To ENable "Disable Symantec Endpoint Protection" in SEP 12.1.
Alternate title: "Disable Symantec Endpoint Protection" is ghosted even for Administrators.
Folks usually want to know how to prevent users from being able to click "Disable Symantec Endpoint Protection" by right-clicking on the icon. There are several answers to that, one being that only people in the Administrators group will be able to click on it.
In my case, in SEP 12.1 I am finding that "Disable Symantec Endpoint Protection" is ghosted even for Administrators. This was never the case in my SEP 11 environment and I do have similar settings in both.
I have gone through http://www.symantec.com/docs/TECH168990 and made sure that all those items were UNlocked.
I have even followed this http://www.symantec.com/docs/HOWTO55475 re User Control Level, changed to Mixed Mode Control, and made nearly everything Client side control.
I know about pushing policies out, about heartbeats, and how to confirm that the client has received the latest policy edit by looking at the policy timestamp. I re-confirmed that the logged-on userid is in the local Administrator s group.
Any ideas to enable "Disable Symantec Endpoint Protection?" To be clear, settings are unlocked.