You can Set uninstall password SEP client

1. In the console, click Clients.

2. Under Clients, select the group for which you want to set up password protection.

3. On the Policies tab, under Location-independent Policies and Settings, click General Settings.

4. Click Security Settings.

5. On the Security Settings tab, choose any of the following check boxes:

   • Require a password to open the client user interface

   • Require a password to stop the client service

   •  Require a password to import or export a policy

   • Require a password to uninstall the client

6. In the Password text box, type the password.

   The password is limited to 15 characters or less.

7. In the Confirm password text box, type the password again.

8. Click OK.

How to block a user's ability to disable Symantec Endpoint Protection on Clients

http://www.symantec.com/docs/TECH102822

How to restrict users from making configuration changes to the Symantec Endpoint Protection client.

http://www.symantec.com/docs/TECH102370

 Check this Thread:

https://www-secure.symantec.com/connect/forums/how-do-i-temporary-enable-users-ability-disable-symantec-endpoint-protection-clients

https://www-secure.symantec.com/connect/forums/not...

basically you should be able to lock the settings from SEPM console and push the policy to client.

i have neither "clients"  nor security settings - my console looks like this screenshot:

oops. I do not think SEP SBE have these settings

oops. I do not think SEP SBE have these settings

Are you Joking?

Hi,

If you are using Small Business Edition so may be this setting are not available. 

Hi,

How to prevent SEP features from being disabled in the client GUI in SEP 12.1

http://www.symantec.com/docs/TECH168990

The same article is available on the forum as well

http://bit.ly/KeJB4H

yes, this is not perfect but close!

problem solved, thank you very very much!!
 

roman