Endpoint Protection

We had installed SEP 12.1 RU1 on 50 PC's for testing various issues with the product before going for mass deployment.

We are tracking down all the issues with related to software Compatibility.

We found that we are not able to disable the Symantec Services from Services.msc

How to do it ?

I had also opened a case with mysupport. Case 415-774-913

This is required to check the false positive file & to upload to symantec.

If symantec delete or quarantine the file then it is difficult to submit.

Some Thirdparty softwares requires Antivirus to be disabled when installing, this is also not possible because of this issue.

Pls Confirm which of the Symantec service is not going to disable

are you referring to Symantec Endpoint protection services. It is greyed out.

Yes Pete,

It is greyed out.

Hi,

You won't able to stop this Symantec Managment Client service from Services.msc.

You need to run the command smc -stop to stop the service.

Following are few ways try them…

1. Create GPO and assign it to AD group on which You would like to disable SEP.

Change Start value to 4 for:
- HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\SERVICES\SmcService

1. If it is only one machine:

Run "services.msc" and change startup type to Disabled for:

- Symantec Management Client
- Symantec Endpoint Protection

Hello,

Disable the Tamper Protection on the machine and then try again.

I hope that helps!!

Hi Ramji,

I installed 12.1 RU1 on my test environment and observed that Symantec Managment Client Service is greyed out.

You won't able to stop it from Services.msc, It's hard cored into it.

Please check the following article to know new fixes in 12.1 RU1.

New fixes and features in Symantec Endpoint Protection 12.1 Release Update 1:

http://www.symantec.com/docs/TECH174565     

@Mithun Ramji wants to disbale the Symantec Managment Client Service from Services.msc.

Tamper protection will not help him.

I have added a password to allow SEP to be turned off, although I must drill down through the command prompt to do so on a Windows 7 machine (I read that this should be capable of being done from the start menu).

I am also not able to restart the services however from a client machine.  Being able to restart the services is very often the solution to many issues. In SEP 11 the file path was short and easily accessible from the command prompt. In 12.1 it is much more cumbersom as the file path is very long.

Is this a policy setting that can be changed on the SEPM?

An expedient resolution would be great as we are about to roll this out to over 1,000 client machines.

Thanks in advance,

Little SEP Dude

Log in SEPM Console

Go to Client Tab.

Go to that group where that client available

Slect the policy Tab

Under setting select the General Setting

In General Setting three Tab Available. Select "Tamper Protection"

Unlock the Tamper and uncheck the setting and then Ok.

Right click on that Group and update Content.

Your Requirement will be fullfil in these Step.