I have a user who has SEP installed on a Mac running Yosemite. The client is able to connect to SEPM and I can see the client in the correct Client Group. I have updated the policy for the group by following the directions in this post: http://www.symantec.com/connect/forums/how-do-i-temporary-enable-users-ability-disable-symantec-endpoint-protection-clients but the user is unable to disable SEP from his Mac. The option to diable the 'virus and spyware' and 'network threat protection' is grayed out on his system. Am I missing something to ensure the Mac has the updated policy to allow the user to disable SEP when needed? Thanks.
You need to open the lock icons in the policies. Once you do that, they should be able to disable those components.
I'm not sure what you mean by unlock the locks in the policies
Go into the policy and click the Lock icon, it will open up. Save it and let the policy change get picked up by the client
Oh ok. I did that and the option to disable virus and spyware protection is available now but the network threat protection is still grayed out. Did I miss something to enable the user to disable this feature?
You need to go into the IPS policy and open the lock there as well.
Just put that in client control, regardless of LOCK it will be enabled
http://www.symantec.com/business/support/index?page=content&id=HOWTO55475
Ok. Got it! Thanks for the help. I'm new to working with SEP and it's great to know there is a forum such as this that is willing to help.
Always!
Take care
Brian
All is well now? Problem solved? :)