Centralized Exceptions made from the console are not listed in the client Centralized Exceptions list?
Updated: 21 May 2010 | 5 comments
This issue has been solved. See solution.
I have made a centralized exception policy from the console to ignore a folder during scanning. I do not however see that listed when I check Centralized Exceptions in the client-side software. It apparently only lists client created exceptions.
How can I have it show some how ... some way ... what I am excluding at the console-server level?
I want tthe users to see the exceptions I make so they do not try to create their own user based ones.
Thanks!
David
discussion Filed Under:
Comments
The client cannot see the exceptions created
Unfortunately, for right now there is no way for the client to know this... There is a way, but it involves the registry... so for end users, it is recommened there is no way.
There is a discusion on this here:
https://www-secure.symantec.com/connect/forums/centralized-exception-configured-console
An extract here:
To know whether the centralized exceptions are getting applied to the client/agent?
To check the policy serial number at the server
Login to the Symantec Endpoint Protection Manager console
Select the Clients button on the left margin
Select the client group that contains the client that has the issue
Select the Details tab in the right hand pane
Copy down the policy serial number.
Example: E0C4-01/09/2008 14:39:16 311
To check the policy serial number in use at the client
Launch Symantec Endpoint Protection from the System Tray icon or the Start menu
Select View logs button
Select the View Logs button to the right of Client Management and select the System Log
Select the Filter from the main menu and select Show All Logs
Browse for the most recent entry labelled "Applied new policy with serial number..."
Compare the serial number with the serial number shown in the Symantec Endpoint Protection Manager console
Example: E0C4-01/09/2008 14:39:16 311
If policy serial number are same on both the side than the policy is implemented successfully
Please check this link also
Can no longer see the Administrator-defined Exceptions Tab on Clients after migrating to Symantec Endpoint Protection MR3 or MR4
http://service1.symantec.com/support/ent-security....
********
That has been disabled
This feature has been disabled from 11.0.3000.xxxx now the users cannot see Administrator defined exception from SEP GUI and this was for security reason and mainly so that the users cannot see what exceptions has been made.
However there is a workaround for it but for this your users should know how to view registry editor.
HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\AV\Exclusions\ScanningEngines\Directory\Admin
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Symantec\SymantecEndpoint
Protection\AV\Exclusions.
VMWARE-- SEP 12.1 vs McAfee vs Trend Micro
cool
i will try it out right now :)
Cool. That is what I wanted.
Cool. That is what I wanted. Thanks.
tested. works :)
tested on windows 2008, 2003, Vista , 7 :) Awesome. thanks
Would you like to reply?
Login or Register to post your comment.