Symantec Endpoint Protection Application and device control Exception
I am managing a SEP 12 server at my site. We have a custom apllication and control rules configured for one clients group.
The issue i am facing is that whenever users try to intall network printer (Samsung) the symantec client block the process.
I figure out that rule AC17 Prevent vulnerable Windows processes from writing code is stopping spoolsv.exe to communicate with printer
drivers. When i disabled the rule, it works perfectly fine.
So, is there any way i can add exception for these drivers so as that they can communicate with spoolsv.exe and make the required changes.
I don't think permanently removing spoolsv.exe from the rule is a safe option.