With the release of Symantec Endpoint Protection (SEP) 12.1.4 for Mac, you can configure policies for Virus and Spyware Protection, Network Threat Protection (Intrusion Prevention), and LiveUpdate. You can configure these policies on the client or from within the Symantec Endpoint Protection Manager (SEPM).
Within the SEP client's user interface, click Settings. There are tabs for Virus and Spyware Protection, Network Threat Protection, and LiveUpdate. These settings may be grayed out if locked down by your SEPM administration. In this case, these policies can be configured through the SEPM console, under the Policies tab.
Virus and Spyware Protection, and LiveUpdate: Policy configuration for Auto-Protect, scheduled scans, exclusions and LiveUpdate for Mac is unchanged. Please see the following articles for further information:
Network Threat Protection: You configure Network Threat Protection for the SEP Mac clients with the Intrusion Prevention policy that applies to the group to which those clients belong.
To enable or disable Network Intrusion Prevention
Within the SEPM console, click Policies > Intrusion Prevention. Double-click the applicable Intrusion Prevention policy, and then click Intrusion Prevention. Check Enable Network Intrusion Prevention to enable it, or uncheck this option to disable it. Click the lock icon to lock the settings in server-controlled client groups.
Note: Browser Intrusion Prevention settings apply to Windows clients only.
To configure Intrusion Prevention Exceptions
Within the SEPM console, click Policies > Intrusion Prevention. Double-click the Intrusion Prevention policy, and then under Mac Settings, click Exceptions. Click the Add... button to add an exception. For more information on configuring Intrusion Prevention exceptions, see the following article: