After upgrading the Symantec Endpoint Protection Managers to 14.3 RU5 previous client install feature sets that did not have Endpoint Threat Defense for AD (TDAD) and Web and Cloud Access Protection (WCAP) features selected were enabled post upgrade. This impacted client auto upgrades and any client packages that were exported after upgrade.
After upgrade the features are checked as seen below:
Release : 14.3 RU5
A defect in the source code of the product
Symantec has resolved this issue with the release of 14.3 RU6. Upgrading to this or future versions will remediate the issue.