Endpoint Protection

Hi
What policies and package settings do you recomend for Server, Desktop&Laptop
For me is our primary step to install Antivirus & Antispyware for all our clients and servers.
And in the feature also activate firewall and the other options

I chose "All features of symantec endpoint protection" for all our clients and servers
The Policies who is active for servers are
Antivirus and Antispyware , Live update

The Policies who is active for desktops and laptops are
Antivirus and Antispyware , Live update, IntrusionPrevention

For the desktop and laptops I use "All features of symantec endpoint protection" whitout no problem so far.
But on the servers should I only use "Only antivirus and Antispyware"?

and shall the local sep on sepm server be managed or unmanaged

What do you think

In the server you can install all the features except truscan which is a component of PTP
Because it will not work with server os
If you are installing NTP in server fist do it in a test setup to assure that it is not stopping any req. traffic .If it is stopping you may have to create custom policies for that..

The client in SEPM also should me managed

While installing SEP in server you have to consider the role of the server also because it may need to some exclusions

 

The application and device control policy and truscan  will not work with 64 bit oses ...

It is always better to install all features because it will give a layered protection which is more effective than a single protection technology..
 

Wow that was a fast answer .....
Thanks so much.

Any more doubts?
  If no pls mark one post as solution and close the discussion