nsacove.blogg.se - How to disable symantec endpoint protection temporarily

Open a custom Endpoint Protection policy, or create a new, editable policy.In the SEP SBE Management Console, navigate to Policies.

Once the policy has been updated the user will not be able to disable the Antivirus/Antispyware or the Network Threat Protection features.Enable users to disable the Antivirus and Firewall components The client will request the new policy from the manager Right-click the Symantec Endpoint Protection system tray icon.You can prompt the heartbeat on the client: In the Instrusion Prevention policy, click Settings, then lock both lock symbols next to Enable Network Intrusion Prevention and Enable Browser Intrusion Prevention.Ĭlients will receive the policy according to their Communication Settings (they will be prompted to check in within a few seconds if in Push Mode they will check in on their next scheduled heartbeat in Pull Mode).In the Virus & Spyware Protection policy, click Sonar, then lock this feature by clicking the lock symbol next to Enable Sonar.Click TruScan Proactive Threat Scans, then lock this feature by clicking the lock symbol next to Scan for trojans and worms and Scan for keyloggers.įor Symantec Endpoint Protection 12.1, additional policies must be locked.

Click Lotus Notes Auto-Protect, then lock this feature by clicking the lock symbol next to Enable Lotus Notes Auto-Protec t.

Click Microsoft Outlook Auto-Protect, then lock this feature by clicking the lock symbol next to Enable Microsoft Outlook Auto-Protect.

Click Internet Email Auto-Protect, then lock this feature by clicking the lock symbol next to Enable Internet Email Auto-Protect.

Click File System Auto-Protect, then lock this feature by clicking the lock symbol next to Enable File System Auto-Protect.

Click Antivirus and Antispyware policy.

Step 2: Remove the right to disable Threat detection:

Uncheck Allow users to enable and disable Network Threat Protection.

If Mixed control is enabled this will open the Client User Interface Mixed Control Settings dialog.

If Server control is enabled this will open the Client User Interface Settings dialog.

Select Server control or Mixed control if it is not already set to one of these.

Click Tasks to the right of "Client User Interface Control Settings", then click Edit Settings.

Select the group that contains the clients you want to be affected.

Open the Symantec Endpoint Protection Manager.Step 1: Remove the right to disable Network Threat Protection: To prevent users from disabling Symantec Endpoint Protection (SEP) on their client: Please do the following and mark as a solution if it works: