What's new in Symantec Endpoint Protection 12.1.2

Article:HOWTO81091  |  Created: 2012-10-24  |  Updated: 2014-11-04  |  Article URL http://www.symantec.com/docs/HOWTO81091
Article Type
How To


What's new in Symantec Endpoint Protection 12.1.2

Table: New features in Symantec Endpoint Protection 12.1.2 describes the new features in the latest version of Symantec Endpoint Protection.

Table: New features in Symantec Endpoint Protection 12.1.2



System requirements

Symantec Endpoint Protection now supports additional new platforms and configurations.

You can now install Symantec Endpoint Protection Manager on the following operating systems:

  • Windows 8

  • Windows Server 2012

You can now install the Symantec Endpoint Protection client on the following operating systems:

  • Windows 8 and Windows Server 2012

  • Mac OS X 10.8, Mountain Lion

  • Mac OS X case-sensitive formatted volumes

You can now use Symantec Endpoint Protection Manager from the following browsers:

  • Microsoft Internet Explorer 10

  • Google Chrome

For the complete list of system requirements:

See the knowledge base article: Release Notes and System Requirements for all versions of Symantec Endpoint Protection and Symantec Network Access Control


The Client Deployment Wizard includes the following changes:

You can download and run a new diagnostic tool on the management server and client to help you diagnose common issues before and after installation. The Symantec Help tool enables you to resolve product issues yourself instead of calling Support.

See Troubleshooting computer issues with the Symantec Help support tool.

See the knowledge base article at the following URL: Symantec Help (SymHelp)


Symantec Endpoint Protection includes the following virtualization improvements:

  • A VMware vShield-enabled Shared Insight Cache. Delivered in a Security Virtual Appliance, you can deploy the vShield-enabled Shared Insight Cache into a VMware infrastructure on each host. The vShield-enabled Shared Insight Cache makes file scanning more efficient. You can monitor the Security Virtual Appliance and client status in Symantec Endpoint Protection Manager.

    See What do I need to do to use a vShield-enabled Shared Insight Cache?.

  • For managing Guest Virtual Machines (GVMs) in non-persistent virtual desktop infrastructures:

    • Symantec Endpoint Protection Manager includes a new option to configure the aging period for offline non-persistent GVMs. Symantec Endpoint Protection Manager removes the non-persistent GVM clients that have been offline longer than the specified time period.

    • Symantec Endpoint Protection clients now have a configuration setting to indicate that they are non-persistent GVMs. You can filter out the offline non-persistent GVMs in the Clients tab view in Symantec Endpoint Protection Manager.

    See Using Symantec Endpoint Protection in non-persistent virtual desktop infrastructures.

Remote management

Symantec Endpoint Protection provides public support to remotely manage and monitor the client and the management server. New Web services let you write your own tools to perform the following tasks remotely:

  • Run commands on the client to remediate threat situations.

  • Export policies from the server.

  • Apply policies to clients across servers.

  • Monitor license status and content status on the management server.

Documentation and other tools for remote monitoring and management support appear in the Web services SDK, located in the following folder on the installation disc: /Tools/Integration/ SEPM_WebService_SDK

Windows 8 features

  • Support for the Microsoft Windows 8 style user interface, including toast notifications for critical events.


    See Unlocking user interface settings on the client.

  • Support for Windows 8 and Windows Server 2012.

  • Windows 8 and Windows Server 2012 Early Launch Anti-Malware (ELAM) support provides a Microsoft-supported way for anti-malware software to start before all other third-party components. In addition, vendors can now control the launching of third-party drivers, depending on trust levels. If a driver is not trusted, it can be removed from the boot sequence. ELAM support makes more efficient rootkit detection possible.

    See Adjusting the Symantec Endpoint Protection early launch anti-malware (ELAM) options.

Protection features

Virus and Spyware Protection:

  • Full support for the Microsoft Windows 8 style user interface.

Proactive Threat Protection:

  • Device Control now sends a notification and creates a log event each time it blocks a previously disabled device. Previously, Device Control sent a notification and log event only the first time the device was disabled.

    See Managing device control.

  • System lockdown can now run in blacklist mode. You must configure system lockdown to display a blacklist mode as well as the default whitelist mode. The blacklist mode blocks only the applications on the specified list. Symantec Endpoint Protection Manager can automatically update the existing file fingerprint lists and application name lists that system lockdown uses for whitelisting or blacklisting.

    See Automatically updating whitelists or blacklists for system lockdown.


  • Added support for HTTPS in trusted Web domain exceptions.

  • Common variables in exceptions now apply to 64-bit applications as well as 32-bit applications.

    See Excluding a file or a folder from scans.


The LiveUpdate Settings policy includes an additional type of Group Update Provider (GUP) that allows clients to connect to Group Update Providers in a different subnet. This new type of GUP lets you explicitly define which networks each client may connect to. You can configure a single LiveUpdate policy to meet all your requirements.

See Using Group Update Providers to distribute content to clients .

A link on the client Status page now lets end users quickly and easily confirm that the client has the most current content. The link displays the content version dialog box, where a new column lists the last time that the client checked each content type for updates. Users can be more confident that their client updates correctly and has the latest protection.

Legacy ID


Article URL http://www.symantec.com/docs/HOWTO81091

Terms of use for this information are found in Legal Notices