You wish to know whether you can configure EDR in an environment that uses a proxy server.
All versions of Symantec EDR 4.x are compatible with environments where a network proxy is installed and configured between Symantec EDR and the internet.
Symantec EDR cannot use a DNS server over a proxy and does not support the use of DNS proxy on HTTPS. This configuration is not supported by EDR.
To ensure proper use of a proxy server in your environment, please verify the following:
For additional information on configuring a network proxy, consult the section "Configuring Network Proxy Information" in the Symantec EDR Help documentation. The Symantec Endpoint Detection and Response appliance utilizes the network proxy for external communications, such as downloading virus definitions from LiveUpdate or contacting Synapse for analyses. You can set up access to a network proxy that requires Basic Access Authentication (BA) or no authentication. Your proxy server must allow access to the same required domains and URLs that your firewall can access. Admin rights are necessary to configure network proxy information.
A 'network proxy' is the proxy situated between EDR and Symantec servers, configured on an EDR management appliance. This configuration informs EDR that a proxy is in use during communication with Symantec servers, such as for license registration and LiveUpdate. For more information, see the section titled "Configuring Network Proxy Information" in the EDR documentation.
The 'enterprise proxy' relates to SEDR (ATP) Network Scanner functionality. It is used to indicate the location of the proxy server within the network topology when configuring the scanner for network traffic inspection. Further details can be found in the section "Building an Enterprise Proxy List" in the EDR documentation.