Installing Symantec Endpoint Protection in Linux Client

Introduction

Symantec Endpoint Protection or SEP is a security software especially for anti-malware, intrusion with firewall features for desktops and servers.

Linux doesn’t require an antivirus software at all. However, in some case, if your Linux server running with Samba or FTP it’s required to scan the client’s files. In this case, too, we have ClamAV. But still, some enterprise environment uses antivirus and it’s intentionally they need to spend money or they need to show something to management.

Information & Warning

If you are a Linux guy and asked to install SEP keep in mind the CPU utilisation and filesystem like /tmp and /var will fill up frequently whenever Symantec Endpoint Protection tries to download the definitions files. You may hear from your application team frequently regarding the performance issue as well.

To Install and configure Symantec Enterprise End Point Protection client in Linux distribution like RedHat Linux, Centos, Oracle Linux we can follow the below steps. This setup needs a few numbers of 32-bit dependencies including Glibc. Whenever you are going to upgrade your minor release version or Patch your server be conscious to not mess up with Glibc 32 and 64-bit packages. To be in the safe side, make sure to take your backup prior to any activity.

Downloading Java (JCE)

Before starting the installation download Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy zip Files from Oracle official site.

Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy

Downloading and Installing SEP

Download SEP client package from SEP Manager and extract under any location.

# cd /tmp/ && tar -zxvf sep.tar.gz && cd sep

As discussed above install with required 32-bit dependencies and packages.

# yum install gcc libgcc.i686 glibc.i686 kernel-devel libX11.i686 sharutils ncompress -y

Installing Java

Download and install with JDK package, I’m installing with JDK 8 maybe this version can differ for your installation. You can refer this to Install Java in RHEL and CentOS

We are going with latest Java SE Development Kit 8 for Symantec endpoint Protection.

# rpm -ivh jdk-8u91-linux-x64.rpm

Extract and Copy JCE

Unzip the Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy zip Files which downloaded initially.

# unzip jce_policy-8.zip

Copy those extracted files and overwrite the existing files under /usr/java/$JAVA_version/jre/lib_security/

# cp UnlimitedJCEPolicyJDK8/local_policy.jar UnlimitedJCEPolicyJDK8/US_export_policy.jar /usr/java/jdk1.8.0_91/jre/lib/security/

Installing SEP

Start with installing SEP client package by extracting the zip file.

# chown -R root:root /usr/java/
# unzip sep-rpm.zip
# chmod u+x install.sh
# ./install.sh -i

Once done with the installation service will start by self to UP and running.

That’s it we have installed with Symantec End Point protection client installation.

Conclusion

Symantec Endpoint Protection is one of paid anti-malware solution available for enterprise Linux operating systems such as Red Hat Enterprise Linux, Suse Linux and Oracle Linux.