This document discusses the features and abilities of On Premises Implementations of SEP SBE.
On Premises implementations of SEP SBE utilize SEP Manager software, run locally on one of the machines in the environment to distribute definitions, software updates, policies, and provide central management for the security of the environment.
SEP SBE has the ability to offer reporting on a wide range of categories that will keep you informed about the current status of systems in your environment and events that have occurred.
The on-premise manager offers separate policies for each security component. These policies offer slightly more options, though most businesses don't change the default settings.
The Firewall for On Premises implementations of SEP SBE comes with a default policy that offers a great level of protection, while allowing most common types of communication. There are times when rules need to be written so programs can communicate properly, to facilitate this the firewall policy has an easy rule wizard that configures the firewall component to open the ports and communications protocols to meet program needs.
Network Intrusion Prevention automatically detects and blocks network attacks. Browser Intrusion Prevention automatically detects and blocks browser attacks.
Exceptions allow SEP SBE to ignore particular files, usually for performance reasons. Many programs, such as SQL, require some exceptions in order to work efficiently with Anti-Virus software.
The computers tab located in the On-Premise Manager is where every computer with an SEP SBE client installed on the network can be viewed and centrally managed. Some of the features include:
The Admin tab is for the primary administrator of the SEP SBE environment. The ability to control licensing, server settings, and additional users is available under this tab.
|Manager Options:||On Premise Manager||Cloud Hosted Portal|
|Hosted by Symantec||X|
|Hosted on Local Server (On-Premise System Requirements)|
|Client Security Summary on Home Page||X||X|
|News, Current Threats, Protection Status on Home Page||X|
|Several Report Types: Status, Network, Risk, Scan, Firewall - several sub categories||X||X|
|Reports Available on Manager and Email||X||X|
|.PDF, .HTML, .XML||X|
|Separate Polices for Virus Settings, Firewall, Intrusion Prevention, Exclusions, and LiveUpdate - Has more options available to turn settings on or off||X|
|Centralized Single Policy Page Containing: AV, Firewall, USB Device Control, Exclusions, etc.||X|
|Computers Tab: View all Symantec protected systems|
|A group structure based view that allows the admin to separate clients by location, subnet, roles, etc.||X||X|
|Admin and Users Tab|
|Manage Additional Admin Accounts||X||X|
|On-Premise and .Cloud Managed Clients:|
|Basic Protection Installation Option Available: Anti-Virus Component Only||X|
|Full Protection Including All Protection Components||X|
|Full Protection with the Addition of Safe Surfing||X|
|Default Server Install Package - has all protection components installed except the Firewall.||X|
|LUH - Live Update Host. Designates a system to download engine updates and virus definitions. Other systems in the same location or subnet then download from that machine to reduce network traffic.||X|
|Auto-update of most protection related software||X|