SEP11 vs OfficeScan 10?
I work at a school district here in the Phoenix area. We currently use Sophos AntiVirus and will be switching over to a new solution by next month. We have narrowed it down to two solutions, OfficeScan 10 from Trend Mirco and Endpoint Protection from Symantec.
My questions which I can't seem to find online anywhere are:
How well does SEP11 run on Citrix, Terminal Servers, Exchange Servers, and SQl servers?
I seem to have issues with Live Update on all my test clients. The general response is to reinstall LiveUpdate but why? That is a pain.
I also seem to be having a lot of issues with Proactive Threat Protectino being Off and out of definitions on most of my test clients. A manual reinstall is the only way I can seem to fix this????
Also, since we are not an Altiris House what is the best practice for installing SEP11 and removing Sophos? Trend will remove Sophos when installed but SEP11 won't. We do use Dell Management Console which is based off of Altiris. Can we intergrate the Endpoint Plugin for this?
Any suggestions or information on what SEP11 has over Trend will also help.
Thanks,
Kris Turner
kris.turner@dysart.org
Comments
some answers
Hi Kris,
What version of SEP are you testing?
I will try to answer to some of your questions.
SEP works fine on Terminal Servers and Citrix, it is important to apply the suggestions of the related white paper.
SEP automatically excludes the Exchange folders.
Regarding SQL Server, you should apply the exclusions recommended by Microsoft.
Issues with LiveUpdate and Proactive Threat Protection require further investigation.
Symantec provides a tool to remove the software of several competitors, it is in one of two CD's of SEP.
Regards,
Regards,
Giuseppe
Can you direct me to these
Can you direct me to these white papers mentioned above?
Also we are testing SEP11 MR4.
Hope this helps...
http://service1.symantec.com/SUPPORT/ent-security....
Kedar Mohile http://kedarmohile.blogspot.com
Thanks, Do you have white
Thanks,
Do you have white papers on how the best practice is to install SEP11 on SQL and Exchange servers as well?
Thanks,
Kris
SEP should install and run
SEP should install and run fine on SQL and Exchange. All appropriate exclusions will be made by the SEP installer. We have SEP on our Exchange server and on several servers with SQL and have no problems. We don't use NTP (the firewall) so I am not sure if that could cause problems.
Whitepaper on Ctrix and Terminal Servers
Hi Kris,
I posted the article below which may take a day or two to get published to the Article site here....in meantime this is the Symantec Support KB URL on how to tune SEP with Citrix and Terminal Servers with the whitepaper:
http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2008112414453348
As well, we made improvements for running the SEP client with randomization intervals-this way you do not have the SEP clients updating at the same time :).
Trend's detetction rates are much lower than Symantec, as evidenced by 3rd party testing. In fact Trend no longer submits to the VB100. A google search should illuminate that information so you can draw your own conclusions. As well, testing shows SEP 11 is faster performing than Trend.
http://eval.symantec.com/mktginfo/downloads/endpoint/Channel_Toolkit/content/Sales/tolly_group_report.pdf
We have automatic exclusions for Exchange and Domain Contrllers, you can check what is excluded in the reg key, detailed here in KB:
As for SQL exclusions do check with MSFT for what to exclude(always check the vendor! of application) but in general you exclude the SQL DB files:
http://service1.symantec.com/support/ent-security.nsf/854fa02b4f5013678825731a007d06af/5256af2a034e570a88257475005ac35a?OpenDocument
-Josh
Would you like to reply?
Login or Register to post your comment.