About quarantining files in Symantec Protection Engine

When you use the ICAP protocol, you can quarantine the files that might contain threats. To quarantine files, you must install Symantec Central Quarantine.
Symantec Central Quarantine must be installed on a computer that runs Windows 2000 Server/Windows 2003 Server/Windows 2008 Server/Windows 2012 Server. Symantec Central Quarantine is included on the Symantec Protection Engine Tools zip.
For more information, see the
Symantec Central Quarantine Implementation Guide
.
You can designate unscannable files and the files that might contain threats or malicious code in Symantec Protection Engine for quarantining. Symantec Protection Engine forwards the files that you want to quarantine to Symantec Central Quarantine. Typically, the heuristically detected threats that cannot be eliminated are forwarded to the Quarantine so that they are isolated. Since the threats are isolated, they cannot spread. You can submit the files that are in the quarantine to Symantec Security Response for analysis. If a new threat is identified, new definitions are posted.
You must select
Scan and repair or delete
as the antivirus action policy to forward files to the quarantine.
If Symantec Protection Engine is enrolled with the centralized console, you can apply the policies for it from the centralized console. All the policies and the settings that can be configured from the centralized console are disabled for modification in the standalone user interface of Symantec Protection Engine.