Enable and Diable Network Threat Protection from Command Line

Created: 11 Mar 2010 | 2 comments

serhi

Symantec Employee

Accredited

3 Agree

1 Disagree

+2 4 Votes

We can enable and disable Network Threat Protection from SEPM UI, but we can't do NTP from commad line. So we can't enble NTP by SNAC Host Integrity script when the FW stops.

Idea Filed Under:

Security, Endpoint Protection (AntiVirus) - 11.x, Endpoint Protection (AntiVirus), Network Access Control, Security Risks, Designing, Developing, Windows, Rules, Tip/How to

Login or register to post comments
Comments RSS Feed

Comments

Mar

2011

0 Votes 0

frodjoe

Symantec Employee

Certified

In some scenario, it can be

In some scenario, it can be usefull to temporarily disable the firewall component for a desktop that does not have rights to act on the SEP client configuration. For instance, we may want to disable the firewall while a remote access control is performed on a user desktop.

It seems that the only way to do that is to stop the SMC service, run the remote access control session and restart the SMC service. The downside it that while the SMC service is stopped, the management console cannot update the SEP client...

A command line to disable the firewall component would be a great option and a good feature.

Mar

2011

0 Votes 0

Jeremy Dundon

Symantec Employee

Accredited

It would need to be lockable

It would need to be lockable so that non-admins cannot do so, or those without the password cannot.

Enable and Diable Network Threat Protection from Command Line

Comments

In some scenario, it can be

It would need to be lockable

Links

Technical Support

Symantec.com

Store

Community Stats

Enable and Diable Network Threat Protection from Command Line

Comments

In some scenario, it can be

It would need to be lockable

Would you like to reply?

Links

Technical Support

Symantec.com

Store

Community Stats