What is the best practices policy for Threat Prevention when you have Threat Prevention policies on the network level as well as you have Endpoint Threat Prevention. To add to the equation on some Endpoints the SBA is installed and on some others is not installed.
It is noticed the following behaviour:
a) Threat prevention actions are done twice or more for the same files
b) Network Threat Prevention and SBA are fighting for the same file (End users experience failed download attempts)
c) Files are not inspected
Based on the above scenarios can you suggest a best practice configuration when you have Network Threat Prevention, SBA on some devices and devices with no SBA.