Advanced Threat Protection

Hi,

I wish to know which exclusions are needed in order to work properly with another parallel endpoint protection.

I know what I need to exclude in Windows systems and it's well documented,

I need it for Mac and Linux.

Do you have a kb for that so I can follow?

Closest article I could find:

https://www.symantec.com/connect/articles/sav-linux-scanning-best-practices-somewhat-illustrated-guide

You'll probably need to work with specific vendors to find out what they recommend for their product(s).

As Brian mentioned, you will want to work with the specific vendors to find out what they recommend being excluded. As for the SEP for Mac and Linux products, you will want to ensure all of our files, folders and processes are excluded from another vendor security application. Most AV vendors, Symantec included, do not recommend running multiple AV products on a single system due to the significant potential for conflicts. With that said...

On a Linux system you will want to exclude our rtvscand, smcd and symcfgd processes (daemons). You will also want to exclude /opt/Symantec, /etc/symantec and /var/symantec (assuming you installed SEPFL to the default paths).

On a macOS system, exclude the file path /Library/Application Support/Symantec. There may be others as well, but I don't have a Mac system running at present to verify (sorry).

If the other security software can block network ports, ensure it whitelists those used by SEP for communication to the SEP Manager and LiveUpdate servers.