Endpoint Protection

 View Only
  • 1.  Device Control

    Posted Aug 31, 2010 11:57 AM
    I have struggled through a working day to manage to get iPhones blocked using a particular policy, using the guid/device id ( thanks to dev viewer ) - which work

    But, i can't prevent the dependancies running, ie : Itunes.exe, ituneshelper.exe, or mDNSResponder.exe. I have followed ; http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2007092616264848

    but the above proccesses are still being allowed to run despite being in specified rule set to 'block ''
    i have enabled   the rule for all directory access ie :

    c:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    c:\Program Files\Bonjour\mDNSResponder.exe
    c:\Program Files\iTunes\iTunesHelper.exe
    c:\Program Files\iPod\biniPodService.exe

    Yet.. they are continue to run.


  • 2.  RE: Device Control

    Posted Aug 31, 2010 12:09 PM
    Have you selected the action as Block or Terminate ?



  • 3.  RE: Device Control

    Posted Aug 31, 2010 12:13 PM
    Tried with both, it's currently set to 'block'.


  • 4.  RE: Device Control

    Posted Aug 31, 2010 12:20 PM

    It sounds a bit funny to ask but can you make sure that you have PTP & NTP installed on the client side?



  • 5.  RE: Device Control
    Best Answer

    Posted Aug 31, 2010 12:25 PM
    In that Doc where its says to add Textpad.exe there should be only a *

    Use this article as a reference
    https://www-secure.symantec.com/connect/articles/how-block-known-virus-executeables-using-application-and-device-control-running-userprofile


  • 6.  RE: Device Control

    Posted Sep 01, 2010 12:21 AM
    Also, please  verify  that application and device control is  installed...go to ad/remove  programs on  one  of the  clients, and  select change for  Symantec Endpoint  protection , and  select  Modify, and see what options are enabled.
    Probably, you have it installed, i think, as the iphones ar getting  blocked.....

    Try restarting the  computer, and then see......


  • 7.  RE: Device Control

    Posted Sep 03, 2010 08:38 AM
    Were you able to block those applications using the article..