How to Whitelist the IP of a device doing the scans on a network, within the Symantec Endpoint Manager.

To whitelist the IP of a device doing the scans on a network in Symantec Endpoint Manager kindly follow the steps given below:

1. Log in to the Symantec Endpoint Protection Manager (SEPM) console.
2. Click on Policies>Intrusion Prevention.
3. Select the Intrusion Prevention policy you wish to update and click Edit the policy.
4. Click Exceptions>Add and select the desired ID(s) from the exceptions list.
5. Click Next> and change the action from Block to Allow and click OK to save your changes.
   Confirm the exception is present in the Intrusion Prevention Exceptions list and click OK to save the policy.Ensure this policy is applied to the SEP client group which is affected.
   
   This will allow the device to continue scanning without throwing any warnings or flags from Symantec. This will also not take any protection away from the device that is scanning as an agent should still be deployed on that device.