Video Screencast Help

Install a newer version release (i.e. RU7) for Windows 7 64-bit

Created: 29 Jan 2012 • Updated: 23 Mar 2012 | 7 comments
This issue has been solved. See solution.

Hi gurus,

I'm trying to work out something that will allow me to install Symantec EPP v11.0 on Windows 7 64-bit version and communicate well with the manager installed on the server (Windows 2003). We are currently using EPP on Windows XP and 7 32-bit clients with little issues. We're rolling out some new PC's with 8GB RAM thus Windows 64-bit is inevitable. We have a 32-bit installation package but none yet so far for 64-bit. As this is yet on initial stage, I'm trying out several options.

One of this is by installing the client as unmanaged and later convert it to managed version by importing the correct Sylink file. I tried it on releases RU2, RU4 and RU7 with some success. The clients can get updates and access to the interface is password-secured. The only issue is that the 'Disable Endpoint Protection' is enabled to the user. We've got this option disabled on the server.

I'll appreciate your insigths on this issue.



Comments 7 CommentsJump to latest comment

pete_4u2002's picture

with unmanaged client, user can disable. Once the client is convereted into managed, you can configure the settings for users not to disable.Use the latest version of SEP i.e. SEP 11 RU 7 MP1 or SEP 12.1 RU1.

How to block a user's ability to disable Symantec Endpoint Protection on Clients

DSF81's picture


Check whether correct policy apply to the client and policy is updated.

Client and server must have same policy serial number.


greg12's picture

Just a reminder: On 64 bit platforms, SEP 11 does not support Application and Device Control and Tamper Protection. TruScan has restricted capabilities (no keylogger detection).

SEP 12.1 does not have these restrictions.

Mithun Sanghavi's picture


In your case, since Windows 7 machines are 64 bit, you would have to create a 64 bit package, check below:

Creating custom Client Installation packages in the Symantec Endpoint Protection Manager Console

Once done, you could either Deploy Symantec Endpoint Protection to your client computers using the Migration and Deployment Wizard.


In your method (Last method as shown above), once the clients start communicating, you would have to change the policies as per your requirements in the Symantec Endpoint Protection Manager.
To block a user's ability to disable Symantec Endpoint Protection on Clients, check the Article below:
Also, check the Articles below to understand the Policies in the Symantec Endpoint Protection Manager.
Hope that helps!!

Mithun Sanghavi
Associate Security Architect


Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

pkyadav's picture

Dear Trev,

For 64 bit pkg see the screenshots and create the new package....

To Block users right to disable Network Threat Protection:

Go to Symantec Endpoint Protection Manager.

Click Clients.

Select the which clients you want to block.

Click Policies.

Expand Location-specific Settings.

Select Server control.

Click Customize.

Uncheck Allow users to enable and disable Network Threat Protection.

Click OK> OK.

 See the schreenshots for better understanding....

trevlantin's picture

Thank you so much for the help guys. I'm trying out your suggestions now and will post back the solution that best worked for me. I appreciate your screen shots pkyadav and your useful links Mithun.


SameerU's picture

Please go and roll out the new SEP 12.1 version as it has many fixes and new features