Endpoint Protection

Expand all | Collapse all

Chrome 78 Update & Symantec Endpoint Protection Issue!

Jump to Best Answer
  • 1.  Chrome 78 Update & Symantec Endpoint Protection Issue!

    Posted 10-23-2019 03:39 AM

    Hi, Few hours ago Google released Update 78 for Chrome and since then it's seems to be broken for symantec endpoint protection users.

    The problem is you can't load any pages, You will get "Aw, Snap" Error.

    The workaround I found was to launch chrome with no sandbox:

    Chrome.exe --no-sandbox

    Anyone know a permanent solution?

    My symantec endpoint protection version is 14.0 MP1



  • 2.  RE: Chrome 78 Update & Symantec Endpoint Protection Issue!
    Best Answer

    Posted 10-23-2019 03:42 AM

    So I found this article from symantec:

    https://support.symantec.com/us/en/article.tech256047.html



  • 3.  RE: Chrome 78 Update & Symantec Endpoint Protection Issue!

    Posted 10-23-2019 11:13 AM

    We are seeing this on our Endpoints.  It seems if the client was upgraded from an older version to the latest (14.2.4814.1101) it still doesnt work.  But a clean install of the latest does not have issues.



  • 4.  RE: Chrome 78 Update & Symantec Endpoint Protection Issue!

    Posted 10-23-2019 02:05 PM

    From what I can tell LTSB 1607 is being treated like Server 2016.  Makes sense. Even the latest SEP build doesn't work and we have to enter the Application control exception



  • 5.  RE: Chrome 78 Update & Symantec Endpoint Protection Issue!

    Posted 10-23-2019 04:30 PM

    For  OS other than Windows Server 2016 this is fixed in SEP 14.2 or later (released May 2019).

    If upgrading SEP is not an option, or the OS is Windows Server 2016, the incompatibility can be worked around by adding an Application Control exception for Chrome (Chrome.exe) and/or Microsoft Edge Chromium (MSEdge.exe).



  • 6.  RE: Chrome 78 Update & Symantec Endpoint Protection Issue!

    Posted 10-24-2019 07:46 AM

    Run your command prompt as admin

     

    Copy paste command in command prompt

     

     

    REG ADD "HKLM\Software\Policies\Google\Chrome" /v RendererCodeIntegrityEnabled /t REG_DWORD /d 0



  • 7.  RE: Chrome 78 Update & Symantec Endpoint Protection Issue!

    Posted 10-24-2019 12:47 PM

    I just read where someone said if you rename the chrome.exe file (for example, chrom.exe), then Chrome would work. I just tried it and it works. Why in the world does this work?



  • 8.  RE: Chrome 78 Update & Symantec Endpoint Protection Issue!

    Posted 10-24-2019 01:12 PM

    I've added an Application Exception in my client policy acording to these instructions, https://support.symantec.com/us/en/article.tech256047.html, but my endpoints are still getting the Chrome error.  This "solution" doesn't seem to work.



  • 9.  RE: Chrome 78 Update & Symantec Endpoint Protection Issue!

    Posted 10-24-2019 07:18 PM

    Hello,

    This is the article that resolved my issue. It updated my client from v14.0 to v14.2.

    https://support.symantec.com/us/en/article.info5196.html

    I hope this help

    George

    Note: For my 64-bit Windows I had selected the zip file: Sep64_T0_1031_EN.zip. This archive contains 24 .exe, choose the one for your build. My build was 2349.



  • 10.  RE: Chrome 78 Update & Symantec Endpoint Protection Issue!

    Posted 10-28-2019 07:18 AM

    Hi,

    This command is working. What that command means? Can please explain.



  • 11.  RE: Chrome 78 Update & Symantec Endpoint Protection Issue!

    Posted 10-28-2019 11:45 AM

    Hi,

    I added a file exception for C:\Program Files (x86)\Google\Chrome\Application\chrome.exe and checked only Application Control (but not Sonar/Security Risk) and it works. Even if you have already updated and facing the error message.

    Does anybody know if it is a security risk to exclude the chrome.exe from Application and Device Control. I'm a bit unsure if it is a good idea to exlude Chrome.exe even only for Application and Device Control. 

    Maybe I'm not the only person asking this question and maybe someone has found an answer?

     



  • 12.  RE: Chrome 78 Update & Symantec Endpoint Protection Issue!

    Posted 10-28-2019 01:28 PM

    I use SEP at my station Just put Configure Firewall Rulles

    all incoming block

    and at Change Setting

    Allow only aplication traffic

    and for ask

    Prompt before allowong aplication traffic

    Curent clinet version is

    14.2.1.1 (14.2 RU1 MP1) 14.2.4815.1101 September 27, 2019