I am needing to install SEP on a two cluster SQL server.
I wish to verify the procedure.
Please let me know if this is correct:

1. start with the secondary node and take it offline in the cluster manager making it passive.
2. Shut off the SQL processes. 
3. Install SEP
4. Readd the server to be secondary again in the cluster manager
5. (In this case we are not rebooting right away)
6. repeat process with primary node server.

**also, do I need to exclude the quorum directory from scanning? 

Thank you!

Since SEP is not cluster aware, I would just install the client on the non-active node at that time, and when you verify everything is good and it has finished its' scan, install on the other one.  I deployed SEP to upwards of 300 SQL servers, many of them clustered, and it has installed pretty normally.  I do exclude the quorum from being scanned though.  It should also automatically set the SQL exclusions, but check this next link to make sure.

Guidelines for choosing antivirus software to run on the computers that are running SQL Server
http://support.microsoft.com/kb/309422

How to Verify if an Endpoint Client has Automatically Excluded an Application or Directory
http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2008090512574448

Title: 'Installing a Symantec Endpoint Protection client to a cluster server'
Document ID: 2008120113202748
> Web URL: http://service1.symantec.com/support/ent-security.nsf/docid/2008120113202748?Open&seg=ent





Title: 'Clustered SQL server support for the Symantec Endpoint Protection client.'
Document ID: 2009102610182848
> Web URL: http://service1.symantec.com/support/ent-security.nsf/docid/2009102610182848?Open&seg=ent