Create Exception Policy via REST API

I need a solution

Hi everybody,

i want to create exception policies via REST API and powershell with the following code:

$Header =@{Authorization='Bearer '+$SEPMAuthenticationToken}

$Body = @{
	name = "TestExceptionREST"
	desc = "TestExceptionREST"

$BodyJSON = $Body | ConvertTo-Json

Invoke-RestMethod -SkipCertificateCheck -Method Post -Uri "https://${SEPMIPAddress}:8446/sepm/api/v1/policies/exceptions" -Header $Header -Body $BodyJSON

As I understand the REST API Documentation (chapter 4.87) all body parameters are optional so i should be able to create an exception with just a name and description. However execution of the Invoke-RestMethod commandlet always results in the following error:

Invoke-RestMethod : {"errorCode":"500","appErrorCode":"","errorMessage":"Internal Server Error"}

Can you give a working example for the creation of an exception policy via REST API?

Thanks in advance

P.S. there are many inconsistencies in the REST API that make life harder than it has to be imho



REST API 401 User Not Authorized

I need a solution

I have been able to connect to my SEPM API using Postman, however when I try to access anything else I get this error:

  "errorCode": "401",
  "appErrorCode": "",
  "errorMessage": "The user is not authorized to access this resource"

I am using a full admin account to access the API. 

I have looked at this documentation:

I cannot find anywhere to give a user permission to access specific APIs. Is there a setting in the SEP Management Console that I’m missing?



Symantec Integrated cyber defence manager Authentication error

I need a solution

I am working on integration of Symantec ICDm with our in house product. I got trial of ICDm along with Symantec Endpoint security.

I am having problem with Authentication API endpoint as I am getting 404 error with following message despite crafting the request according to API  documentation.

    “message”: “No partition mapping found with the given input.”

“POST” request on “” with request headers 

    “Authorization” : “Basic ” +str(encoded_token) ,
    “Accept” : “application/json”,
    “Content-Type” : “application/x-www-form-urlencoded”,


encoded_token = base64encoded(clientId +”:”+ clientSecret)



Force update Agents DLP

I do not need a solution (just sharing information)

Dear friends,

Please, I need some help on DLP agents.

Is there any command or a way to force communication between the agent and Enforce, or vice versa? Whether via the command line or via the graphical interface?

I searched for documentation and found nothing for now.

Thank you for your help.



How To Troubleshoot And Fix The Situation When The ADM HA Is Not Working

One of the possible error conditions reported in the deployment is where in the GUI System -> Deployment the following symptoms are reported:

Heartbeats are not received from the secondary

Data synchronization has failed on secondary

Apart of the information displayed in GUI on primary node, there may be the following further observations:

– the secondary node is not running

– the secondary node is running, but mas_hb_monit process is not running