Apple has reported a problem with the Ventura version of the Mac Operating System which causes several possible issues for Symantec Endpoint Protection (SEP) or Endpoint Security (SES).
1) After upgrading the Mac operating system to version 13 "Ventura", you may see a cross on the SEP tray icon.
2) You launch the agent UI (e.g. through the "Fix Now" option from the tray icon), and the Setup Wizard launches and requests Full Disk Access (FDA).
3) You may see that the Full Disk Access toggle is off for "Symantec System Extension".
4) You may see that the Full Disk Access toggle is on for "Symantec System Extension" but SEP is not functioning as expected.
5) After completing the Setup Wizard, SEP notifies you that it is missing Full Disk Access (FDA).
6) During the Setup Wizard, you may be asked to allow Network Filter profiles even if these were created already.
These situations stem from the same root cause. A defect in Ventura 13.1 causes any third-party vendor using the Endpoint Security API to lose FDA authorization. Apple has not supplied a fix at the time of writing. This is detailed here: https://developer.apple.com/documentation/macos-release-notes/macos-13_1-release-notes
Ignore the notification of the Network Filter prompt during the setup wizard. Complete the FDA authorization first. If you see the symptoms in #6 above, SEP automatically launches the Network Filter wizard whenever it is missing Full Disk Access. Therefore rectify the FDA authorization first and dismiss the popup.
If you notice any of the symptoms in steps 1-5 described in the Introduction section above, then:
Profiles granted by MDM are not impacted by this defect.