Your security policies define how the protection technologies protect your computers from known and unknown threats.
You can manage your Symantec Endpoint Protection security policies in many ways. For example, you can create copies of the security policies and then customize the copies for your specific needs. You can lock and unlock certain settings so that users cannot change them on the client computer.
Table: Tasks common to all policies
Add a policy
If you do not want to use one of the default policies, you can add a new policy.
You can add shared policies or non-shared policies.
If you add or edit shared policies in the Policies page, you must also assign the policies to a group or location. Otherwise those policies are not effective.
If you want to change the settings in an existing policy, you can edit it. You can increase or decrease the protection on your computers by modifying its security policies. You do not have to reassign a modified policy unless you change the group assignment.
A copy enables you to change the content of a shared policy in one location and not in all other locations. The copy overrides the existing non-shared policy.
You can convert a shared policy to a non-shared policy if the policy no longer applies to all the groups or all the locations. When you finish the conversion, the converted policy with its new name appears under Location-specific Policies and Settings.
If you delete a policy, Symantec Endpoint Protection Manager removes the policy from the database. If you do not want to delete a policy, but you no longer want to use it, you can withdraw the policy instead.
You can withdraw any type of policy except a Virus and Spyware Protection policy and a LiveUpdate Settings policy.