Voted Best Answer
Feb 07, 2018 - 06:44 AM
For Ghost the license metric is imaged machines. The auditors will ask you for a list of all endpoints in your estate with build dates and they'll use these to determine a potential Ghost license count. There are complex rules around rebuilds and transfers of Ghost licenses
For PcAnywhere be cautious around which bundle and version you have deployed. There are three product bundles - Host, Remote, Host and Remote and these are distinct from a license count perspective (a bit like edition differences in the MS world)
They will rarely ask to run scripts in your environment but they will send you a very intrusive Excel workbook to populate. This mostly requires screenshots of Symantec admin consoles to be provided. They will ask for a huge pile of info about machines not containing Symantec software - push back on this as it will help defend the potential Ghost issue.
There likely isn't too much value in the audit for the audit team so adopt the usual tactics of delay and drip feed of info. After 9 months I had my audit closed with no action because Symantec were a legacy vendor and there just wasn't any money to be found. They're unlikely to be persistent for desktop software, its the management and AV/DLP products they're interested in.