Hi Aweldon,
Many thanks for starting this thread. There is no specific "SEP Best Practices on Embedded OS" article- different thin clients, etc have different specifications. Many can run the full SEP 11 or 12.1 without any difficulties, I have seen. Some are very low on hard drive space, RAM etc. For this reason it is hard to make general recommendations.
This article has some good information and links:
Symantec Endpoint Protection support for embedded operating systems
Article: TECH106027 | Created: 2008-01-25 | Updated: 2011-11-18 |
Article URL http://www.symantec.com/docs/TECH106027
On some specific systems that I have examined, I have recommended to use only the minimum AV/AS protection (no IDS, etc). If resources are very low, that may be best in your case.
I definitely recommend SEP 12.1 over SEP 11 on embedded machines. SEP 12.1 retains fewer past sets of AV definitions by default than SEP 11. This will save several hundred MD of hard drive space.
One component that is very rarely need on an embedded OS is SEP's optional email scanning components. It's best not to include those, as it is extrememely unlikely that anyone will be using MS Outlook, Lotus Notes or another mail client from an ATM. &: )
Hope this helps- please do keep the thread up to date with any additional specific requests, or mark it as "solved" for the benefit of future admins.