After upgrade to Endpoint protection client version 14.2 RU1 or newer, when you have the SEP firewall component installed but disabled by policy various versions of Windows 10 Security Center will display a red x for "Firewall & network protection"
SEP client with Firewall component installed and disabled by policy from manager
Client versions 14.2 RU1 and newer
Various versions of Windows 10
There have been multiple issues encountered and not every instance is identical. Depending on version of Windows 10 the Windows Security Center may display or present the error with minor differences in the UI.
After the SEP Firewall is disabled by policy, the client does not set the Windows Security Center Firewall (WSC) status to "WSC_SECURITY_PRODUCT_STATE_OFF" as a result the Windows Security Center reports a red x. The client sets the WSC status to an unexpected value: "WSC_SECURITY_PRODUCT_STATE_SNOOZED".
This issue is being fixed in 14.2 RU2. Please subscribe to this article to be notified of any updates. To work around this issue:
Create an allow all rule at the top of the rule set.
Enble the SEP FW by policy
Update the client to get latest policy
Uninstall the SEP Firewall component until the fixed version is released.
Subscribing will provide email updates when this Article is updated. Login is required.