We were using SCEP/FEP for our clients and ESET for our servers for about 4 years with about 3k clients.
We had more infections in 4 years than we did in 10 years with other AV software. In 2015 we had over 800 infections with 300 of those SCEP could not remove or clean. A good portion of these infections we found due to the infection attempting to move to our file servers where ESET was catching, blocking, and reporting it. Last year we switched to another AV product and have only had 1 infection that it was not able to remove. But, also on the other hand, all of our users are…./shudders…local admins which does have a big impact on infections. We are working on changing that, but we still have about 2k users that are still local admins that have not had any infections with the new AV software. So, everyone here is still a big supporter of separate AV software for clients and servers, and am sure you can see why ☺ From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On Behalf Of Adam Juelich Sent: Friday, January 13, 2017 9:08 AM To: mssms@lists.myitforum.com Subject: [mssms] Endpoint Protection (SCEP) for servers Hello Everyone, I've used SCEP in the past on client machines and it worked great - no complaints. This is after moving them off of Sophos. At that time we didn't move it to Servers as our Network Admin wasn't confident in it. Just curious if others are using SCEP for servers? Thoughts, concerns? Any gotchas? Thanks!