Last week upgraded our two SEPMs on Windows Server 2016 to 14 RU1, but now the option to enable Generic Exploit Mitigation is missing from Intrusion Prevent policy. Did it move? I’m asking because I’m seeing some SEP clients report into SEPM that the Generic Exploit Mitigation is disabled and I went to check the policy to ensure it was enable and locked. However it appears to have been either removed or moved in 14 RU1.
According to https://support.symantec.com/en_US/article.HOWTO125837.html, the option to enable and lock Generic Exploit Mitigation is under Policies > Intrusion Prevention and right-click an Intrusion Prevent policy and select Edit. When I go there Generic Exploit Migration on the left is missing. I even created a new policy, but it is still missing. Where can I find the options for Generic Exploit Migration in 14 RU1?