ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

New Features in Client Intrusion Detection System (CIDS) 14.1

book

Article ID: 161095

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

An updated Client Intrusion Detection System engine is being released in December 2014. This engine (14.1.2) is available to users of Symantec Endpoint Protection 12.1 (SEP 12.1) and above.

Cause

You would like additional information on this release.

 

Resolution

Client Intrusion Detection System (CIDS) v14.1 will be released as a staged release for Enterprise customers.  SEP clients will upgrade this feature via LiveUpdate.  The rollout is expected to begin on or around December 1.
 
For more information about Staged Releases please see the following document: About Endpoint Protection staged content rollouts
 
This release provides a new generation Browser Protection engine. Please be aware that this engine removes the need for Browser Helper Objects (BHO), browser plugins or add ons.  No functionality will be lost due to this change.  It simply gives customers browser independent protection and allows Symantec Endpoint Protection to tackle even more complex threats.
 
Note: Symantec will support more browsers in the future and moving to a plugin-less design is the first step in accomplishing this. Under CIDS 14.x however only Firefox and Internet Explorer are fully supported.
 
It is normal for Internet Explorer users to no longer see the BHO and similarly, Firefox users will not see the add-on installed in their browsers.  Note: All versions of IE BHO will be disabled and all Firefox plugins removed.
 
If a GPO has previously been created to suppress the message "The Symantec Intrusion Prevention add-on from Symantec Corporation is ready for use," the policy setting must be removed now to avoid cosmetic error messages reading "Browser Intrusion Prevention is malfunctioning. Check the System logs for details." See the article Internet Explorer 9 displays a pop-up stating "The Symantec Intrusion Prevention add-on from Symantec Corporation is ready for use" for more details.
 
Because this is a staged rollout, customers may see the change at different times.  This is a positive change, no functionality is being removed; this change improves Symantec Endpoint Protection’s protection capabilities.