Endpoint Protection

 View Only

  • 1.  SEP 12.1 - Firefox 5 Tamper Protection

    Posted Jul 08, 2011 04:38 AM
      |   view attached

    Hello,

    I have upgraded my SEPM to 12.1 along with 3 clients which are running Windows 7 Enterprise 64 bit edition. I have noticed the attached message when opening Firefox 5.

    Does anyone have any ideas what the problem is?

    Many thanks.



  • 2.  RE: SEP 12.1 - Firefox 5 Tamper Protection

    Posted Jul 08, 2011 05:21 AM

    did you upgrade your firefox?

    try this document

     

    How to Create Exceptions or Exclusions for Tamper Protection Alerts that have already been logged

     

    http://www.symantec.com/business/support/index?page=content&id=TECH92553&locale=en_US



  • 3.  RE: SEP 12.1 - Firefox 5 Tamper Protection

    Trusted Advisor
    Posted Jul 08, 2011 07:16 AM

    Hello,

    Tamper Protection is still not available for 64 bit OS And the current version is 11.0.6300.xx Ru6MP3 and I think its not there even in the next release of 11.0.7000

    http://www.symantec.com/business/support/index?page=content&id=TECH105052&locale=en_US

    Again, The migration process does not alter the default legacy server settings. For versions prior to 12.1 and later than 11.0.6, the default Tamper Protection setting is to only log the event. Because the migrated policy settings are retained, the new policy defaults to only log the event.

    Solution

     

    After migrating to 12.1, change the Tamper Protection policy setting to "Block it and log the event". For information about changing this setting, see the Symantec Endpoint Protection and Symantec Network Access Control Implementation Guide or the in-product help.

     

     

    You can also work on these steps:

     

     

    1. Log on to the Symantec Endpoint Protection Manager console with an administrator account.
    2. If you already have an Exceptions policy, proceed to step 3. Otherwise:
      1. Click Policies, then Exceptions.
      2. Click Add an Exceptions policy.
      3. Give the policy a suitable name, then click OK.
      4. Click Yes at the Assign Policy prompt.
      5. Place a checkmark next to the group(s) with your Citrix server(s).
      6. Click Assign finish assigning the policy.
    3. Click Monitors, then click the Logs tab.
    4. In Log Type, select Application and Device Control.
    5. In Log Content, select Application Control.
    6. Click Advanced Settings >>.
    7. In Event Type, select Tamper Protection.
    8. If necessary, change the Time range to a range that includes the last Tamper Protection event.
    9. Click View Log, you will be shown a list of Tamper Protection Violations.
    10. Select an appropriate violation and, at the top of the window, choose Add Process to Exception Policy, then click Start.
    11. Confirm the file to be excluded is correct.
    12. Click Policies, then Exceptions.
    13. Select all the Exceptions policies you wish to add the exception to.
    14. Click OK to complete the process.
    15. If you receive a message from your browser about closing the window, click Yes.
    16. Click Policies, then Centralized Exceptions.
    17. Double-click the Centralized Exception policy you added the new exception to. The policy will open.
    18. On the left-hand side, click Centralized Exceptions and confirm the file is listed and has an Action of Ignore.

     

     

     



  • 4.  RE: SEP 12.1 - Firefox 5 Tamper Protection

    Broadcom Employee
    Posted Jul 20, 2011 11:21 AM

    Hi,

    Mozilla Firefox 3.6 or 4.0 is supported with SEP 12.1

    I would suggest use supported version only.

    Check system requirements for SEP 12.1

    http://www.symantec.com/business/support/index?page=content&id=TECH163806&key=54619