After the installation of a Symantec Endpoint Protection (SEP) client or change to its assigned policy, Facebook displays an "incompatible browser" error. The Windows Update web site, and some web server based applications as well, no longer functions.
This is caused by the stealth settings in the Symantec Endpoint Protection (SEP) client firewall rule ->. Stealth mode settings (OS Fingerprint Masquerading)
Stealth mode OS fingerprint masquerading, prevents the web server and web server based applications from correctly detecting operating system and browser version, and this stops the web site or application from working properly.
To disable stealth mode by policy:
In the Symantec Endpoint Protection Manager (SEPM) console, open the "Policy" - "Firewall Policy" which you are using for client group in question
In the Firewall Policy page, click Traffic and Stealth settings
Uncheck Enable OS fingerprint masquerading.
Click the "OK" button.
Apply the policy to any affected client group
Imported Document ID: TECH213656
Subscribing will provide email updates when this Article is updated. Login is required.