Endpoint Protection

Hello,

I have been tasked with getting SEP set up on my company's Linux environment. I have seen multiple posts and articles (on this site, and others) that go either way on the topic of whether or not SEPM can manage Linux clients.

What I need is an absolute answer one way or the other: Can you actively manage a Linux Client (Specifically RHEL 6.5/6.6 clients) with SEP 12.1.5 or 12.1.6 via SEPM? If so, how the heck do you get it to work?

My frustration with this is that I have been searching up and down the documentation for a couple days straight and seem to only find conflicting information. As soon as I get on track with something I find another article that says what I'm trying to do can't be done.

So please, anyone who knows 100% for certain whether or not you can do this, let me know.

Yes, you can but with some caveats. First off, this article provides a great deal of insight and will probably answer all your questions if you haven't seen yet:

Symantec Endpoint Protection for Linux Frequently Asked Questions (SEP for Linux FAQ)

SEP for Linux can report in and be managed by the SEPM. AV is the only component available for Linux (no firewall, no IPS) and this can be managed from the AV policy. It can also upload logs to the SEPM.

By default, the SEPM cannot provide content to SEP for Linux, it has to go out to Symantec LiveUpdate for content updates. However, you can configure the SEPM to act as a reverse proxy to provide content.

Full details on that setup are here:

SEPM can be configured as a reverse proxy 

That's pretty much it.