Active Directory Domain Controllers experiencing high CPU with Symantec Endpoint Protection (SEP). SEP process takes ~30-40% CPU frequently.
Release : 14.3 RU6
Policy configuration for Endpoint Detection and Response caused the extra load.
For busy domain controllers, either:
The following exceptions for EDR can also increase performance: