Endpoint Protection

 View Only

  • 1.  How to prevent users disabling SEP 12.1 from the client

    Posted Nov 02, 2011 02:55 AM

     

    How to prevent users disabling SEP 12.1 from the client ?



  • 2.  RE: How to prevent users disabling SEP 12.1 from the client

    Broadcom Employee
    Posted Nov 02, 2011 03:04 AM

    check this link

    http://www.symantec.com/business/support/index?page=content&id=TECH102822

    This should help you to configure.



  • 3.  RE: How to prevent users disabling SEP 12.1 from the client

    Broadcom Employee
    Posted Nov 02, 2011 06:12 AM

    Hi,

    For SEP 12.1 check this article

    How to prevent SEP features from being disabled in the client GUI in SEP 12.1  

    http://www.symantec.com/docs/TECH168990 

    I hope it will solve your issue.



  • 4.  RE: How to prevent users disabling SEP 12.1 from the client

    Posted Nov 02, 2011 05:18 PM

    1) In SEPM, under Virus and Protection policy lock all the items which are unlocked

    or

    Select Virus and Protection policy- High security, it will lock all the items as a policy default.

    2) Go to Specific group --> Policies --> Location-specific Settings --> Client User Interface Control Settings --> Tasks --> Edit settings --> Server Control --> Customize --> Uncheck the following two options

    i) Allow user to enable and disable the firewall

    ii) Allow user to enable and disable application and device control policy.

    3) You also need to perform the following In the Policies tab of the SEPM:

    1. Click  Intrusion Prevention Protection policy.

    2 .Click Setting, then lock this feature by clicking the lock symbol next to Enable Network Intrusion Prevention and Enable Browser Intrusion Prevention.

    3. Click OK.

    Check on client, as you can see tab is grayed out