Configuring Network Threat Protection settings for mixed control in the Symantec Endpoint Protection Manager

Article:HOWTO27077  |  Created: 2010-01-08  |  Updated: 2011-09-19  |  Article URL http://www.symantec.com/docs/HOWTO27077
Article Type
How To



Configuring Network Threat Protection (NTP) settings for mixed control

A Symantec Endpoint Protection (SEP) client can be configured so that users have no control, full control, or limited control over which NTP settings they can configure. When configuring these settings, please take note of the following guidelines:

  • If the client is set to Server Control mode, the user cannot create any firewall rules or alter firewall and Intrusion Prevention System (IPS) settings.

  • If the client is set to Client Control mode, the user can create firewall rules and change all firewall and IPS settings.

  • If the client is set to to Mixed Control, the user can create firewall rules and has some control over firewall and IPS settings. 
    The amount of control over the firewall and IPS settings is based upon configurations set within the Symantec Endpoint Protection Manager (SEPM).

See Configuring user interface settings.

To configure Network Threat Protection settings for mixed control

  1. In the console, click Clients.

  2. Under View Clients, select the group where the user control level needs to be modified.

  3. On the Policies tab, under Location-specific Policies and Settings, select the appropriate location and then expand Location-specific Settings.

  4. To the right of Client User Interface Control Settings, click Tasks > Edit Settings.

  5. In the Control Mode Settings dialog box, click Mixed control, and then click Customize.

  6. On the Client/Server Control Settings tab, under the Firewall Policy category and Intrusion Prevention Policy category, perform one of the following actions:

    • To make a client setting available for the users to configure, click Client.

    • To retain control over a client setting from the SEPM, click Server.

  7. Click OK.

  8. Click OK.

  9. For all firewall and IPS settings that are set to Server Control, these settings will be controlled via the Firewall and IPS policies within the SEPM. 

    See Enabling Smart traffic filtering.

    See Enabling traffic and stealth settings.

    See Configuring intrusion prevention.


Legacy ID



349435


Article URL http://www.symantec.com/docs/HOWTO27077


Terms of use for this information are found in Legal Notices