: Devices must be managed via the Integrated Cyber Defense Manager (ICDm) cloud interface. Alternatively, the agent can be deployed as an unmanaged client package extracted from the Broadcom Full Installation file. On-premises SEPM systems cannot control these agents. macOS (Apple Silicon) Implementation
While most core protection features work, there are significant gaps compared to x64 clients. features on ARM64 include: Exploit Protection and Application Control . Threat Defense for AD . Web and Cloud Access Protection . Custom Application Behavior .
The core rule of Symantec ARM64 operation is that Enterprise administrators must manage ARM64 endpoints as unmanaged local installations or register them via Broadcom's Integrated Cyber Defense Manager (ICDm) cloud console. symantec endpoint protection arm64 work
Antivirus and Endpoint Detection and Response (EDR) software rely on low-level kernel drivers. Because ARM64 operates on an completely distinct architecture than traditional Intel/AMD x64 systems, translating kernel instructions is highly complex.
Network-level protection, including firewall capabilities, works natively. : Devices must be managed via the Integrated
: SEP natively supports Arm processors from Qualcomm Snapdragon, including the Snapdragon X Elite and Snapdragon X Plus series.
: Systems running 14.3 RU8 or higher must have Microsoft Trusted Signing (formerly Azure Code Signing) enabled, which is standard on modern Windows 11 ARM64 builds. Supported vs. Unsupported Features on ARM64 Web and Cloud Access Protection
: ARM64 packages are also available as unmanaged clients for standalone installation. Feature Availability and Limitations
┌──────────────────────────────────────────────────────────┐ │ Symantec ARM64 Management Flow │ └────────────────────────────┬─────────────────────────────┘ │ ┌──────────────┴──────────────┐ ▼ ▼ [Cloud Management: SES] [Self-Managed Client] Managed via ICDm Console Unmanaged SEP Package │ │ └──────────────┬──────────────┘ ▼ ┌─────────────────────────────┐ │ Supported ARM64 Platforms │ │ • Windows 11 ARM64 │ │ • Apple M1/M2/M3/M4 macOS │ └─────────────────────────────┘ Supported Operating Systems & Infrastructure Requirements
Direct browser engine hooking is unavailable; traffic must be filtered via alternative network-layer proxies.
Currently, there is no support for managing ARM64 endpoints via the on-premises Symantec Endpoint Protection Manager (SEPM). Operating System & Platform Support