Symantec Endpoint Protection for Macintosh: Safe zones defined by the user are overwritten when a Centralized Exception Policy is applied from the Symantec Endpoint Protection Manager

Article:TECH147086  |  Created: 2010-12-28  |  Updated: 2013-05-24  |  Article URL
Article Type
Technical Solution



You have "SEP for Mac" clients in your environment where users wish to define their own "safe zone" settings to exclude files from scanning. These clients are also centrally managed by a Symantec Endpoint Protection Manager (SEPM). You notice that if you use the SEPM to apply a centralized exception policy to these clients, the user-defined safe zone settings are completely overwritten.


The product is working as currently designed. When the SEP for Macintosh client applies an administrator-defined policy, any user-defined settings are overwritten.


  • Incorporate exceptions required by users in the centralized exceptions policy.
  • Use unmanaged SEP for Macintosh clients

Article URL

Terms of use for this information are found in Legal Notices