Endpoint Protection

 View Only

  • 1.  Symantec Endpoint Protection Status -- Disabled Endpoints

    Posted Nov 28, 2012 04:50 PM

    On the front screen of SEPM, Endpoint Status (Endpoint Protection) section Disabled count continues to grow.  I want to know how to force these client back to enabled.  I have already change policies to not allow users to do this.



  • 2.  RE: Symantec Endpoint Protection Status -- Disabled Endpoints

    Posted Nov 29, 2012 03:04 AM

    Hi,

    Check this artical.

    Client Endpoint Protection Status is "disabled" on the home page in the Symantec Protection Center when firewall is not installed

    http://www.symantec.com/business/support/index?page=content&id=TECH123000



  • 3.  RE: Symantec Endpoint Protection Status -- Disabled Endpoints

    Trusted Advisor
    Posted Nov 29, 2012 05:42 AM

    Hello,

    Could you please let us know what version of SEPM are you running?

    Hope you are running the Latest version of SEPM.

    Secondly, if you could please upload us the screenshot would be helpful to understand the issue.

    Could you also click on "View Details" to check what is disabled"

    SEP Clients will show up in this section if any of the following are in a disabled state:

    • Auto-Protect Status
    • Firewall Status
    • Sonar Status
    • Download Insight Status
    • Network Intrusion Prevention Status
    • Browser Intrusion Prevention IE Status
    • Browser Intrusion Prevention Firefox Status
    • Tamper Protection Status

    Enable the Feature in question.

    For Tamper Protection:

    Login to the SEPM > Clients > Select the client group for the clients affected >  Policies tab > Settings > General Settings > Tamper Protection tab > Select "Protect Symantec secutrity software from bing tampered with or shut down"

    As the SEP clients check in (Per Heartbeat) they will get this changed setting and enable Tamper Protection.

    Check the SEPM Endpoint Status after 1 heartbeat interval.

    Hope that helps!!