Yes, as per your logs you have the access of device.
For verify it stop the smc service of client with (smc -stop) and plugin the device to check wheter it detect.
After detection it start the smc service(smc -start) again and check the device is disable.
Troubleshoot
Verify the policy of client and manager is same.
https://www-secure.symantec.com/connect/forums/trying-understand-policy-serial-number
Policy match but not work then reinstall the client.