Video Screencast Help

stop the work of network threat protection service on sep

Created: 01 Mar 2014 • Updated: 03 Mar 2014 | 5 comments
This issue has been solved. See solution.

For some testing I need to stop the work of network threat protection component on sep client at 2 systems, is there any solution to do that?

Comments 5 CommentsJump to latest comment

dip_mis's picture

check the forum

https://www-secure.symantec.com/connect/forums/disable-firewall-command-line

command to stop ntp

smc -disable -ntp

and to reenable

smc -enable -ntp

If the SEP client UI is password protected:

smc -disable -ntp -p <password>

SOLUTION
AJ_01's picture

One way to stop the ntp is to disable the service with command prompt, below is the article for SEP 12.1 & Dos commands

https://www-secure.symantec.com/connect/articles/sep-121-dos-commands

To disable SEP client firewall service

smc -disable –ntp

To enable client firewall service

smc -enable -ntp

If the SEP client UI is password protected:

smc -disable -ntp -p <password>

other way is to remove the component of ntp from add or remove program

Regard

AJ

James007's picture

How to disable Client Network Threat protection from the Symantec Endpoint Protection Manager

You can send a command from Symantec Endpoint Protection Manager (SEPM) to selected clients to temporarily disable Network Threat protection. Commands can be sent from two places within Symantec Endpoint Protection Manager:

From Monitors page

  1. In the SEPM console, click Monitors.
  2. Click the Logs tab
  3. Select Computer Status for Log type.
  4. Select any desired filters and time range.
  5. Click the View log button.
  6. In the resulting computer status log, select any desired clients (or select All from the drop down list)
  7. Select Disable Network Threat Protection from the command drop down list.
  8. Click Start
  9. Click Yes to confirm the action.

From Clients page

  1. In the console, click Clients.
  2. Under View Clients, select a group for which you want to enable or disable protection.
  3. Do one of the following actions:
    • For all computers and users in group right-click the group
    • Click Run Command on Group
    • Click Enable Network Threat Protection or Disable Network Threat Protection.

      Or

    • For selected users or computers within a group, click the Clients tab
    • Select the users or computers.
    • Right-click the selection
    • Click Run Command on Clients > Enable Network Threat Protection or Disable Network Threat Protection.
       
  4. To confirm the action, click Yes.
  5. Click OK.

Note: If you disable Network Threat Protection with a command, it is automatically enabled when the following happens:

  • The client computer is shuts down and/or restarted.
  • The client location changes from server control to client control.
  • You configured the client to enable protection after a certain period of time.
  • A new security policy that enables protection is downloaded to the client.
SameerU's picture

Hello,

To disable the Network Threat Protection, you can try these - 

Navigate to

 HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\SMC\smc_engine_status 

If the value of  smc_engine_status  is "0" that means NTP is Disabled

If the value of  smc_engine_status  is "1" that means NTP is Enabled

OR

Disable Network Threat Protection access on SEP client.

 

 

Go to Specific group --> Policies --> Location specific setting --> Client user interface settings --> Edit settings -->  Uncheck allow user to enable and disable firewall

 

Check on client, as you can see tab is grayed out.

Regards

 

 

hineshtrivedi's picture

Thanks.

After applying the command it shown firewall is disable