Hi,
Thank you for posting in Symantec community.
Symantec Endpoint Protection (SEP) client should be installed on all computers on the network, including servers. On servers, SEP should be placed in appropriate client groups so that specific management policies and associated exceptions can be applied. Depending on the server's role, creating and applying the correct policies is critical for system performance in the areas of disk I/O and CPU usage.
Installation best practices for Endpoint Protection on Windows servers.
http://www.symantec.com/docs/TECH92440">http://www.symantec.com/docs/TECH92440">http://www.symantec.com/docs/TECH92440
Best Practices for the Intrusion Prevention System component of Symantec Endpoint Protection (SEP) on high-availability/high bandwidth servers.
http://www.symantec.com/docs/TECH162135">http://www.symantec.com/docs/TECH162135">http://www.symantec.com/docs/TECH162135
Citrix and terminal server best practices for Endpoint Protection
http://www.symantec.com/docs/TECH91070