Endpoint Protection

Hi Team,

Is that possible to manage this option: "undo action taken" option from SEPManager, attached screen shot,

Please help for the above

Hi,

Thank you for posting in Symantec community & I would be glad to answer your query.

It's not possible from the SEPM. There is not any option in the SEPM to manage this.

It's not possible

Thank you, Is there alternative options to manage this.

This is a scan that the end user kicked off, correct (right-click and scan for viruses)? Is this for SEP 12.1.x?

Because it is a user controlled scan they will be able to manage the actions

There isn't any option in the SEPM where you can check the box " Prompt and  allow user to prompt to take an action".

In addition to Brian and Chetan: There is one (very specific) opportunity to undo deleting viruses. In 12.1.5 and later, you can start PowerEraser through the console. Every item PE has found can be deleted via console, and the deletion can be reversed for some time.

I assume the reason for this behavior is that PE is not using the SEP quarantine. It's a very special tool for special tasks.

Thank you, our requirements is to Hide or Deny the access for our users to the “Undo action taken” option,

For instance : Logon scripts, registry setting, modification of the package, permissions that can be configured on the “Start Undo” executable, permissions that can be configured in the Symantec registry keys, etc …

SEP is 12.1.4, how this can be manage if need,

Enabling tamper protection would satisfy this

It would not apply to the Undo action taken setting though.

In you case, you can make the client managed and password protect opening the user interface

Tamper protection is already enabled

Add a password in order to open the client interface. This will stop users from making changes if they don't know the password.