When you attempt to add a file or folder exception to an exception policy in the Symantec Endpoint Protection Manager (SEPM), the only type of scan that is displayed when using the '[SYSTEM_DRIVE]' or '[USER_PROFILE]' variable is 'Security Risk'. The options to choose the scan type of 'Application Control' or 'SONAR' will be missing.

These options were inadvertently removed when attempting to resolve a prior issue.

This issue is resolved in Endpoint Protection 14 RU1. Upgrade to resolve this issue.