When using Symantec Endpoint Protection (SEP)/and Symantec Endpoint Protection Manager (SEPM), there is a need to add digital signature certificates from trusted application manufacturer's software in order to have the SEP client treat trusted applications appropriately. This is an ongoing part of SEP/SEPM administration and should be reviewed as needed.
Some software manufacturers will give the certificate to a customer that asks, but often this is unnecessary as it can be extracted from a signed software package using Microsoft Windows and the steps found in the Resolution section of this article.
Microsoft Windows Operating Systems
See the following document, specifically the section entitled "Exclude a Certificate" for details on importing the certificate file into the Exceptions Policy.