Endpoint Protection

 View Only

  • 1.  Require a password to Disable SEP

    Posted Apr 07, 2009 10:39 AM

    Is there a way to remove or gray out the "Disable Symantec Endpoint Protection" option when you right click on the system tray icon but allow SEP to be disabled in the user console after a password has been entered?  I won't my desktop support personnel to be able to disable SEP with the password but not let the end user disable SEP.



  • 2.  RE: Require a password to Disable SEP

    Posted Apr 07, 2009 01:19 PM
    Check in the Policy Settings.

    Tejas


  • 3.  RE: Require a password to Disable SEP
    Best Answer

    Posted Apr 07, 2009 01:59 PM
    On the clients tab go to a specific group and then click on the policies tab.  Go down to where the policies are listed and click the (+) next to 'Location-specific Settings:'. Click on 'Server Control' then choose customize. Uncheck 'Allow users to enable and disable Network Threat Protection'.

    You have to have that policy turned off. If you want desktop support to be able to disable it just have them use 'stop -smc' in the Run box. The password can be set under 'general settings' on the 'security settings' tab.

    Sutton


  • 4.  RE: Require a password to Disable SEP

    Posted Apr 07, 2009 06:07 PM
    It works.  I was able to remove the ability to disable SEP from the end users and keep the ability for the desktop team.  It seem like there should be an easier way but the smc -stop and smc -start works fine.

    Thanks


  • 5.  RE: Require a password to Disable SEP

    Posted Apr 08, 2009 09:48 AM
    You'd have to check on this but just be aware that I believe that both 'disable symantec endpoint protection' and 'smc -stop' only disable the firewall, app & device control, etc. I believe that AV stays active.  I'm not aware of a way to turn that off...especially if you use tamper protection.  That's all.

    Sutton