SEP 12 Settings for Standalones

ghost-hunter used Ask the Experts™
I recently upgraded to Symantec Endpoint Protection 12.1 from Symantec 10.  Several of the systems I manage are not on any networks nor connected to the internet.  They are pure standalones.  SEP has many configuration options, of which, many of them aren't needed for these types of systems.  There are several functions (i.e., Proactive Threat, Network Threat, etc.) that do not need to be enabled for my systems.  What other settings in SEP do not need to be enabled/configured?  What specifically should have configured in the Virus and Spyware Protection Settings?
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
We just go with the antivirus/antispyware - nothing else.  We ran into problems with earlier versions of SEP where all these other functions caused major problems for users.

If you choose to use Proactive Threat, Network Threat and the others, if you are able to, at least give the unmanaged computers the ability to disable these other options, but do force them to keep antivirus running.


What about the settings for the Virus and Spyware Protection?  Did you change any of the default settings under the Auto-Protect Advanced Options?  Some of my users were complaining the scans were almost constant and affecting their work.  I went into the scan logs and I would see multiple scans completed within minutes of each other.
For your unmanaged users, I would give them nothing more frequently than a weekly scan, maybe just go monthly.  

For unmanaged users, only lock what absolutely must be locked.  If you want them to be able to disable antivirus, set time limits to automatically re-enable, and lock the settings for re-enabling.  We lock just about everything for managed users, but probably would also do the same for remote users.  You not only need to protect users from malware, but also you need to protect them from their own actions.

What we had to do here was set the PC BIOS to boot up at midnight every night because users were shutting down their PCs, and then Windows Updates and virus updates/scans would occur next time they booted up.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial