Endpoint Protection

View Only

Back to discussions

Expand all | Collapse all

SEPM policy

Jump to Best Answer

1. SEPM policy

0 Recommend
Migration User
Posted Nov 28, 2013 06:10 AM

Reply Reply Privately
Dear All,

Today I made a policy in my SEPM about block USB devices, and I just checked and found that this policy is not working in safe mode. I dont know whether I have created policy properly or not, How can I check it. and If this policy is wrong then kindly provide setting so that i can block in safe mode also.
2. RE: SEPM policy
Best Answer

0 Recommend
Migration User
Posted Nov 28, 2013 06:15 AM

Reply Reply Privately
Hi Yshirodkar,

Auto-Protect would not run in Safe Mode and does the Application and Device Control.

The Application and Device control drivers will automatically disable themselves in the event that they see they are running in safe mode

Check these Threads:

https://www-secure.symantec.com/connect/forums/application-and-device-control-not-working-under-safe-mode

https://www-secure.symantec.com/connect/forums/need-block-usb-safe-mode-safe-mode-networking

https://www-secure.symantec.com/connect/forums/safe-mode
3. RE: SEPM policy

0 Recommend
Rafeeq
Posted Nov 28, 2013 06:21 AM

Reply Reply Privately
Does it work in Normal mode, if yes then all your policies are correct.

safe mode runs with minial services. thats why its not blocking
4. RE: SEPM policy

0 Recommend
Migration User
Posted Nov 28, 2013 06:30 AM

Reply Reply Privately
Rafeeq : Yes sir this policy is properly working in normal mode.

Rash_m : I am going through with your above post.
5. RE: SEPM policy

0 Recommend
Migration User
Posted Nov 28, 2013 07:07 AM

Reply Reply Privately
Hi,

SEPM policy are not working in safe mode.

Safe Mode only troubleshooting purpose if you want to block USB on safe mode you can use GPO.

Safe Mode -Access block Utility

https://www-secure.symantec.com/connect/ideas/safe-mode-access-block-utility
6. RE: SEPM policy

0 Recommend
Broadcom Employee

pete
Posted Nov 28, 2013 07:33 AM

Reply Reply Privately
whats the policy you referring to?

as stated above the ADC policy or service is not started in safe mode.
7. RE: SEPM policy

0 Recommend
ℬrίαη
Posted Nov 28, 2013 08:06 AM

Reply Reply Privately
It won't work in safe mode, this is by design.
8. RE: SEPM policy

0 Recommend
Migration User
Posted Nov 28, 2013 09:50 PM

Reply Reply Privately
Hello,

Sep Policy is work only in Normal Mode as per design. Safe Mode is use for troubleshooting part that why Sep client and policy not work because if it can enable in safe mode then while using the troubleshoot tool it create issue in running.

It only disable through group policy. If you want to disable use the same option.

Check the below thread

https://www-secure.symantec.com/connect/forums/need-block-usb-safe-mode-safe-mode-networking
9. RE: SEPM policy

0 Recommend
Migration User
Posted Nov 28, 2013 11:14 PM

Reply Reply Privately
Hi

ADC policy works in normal mode and in safemode the NTP drivers does not gets loaded and so you the USB does not gets block. This is by design

Regards
10. RE: SEPM policy

0 Recommend
Migration User
Posted Nov 29, 2013 05:35 AM

Reply Reply Privately
Thank u all for ur great support.

Endpoint Protection

SEPM policy

Migration UserNov 28, 2013 06:10 AM

Migration UserNov 28, 2013 06:15 AMBest Answer

RafeeqNov 28, 2013 06:21 AM

Migration UserNov 28, 2013 06:30 AM

Migration UserNov 28, 2013 07:07 AM

peteNov 28, 2013 07:33 AM

ℬrίαηNov 28, 2013 08:06 AM

Migration UserNov 28, 2013 09:50 PM

Migration UserNov 28, 2013 11:14 PM

Migration UserNov 29, 2013 05:35 AM

1. SEPM policy

2. RE: SEPM policy Best Answer

3. RE: SEPM policy

4. RE: SEPM policy

5. RE: SEPM policy

Safe Mode -Access block Utility

6. RE: SEPM policy

7. RE: SEPM policy

8. RE: SEPM policy

9. RE: SEPM policy

10. RE: SEPM policy

2. RE: SEPM policy
Best Answer