Endpoint Protection

 View Only

  • 1.  Intrusion Prevention add-on is ready for use

    Posted Jul 19, 2011 03:48 AM

    I'm testing v12.1 of SEP.  I upgraded one Win7 x64 client to v12.1 and after rebooting and starting IE 9, I get the pop up saying The Symantec Intrusion Prevention add-on from Symantec Corporation is ready for use with the options of Enable or Don't Enable.  i don't want users to have a choice so how do I enable or disable by default?



  • 2.  RE: Intrusion Prevention add-on is ready for use

    Posted Jul 19, 2011 04:09 AM

    I believe it's the little padlock icon beside "Enable Browser Intrusion Prevention" within the IPS Policy that controls the user ability to enable/disable this feature.



  • 3.  RE: Intrusion Prevention add-on is ready for use

    Posted Jul 19, 2011 02:33 PM

    Hi, that option is already enabled and it still prompted me to "Enable or Don't Enable".



  • 4.  RE: Intrusion Prevention add-on is ready for use

    Posted Jul 19, 2011 02:42 PM

    There is no way to stop this that I know of



  • 5.  RE: Intrusion Prevention add-on is ready for use

    Posted Jul 19, 2011 09:22 PM

    Is it only 64 bit Windows 7 that does this?  It didn't happen on a 32 bit Win7 computer.



  • 6.  RE: Intrusion Prevention add-on is ready for use

    Posted Jul 19, 2011 11:02 PM

    I got the same message on my Win 7 64bit machine as well and the option was enabled and locked in the policy.



  • 7.  RE: Intrusion Prevention add-on is ready for use

    Posted Jul 26, 2011 03:11 PM

    Please help.  Need a way to enable the browser plugin by default.  Having the user decide this is not acceptable. Even if this is an IE thing which it is does anyone know of a way to enable it by default or prevent the user for being prompted on this?



  • 8.  RE: Intrusion Prevention add-on is ready for use
    Best Answer

    Posted Jul 26, 2011 03:15 PM

    David, I fixed my problem via Group Policy - disable add on performance notifications.  This only happens on IE 9.  http://technet.microsoft.com/en-us/library/ff986259.aspx



  • 9.  RE: Intrusion Prevention add-on is ready for use

    Posted Jul 26, 2011 03:54 PM

    That is not the solution.  It wasn't a performance notification it was a first run notification.

     

    The proper GPO to resolve the issue is:

     

    USER CONFIG/POLICIES/ADMIN TEMPLATES/WINDOWS COMPONENTS/INTERNET EXPLORER/SECURITY FEATURES/ADDON MANAGEMENT

    Use the Option ADD-ON LIST

     

    Add the CLSID of the browser helper object and a value of '1' to enable it by default.

     

    Name:                   Symantec Intrusion Prevention
    Publisher:              Symantec Corporation
    Type:                   Browser Helper Object
    Version:                9.8.2.0
    File date:             
    Date last accessed:     ‎Today, ‎July ‎26, ‎2011, ‏‎2:49 PM
    Class ID:               {6D53EC84-6AAE-4787-AEEE-F4628F01010C}
    Use count:              2
    Block count:            3
    File:                   IPSBHO.dll
    Folder:                 C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\IPS