Hello,
I am currently facing the following situation:
Symantec Endpoint Protection on clients can be disabled and activated by users (due to the local admin rights) -> users without local admin priviliges can not deactivate the client -> this will be changed in near future
We have devided the security guidelines betweens ervers and clients within our network
Now both guidelines have the setting under localisation options that nobody is able to deactivate the client (I checked the docu >> all settings correct)
Interestingly the option to deactivate the SEP is being greyed out on servers where the administrator is logged in and on local client computers the users are able to activate and deactivate the client.
I have no idea how this scenario could happen.
I ensured that not even Windows administrators can enable/disable the client and anyways I have the described scenario.
Any ideas?