You are looking to utilize bootable containers with DCS:SA Linux Agents on the RedHat platform

DCS Linux Agent 6.10.1.76 (or higher)

DCS 6.10.3 Management Server (or higher)

Client OS: RHEL 9 bootc image, with tag 9.7

DCS Linux Agent Support for Red Hat Bootable Containers has been added 

The Symantec Data Center Security (DCS) Linux Agent now extends support to Red Hat's bootable container (bootc) platform. This integration allows organizations to utilize bootc images to build, deploy, and manage the operating system as an immutable container image while maintaining robust security instrumentation.

Key Features and Advantages

• Full Security Stack: Support includes Intrusion Detection (IDS), Intrusion Prevention (IPS), and Anti-Malware (AMD) features.
• Immutable Infrastructure: The OS is managed as a container image, enabling it to be built, shipped, and updated using standard container technologies.
• Transactional Updates: Updates are applied via bootc upgrade commands, allowing for seamless transitions and easy rollbacks if issues occur.

Deployment and Configuration

Deploying the DCS agent within a bootable container involves specific environmental requirements:

• Platform Support: RHEL 9 bootc image, with tag 9.7
• Install location: Writeable Locations are required as the file system is largely read-only, the DCS agent must be installed under the /etc prefix (e.g., /etc/symantec).
• Prerequisite Packages: The container image requires packages such as "at", "audit", and "policycoreutils-python-utils" 
• DCS Policy Pack: Make sure to use Prevention policies from the pack, which is dated later than or equal to 15 April 2026 (m5.2.9-20260415). The policies are part of the 6.10.3 policy pack of the DCS:SA 6.10.3 server.

For full bootable container details, please visit our online documentation