Endpoint Protection

 View Only

  • 1.  Symantec for Linux (Red Hat)

    Posted Dec 04, 2011 06:01 PM

    Hello,

    I have been asked to install and configure Symantec for Linux on a Red Hat box's that have no Graphical User Interface (GUI).
    Basically, everything runs under commands and as I've never installed Antivirus using a command line on a red hat box I've hit a road block.

    If anyone has any knowledge or if you can point me into right direction about this - it would be greatly appreciated.

    Kind regards,

    Dragan



  • 2.  RE: Symantec for Linux (Red Hat)

    Posted Dec 04, 2011 08:26 PM

    Everything you need to know is right here:

    ftp://ftp.symantec.com/public/english_us_canada/products/symantec_antivirus/symantec_antivirus_corp/10.1/manuals/SAV_Linux_Impl.pdf



  • 3.  RE: Symantec for Linux (Red Hat)

    Posted Dec 04, 2011 09:26 PM

    Thanks for that mate,

    One thing I am trying to understand, with SEP 11 or SEP 12.. usually you can configure a management server that manages the "clients" and all the policies are done at the server level. With the Linux package, is this the same case or do we have to install and configure each client manually?



  • 4.  RE: Symantec for Linux (Red Hat)

    Posted Dec 04, 2011 10:20 PM

    As far as I know, the client installed on Linux machines are the Antivirus components only. These are all self managed and the only time they'll connect to the server is to get the updates.



  • 5.  RE: Symantec for Linux (Red Hat)

    Posted Dec 04, 2011 10:52 PM

    From the Getting Started pdf of SEP 12.1

    "

    You can now configure Linux clients to send log events to Symantec Endpoint Protection
    Manager.

    The Symantec AntiVirus for Linux client now supports the following additional operating
    systems:
    ■ RedHat Enterprise Linux 6.x
    ■ SUSE Linux Enterprise Server and Enterprise Desktop 11.x (includes support for OES 2)
    ■ Ubuntu 11.x
    ■ Fedora 14.x, 15.x
    ■ Debian 6.x
    For information about using the Symantec AntiVirus client on Linux, see the Symantec AntiVirus for Linux Client Guide.

    "

     

    So far, I haven't seen an Admin guide for SEP 12.1.



  • 6.  RE: Symantec for Linux (Red Hat)

    Posted Dec 05, 2011 04:40 AM

    Hi Dragan,

    At the moment, SAVFL can forward those logs to the Symantec Endpoint Protection Manager, but cannot receive any policies, definitions, etc from it.  You may wish to cast a vote in favor of the following enhancement requests to speed such features.

    https://www-secure.symantec.com/connect/ideas/managed-sep-client-linux

    https://www-secure.symantec.com/connect/idea/sep-features-and-console-linux-or-mac-os

    The following articles may help you to create the sort of policies your are looking for using SAV technologies:

    How to configure Symantec AntiVirus for Linux using a GRC.DAT file
    Article: TECH93386 | Created: 2009-01-10 | Updated: 2010-01-09 |
    Article URL http://www.symantec.com/docs/TECH93386

    Management of Symantec AntiVirus (SAV) for Linux
    Article: TECH102587 | Created: 2007-01-05 | Updated: 2010-01-05 |
    Article URL http://www.symantec.com/docs/TECH102587

    Hope this helps!