Video Screencast Help

deny users from changing SEP Client settings

Created: 03 Jan 2013 | 12 comments

dear all,

i can't figure out how to deny my users (which must have local admin rights) to change settings and disable SEP Client on the workstation... would be great to have a password to unlock different functions...

 

 

best regards

 

roman 

 

 

Comments 12 CommentsJump to latest comment

Ashish-Sharma's picture

 

You can Set uninstall password SEP client

  1. In the console, click Clients.

  2. Under Clients, select the group for which you want to set up password protection.

  3. On the Policies tab, under Location-independent Policies and Settings, click General Settings.

  4. Click Security Settings.

  5. On the Security Settings tab, choose any of the following check boxes:

    • Require a password to open the client user interface

    • Require a password to stop the client service

    •  Require a password to import or export a policy

    • Require a password to uninstall the client

  6. In the Password text box, type the password.

    The password is limited to 15 characters or less.

  7. In the Confirm password text box, type the password again.

  8. Click OK.

 

 

How to block a user's ability to disable Symantec Endpoint Protection on Clients

http://www.symantec.com/docs/TECH102822

How to restrict users from making configuration changes to the Symantec Endpoint Protection client.

http://www.symantec.com/docs/TECH102370

 Check this Thread:

https://www-secure.symantec.com/connect/forums/how-do-i-temporary-enable-users-ability-disable-symantec-endpoint-protection-clients

https://www-secure.symantec.com/connect/forums/not...

Thanks In Advance

Ashish Sharma

 

 

pete_4u2002's picture

basically you should be able to lock the settings from SEPM console and push the policy to client.

RomanP's picture

i have neither "clients"  nor security settings - my console looks like this screenshot:

 

SEP_121.PNG
Ashish-Sharma's picture

 

HI,

Do you have login Admin account  ?

If no try to login admin account

Thanks In Advance

Ashish Sharma

 

 

RomanP's picture
oops. I do not think SEP SBE have these settings

Are you Joking?

.Brian's picture

This is by design, these settings are not available in SBE.

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

Mithun Sanghavi's picture

Hello,

Check this Article - 

How to block a user's ability to disable Symantec Endpoint Protection Small Business Edition on Clients

http://www.symantec.com/docs/TECH172434

Hope that helps!!

Mithun Sanghavi
Senior Consultant
MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

Ashish-Sharma's picture

Hi,

If you are using Small Business Edition so may be this setting are not available. 

Thanks In Advance

Ashish Sharma

 

 

Chetan Savade's picture

Hi,

How to prevent SEP features from being disabled in the client GUI in SEP 12.1

http://www.symantec.com/docs/TECH168990

The same article is available on the forum as well

http://bit.ly/KeJB4H

Chetan Savade
Sr Technical Support Engineer, Endpoint Security
Enterprise Technical Support
CCNA | CCNP | MCSE | SCTS |

Don't forget to mark your thread as 'SOLVED' with the answer that best helps you.<

RomanP's picture

yes, this is not perfect but close!

 

problem solved, thank you very very much!!
 

roman

Chetan Savade's picture

Hi,

Under Virus & Spyware policies three policies are by default created.

1) High Performance

2) High Security

3) Balanced

By default balanced policy is assigned, if you assign high security it will locked all the items.

Chetan Savade
Sr Technical Support Engineer, Endpoint Security
Enterprise Technical Support
CCNA | CCNP | MCSE | SCTS |

Don't forget to mark your thread as 'SOLVED' with the answer that best helps you.<