Symantec Endpoint Protection (SEP) client is not isolated after doing "isolate" command to it on Symantec Endpoint Detection and Response (SEDR) console. On Symantec Endpoint Protection Manager (SEPM) console - [Monitors] - [Command Status], "Place client(s) in Quarantine" command status shows "Completed", but client does not move to "Quarantine" location.
[Never do Host Integrity checking] is selected in Host Integrity policy - [Requirements] section.
Choose [Always do Host Integrity checking" in Host Integrity policy - [Requirements] section or upgrade SEP client to 14.0 RU1 and later if you do not want to run HI check on client anyway.