The Symantec Technology and Response (STAR) and Symantec Endpoint Protection (SEP) teams have developed a recommended security posture for Endpoint Protection.
These settings are based on the High Security Virus and Spyware Protection policy, which you can configure within Symantec Endpoint Protection Manager (SEPM).
Note: Although the High Security settings are the recommended choice, they are not the default.
CAUTION: Customer environments cover a wide and varied range, and these recommendations do not fit all environments.
- Policy types
- How to create, copy, or edit policies
- Policy settings
The Symantec Endpoint Protection Manager comes with the following preconfigured Virus and Spyware Protection policies:
- High Security
- High Performance
The Balanced policy is the default policy that applies to client groups. You can customize these preconfigured policies, or use them as examples in the creation of new policies.
Symantec encourages you to explore and test the differences, and to choose a policy that best fits your needs.
How to create, copy, or edit policies
To view and edit Virus and Spyware Protection policy settings in Endpoint Protection Manager
- Click Policies > Virus and Spyware Protection.
The existing policies appear in the right pane.
- Either create a new policy, or copy an existing policy
- Create new policies: Under Tasks, click Add a Virus and Spyware Protection policy.
- Copy existing policies:
- Right-click the policy you want to copy, then click Copy.
- In the right pane, right-click, then click Paste.
- Double-click on a policy to view or edit its settings.
When you create a new Virus and Spyware protection policy (instead of copying or editing an existing policy), the policy populates with the default Balanced settings. You should copy and paste one of the preconfigured policies and edit a copy rather than changing the original.
For these and other instructions (how to assign policies to Endpoint Protection clients), see the Endpoint Protection Installation and Administration Guide for your product version.
The following table compares the settings from the three preconfigured Virus and Spyware policies.
- Red text indicates settings that are locked.
- Green text indicates unlocked. An Endpoint Protection Manager administrator can modify all of these settings, but users on Endpoint Protection clients can only modify unlocked settings, even if the user is the Endpoint Protection Manager administrator.
- Underlined bold text indicates settings that are different for a particular policy.
Imported Document Id
Microsoft Excel 97/2000/XP format spreadsheet used for policy settings table
table.xls (36.0 KB)