Jump to content

Software Restriction Policies and Symantec Antivirus


Recommended Posts

Posted

Hello,

 

I recently implemented SRPs in my Windows network, thoroughly testing many

things before deployment. So, after deploying SRPs everything works fine:

allowed programs start, disallowed programs don't.

 

However, I have problem with Symantec AntiVirus 10.x clients - they appear

like their Auto Protect is disabled (SAV yellow shield icon is in red

circle), but SAV client software itself is running, i.e. I see yellow shield

icon in the task tray, I can double click it, SAV client opens, I can run

scans etc etc. Before deploying SRPs SAV worked fine without trouble.

 

SRPs config is set to default, appart from that I am exclusively allowing to

run all programs in C:\Program Files\ and C:\Windows\ directories by path

rule (+some additional path rules for network servers with startup scripts

and software install distribution point).

 

SAV is installed in C:\Program Files\. All SAV services, that are set to

start automatically, are started. Event viewer shows nothing unusual, no SAV

or other software error messages.

 

I suspect that I need additional SRP registry path rules for SAV, but

walking through registry in search for "Symantec" gave me no clue.

 

So, maybe somebody already was dealing with this problem and could give me a

suggestion where to start from? )

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...