Symantec Endpoint Protection Manager
enrollment settings

Use this page to retrieve an enrollment token and enroll a
Symantec Endpoint Protection Manager
domain into the cloud console. After you enroll the domain, you can manage devices and policies from either the cloud console or the
Symantec Endpoint Protection Manager
, called hybrid management. You continue to manage all other assets from the
Symantec Endpoint Protection Manager
. You can only enroll a domain for 14.1 or later clients.
Symantec Endpoint Protection Manager
enrollment options
Option
Description
Domain Enrollment Status
Shows whether a 14.1 or later
Symantec Endpoint Protection Manager
domain is enrolled or unenrolled in the cloud.
Enrollment Token
Use this token in
Symantec Endpoint Protection Manager
to enroll the domain in the cloud. See:
Symantec Endpoint Protection Manager
version
Use this information to troubleshoot issues with an enrolled
Symantec Endpoint Protection Manager
domain.
Active Connector Version
Use this information to troubleshoot issues with the bridge service that connects an enrolled
Symantec Endpoint Protection Manager
domain to the cloud console. The bridge service synchronizes data between the
Symantec Endpoint Protection Manager
and the cloud.
Manage Devices from the Cloud
Indicates which console manages your devices:
  • If you enable this option, the cloud console manages your devices.
  • If you disable this option,
    Symantec Endpoint Protection Manager
    manages your devices.
    Keep
    Manage Devices from the Cloud
    disabled if you use Active Directory or third-party APIs to manage your devices.
Manage Policies from the Cloud
Indicates which console manages your policies:
  • If you enable this option, the cloud console manages the following 14.1/14.2 policies:
    Antimalware, Memory Exploit Mitigation, Allow List, and Deny List.
  • If you disable this option,
    Symantec Endpoint Protection Manager
    manages all your policies.
Enable this option if you want to:
  • Try hybrid management (14.1 or later) with the new cloud-based policies along with the existing
    Symantec Endpoint Protection Manager
    -based policies.
  • Try Application Isolation and Application Control in the cloud while continuing to manage from the on-premises
    Symantec Endpoint Protection Manager
    .
  • View
    Symantec Endpoint Protection Manager
    security events in the cloud.
  • Upload
    Symantec Endpoint Protection Manager
    devices and policies to the cloud where you can manage them and eventually migrate them to the cloud before to use in
    Symantec Endpoint Security
    .
This option is disabled by default. If you enable this option and then later want to disable this option, you must unenroll the
Symantec Endpoint Protection Manager
from the cloud, then re-enroll it. You must disable this option when you upgrade from on-premises management to cloud-only management. See: