We are having issues with Symantec Vulnerability Protection add-on (version 12.1.4013.4013) not being compatiable with Internet Explorer 11.

We are getting the 'Symantec Vulnerability Protection add-on not compatiable and has been disabled' message when launching IE 11 with Protected Mode set to enabled.

I have only tested on laptops running Windows 8.1 so far but will also test our Windows 7 clients.

Any ideas?

Enabling or disabling network intrusion prevention or browser intrusion prevention

Expected behavior of Browser Intrusion Prevention

Supported Browser versions for Browser Intrusion Prevention for Symantec Endpoint Protection 12.1.x

You can enable via GPO see below thread

https://www-secure.symantec.com/connect/forums/browser-intrusion-prevention-add-problem#comment-5861811

suggest to open a support ticket. i believe it's related to cummulative patch showing the status.

also share the results when you test on Win 7.

Can confirm in my real world experience on 100K+ Windows 7 (32 and 64 bit) SEP endpoints, this is a non issue and GPO (Computer Configuration - NOT User Configuration) configured to ensure this Symantec Vulnerability Protection add-on is NOT disabled by any user (standard or administrator). Like James007 provided the reference and nbf1234 deployment (User Configuration) reference. Our deployment consisted again of Computer Configuration and NOT User Configuration - as stated by nbf1234 and with success.

@DrewJenner can you test your Windows 8.1 endpoints with SEP client software version 12.1.4013.4126 which includes Symantec Vulnerability Protection add-on version 11.1.0.0?

Bump.

Is there a solution for getting the Symantec Vulnerability Protection add-on to work with IE10/IE11 Enhanced Protected Mode (64-bit)?