Video Screencast Help

Disable of NTP in clcient doesnt work

Created: 28 Nov 2012 | 4 comments

Hi ,

       I am trying to disable the right clcik and disable option for NTP for my End users however I am unable to do it

Envirnment contains Windows 2008 r2, Windows 7 and Windows 8 machines which are 2 each

I created a seperate group and moved the lcienst into the test group

My policies and virus definitions are getting properly updates

Out of the 6 clients in moved the option got applied for only 1 server and remaining fails and that to it is a windows 2008 machines

Diabled the UAC still the same

SEP version : 12.1.2

Any Ideas appreciated

Comments 4 CommentsJump to latest comment

Mithun Sanghavi's picture


In your case, you want to "Enable user's ability to disable Symantec Endpoint Protection on Clients for trobleshooting purpose (temporarily)."

Go to the Specific client group --> Policies --> Location specific setting --> Client user interface settings --> Edit settings -->  check Allow user to enable and disable firewall

Check on client, as you can see tab is Enabled.

Again, Check this Thread:

You can determine the level of interaction that you want users to have on the Symantec Endpoint Protection client. Choose which features are available for users to configure. For example, you can control the number of notifications that appear and limit users' ability to create firewall rules and virus and spyware scans. You can also give users full access to the user interface.

The features that users can customize for the user interface are called managed settings. The user does not have access to all the client features, such as password protection.

To determine the level of user interaction, you can customize the user interface in the following ways:

  • For virus and spyware settings, you can lock or unlock the settings.

  • For firewall settings, intrusion prevention settings, and for some client user interface settings, you can set the user control level and configure the associated settings.

  • You can password-protect the client.

To password-protect the client

  1. In the console, click Clients.

  2. Under Clients, select the group for which you want to set up password protection.

  3. On the Policies tab, under Location-independent Policies and Settings, click General Settings.

  4. Click Security Settings.

  5. On the Security Settings tab, choose any of the following check boxes:

    • Require a password to open the client user interface

    • Require a password to stop the client service

    •  Require a password to import or export a policy

    • Require a password to uninstall the client

  6. In the Password text box, type the password.

    The password is limited to 15 characters or less.

  7. In the Confirm password text box, type the password again.

  8. Click OK.

Check these Articles which may helps you with all the Information you are looking for:

How do you lock down SEP client interface so that end users cannot disable components or modify settings.

How to block a user's ability to disable Symantec Endpoint Protection on Clients

How to restrict users from making configuration changes to the Symantec Endpoint Protection client.

Hope this helps!!!

Mithun Sanghavi
Associate Security Architect


Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

Chetan Savade's picture


Check this article

How to prevent SEP features from being disabled in the client GUI in SEP 12.1

Public KB also available for the same

Chetan Savade
Sr.Technical Support Engineer, Endpoint Security
Enterprise Technical Support

Don't forget to mark your thread as 'SOLVED' with the answer that best helps you.<