After importing the Ruleset, we observe that the risk score is showing a wrong value and all rules are getting enabled by default.
Environment
Symantec Risk Authentication 9.1 SP4
Resolution
Our recommendation is to apply the patch Symantec-RiskAuth-9.1.04-DE572446_DevPatch to resolve this issue. The patch can be downloaded from the KB article as well.