Endpoint Protection

Does anyone have or know where to find guidance for the secure configuration of Symantec Endpoint Protection AV/ASW un-manged client installations?

There are no STIGs as yet for SEP 11.x, only SAV 10.x products and it appears there won't be for some time still.  I have reviewed some of the Best Practices documents; however they do not provide enough focus on a secure configuration for either managed or un-managed client installations.

Thanks.

What  is  a STIG? What  secure  configuration, are  you  looking for? I mean, do you  need security  best  practises  configuration, for  unmaanged client, or  some thing  else?

Security Technical Implementation Guides (STIGS).

http://iase.disa.mil/stigs/index.html

These are official guides used by the DoD to securely configure (harden) DoD IT assets.  At the moment DISA/FSO (the office that develops and releases these) had not posted an updated STIG for SEP.  Due to this we will have to apply the previous SAV 10 STIGS to the SEP product to the extent that the particular setting or configuration option still exists.  I was looking for an official Symantec "secure configuration" type document for SEP to help augment our efforts. 

In our particular environment we can only deploy SEP as an AV/ASW un-managed client; however, if the only Symantec documentation is for managed clients, it is likely we could extrapolate the un-managed configuration from that.