I need a solution
Hi,
I have tried to run GUP Monitor tool on SEPM Server (Windows 2012) and never worked, any advise.
Thanks
↧
GUP Monitor Tool not running
↧
SEPM 12.1 - Need assistance on how to setup GUP
I need a solution
Hi.
I'll try to explain my scenario as easy as possible:
We have several clients which can't communicate with our SEPM-server because of complicated network issues.
However, these clients got network communication with some of the other clients which again got connection to our SEPM, hence I have chosen to try to setup one of these as GUP.
What I've been doing:
I've created a client group for this purpose and created a non-shared LiveUpdate Settings Policy for this group where server X is GUP.
(Server X got communication with SEPM)
I've also moved server X into this group and it seems to be accepting the role of GUP.
Problem:
These clients have never been in contact and recognized by our SEPM-server, thus is not listed in SEPM.
How do I update the policy on these servers and add them to the group in SEPM which use the GUP-client as update source?
Do I have to export an installation package for this specific group or something like that?
If so, how?
I feel like I'm banging my head against the wall, fearing I'm going about this the completly wrong way..
All help appriciated!
↧
↧
LiveUpdate 12.1 RU4 fails when run manually on Macintosh
I need a solution
Hi
I've installed the 12.1 RU4 version in some Macintosh clients and I presented the problem: http://www.symantec.com/business/support/index?page=content&id=TECH212506#.
I tryied to run the LiveUpdate, as the article recomends, using the LUTool, but I get the following message:
objc[29698]: Class XByteCountFormatter is implemented in both /Library/PrivateFrameworks/SymAppKitAdditions.framework/Versions/B/SymAppKitAdditions and /Library/Application Support/Symantec/LiveUpdate/./LUTool. One of the two will be used. Which one is undefined.
2013-12-04 14:45:16.854 LUTool[29698:407] in ConnectionDied, stopping current run loop
Cheking the liveupdate.log I have the following:
Wed Dec 4 14:45:15 2013: Daemon Launched
Wed Dec 4 14:45:15 2013: Daemon version: LiveUpdate 6.2.2f1, <C2><A9> 2013 Symantec Corporation, All Rights Reserved.
Wed Dec 4 14:45:15 2013: *** Adding Command
Wed Dec 4 14:45:15 2013: **** Command Key/Value (RegistryPath//Library/Application Support/Symantec/LiveUpdate/ActiveRegistry)
Wed Dec 4 14:45:15 2013: **** Command Key/Value (VolumeRoot//)
Wed Dec 4 14:45:15 2013: **** Command Key/Value (PlugInPath//Library/Application Support/Symantec/LiveUpdate/PlugIns)
Wed Dec 4 14:45:15 2013: =======================================================================
Wed Dec 4 14:45:15 2013: Starting up
Wed Dec 4 14:45:15 2013: Setting last check time now
Wed Dec 4 14:45:15 2013: Should download now and install later: 0
Wed Dec 4 14:45:15 2013: Gathering plug-ins and registry plists
Wed Dec 4 14:45:15 2013: Setting up request array
Wed Dec 4 14:45:15 2013: LiveUpdatePlugInNAV::GetRequestArray.
Wed Dec 4 14:45:15 2013: License processing
Wed Dec 4 14:45:15 2013: Checking License Settings
Wed Dec 4 14:45:15 2013: Searching for best LiveUpdate server
Wed Dec 4 14:45:15 2013: Requesting mini-TRI flag: http://10.1.2.2/checaav/MacintoshUpdatesAV/minitri.flg
Wed Dec 4 14:45:16 2013: Download Error for file minitri.flg (NSError): -1100
Wed Dec 4 14:45:16 2013: Attempted download of minitri.flg with error 9
Wed Dec 4 14:45:16 2013: Finding Best Server, got error: 9
Wed Dec 4 14:45:16 2013: Searching for best LiveUpdate server
Wed Dec 4 14:45:16 2013: Requesting mini-TRI flag: http://10.1.2.2/checaav/MacintoshUpdatesAV/livetri.zip
Wed Dec 4 14:45:16 2013: Attempted download of livetri.zip with error 0
Wed Dec 4 14:45:16 2013: Requesting TRI files
Wed Dec 4 14:45:16 2013: Requesting livetri.zip: http://10.1.2.2/checaav/MacintoshUpdatesAV/livetri.zip
Wed Dec 4 14:45:16 2013: Attempted download of livetri.zip with error 0
Wed Dec 4 14:45:16 2013: main: CAUGHT ???
Wed Dec 4 14:45:16 2013: Daemon Quitting
I have a Windows Server (http://10.1.2.2/checaav/MacintoshUpdatesAV/) as Internal LiveUpdate Server.
I update the definitions, using the LiveUpdate Administrator Utility (1.5), once a week; Just in case I've allready checked the Symantec Endpoint Protection v12.1 RU4 product line.
Other SEP for Mac clients (RU2) update well with the same LiveUpdate schema.
Any idea what is causing this problem?
Regards
↧
I have this problem with Symantec Endpoint Protection Manager 12.1.My console does not update
I need a solution
Good Morning:
Some days ago, this problem appears in my Symantec Endpoint Protection Manager console. Next liveupdate time shows a previous date than the last liveupdate time. I tried to update manually and the .jdb file converts into .jdb.err file. I tried some solutions from this forums and i can't fix it.
↧
Can SEP and MalwareBytes Enterprise Co-Exist?
I need a solution
Hello,
Simply put, we are currently running SEP and MalwareBytes Free version without issue, but MB Enterprise gives a console version, making deployment of scans, updates, etc. easier than going to every system individually.
My question is will SEP and MalwareBytes Enterprise run together without conflicting with eachother? MBE will be ran as an Anti-Malware, not overtaking the AV abilities of SEP.
↧
↧
Unattended installation/update of client version
I need a solution
Hi all,
I have a lot of clients that still have SEP version 12.1.1 and we are now at 12.1.3. We have deepfreeze on all our machines so it's hard to update them during the day while students are using them. Is there anyway to have symantec push out the updated client version without some one at the PC? I can push them from our symantec server but I wanted to do this at night when nobody is here. Any information will be helpful. Were also using a GUP so this would help with that too.
Thanks!!!!
2982551
↧
Next Liveupdate Time shows a previous date than the Last Liveupdate Time.
I need a solution
Next Liveupdate Time shows a previous date than the Last Liveupdate Time. And SEPM is not updating for this reason, i Think, HEELP, please.
Attach file.
↧
SEP 12 RU4 - Implementing GUPs on VLANs
I need a solution
Before we upgraded our management console to SEP 12 RU4, we organized our GUP policies the following way
1. One group called GUPs has all the servers from each site --- they serve as GUPs and are defined as GUPs based on the registry key value
HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\SMC\SYLINK\SyLink\CurrentGroup
where the value is equal the group name, i.e My Company\Servers\GUPs
2. Multiple groups for each site. Each group would have a separate LiveUpdate policy that said, "Your GUP is 10.10.10.100 server at this site". Because there are about 1,000 sites, I had to create indivial LiveUpdate policies, which took several week.
Now, I am told there is a MUCH easier way to implement GUPs and that I only need one LiveUpdate policy for the entire SEPM because of "Explicit Group Update Providers for roaming clients"
BUT here is the problem --- at each site, the network address 10.10.10.0 / 255.255.240.0 is separated into Virtual LANs (VLANs). The GUP 10.10.10.100 is on a separate VLAN 0, and the clients are on different VLANs 1 through 10.
I ignored the fact that there are on VLANs and followed Symantec's directions for creating Explicit GUPs for roaming clients.
Policies > LiveUpdate > GUP Policy > Server Settings > Group Update Provider > Configure Explicit Group Update Provider List > Add
Client Subnet Network Address: 10.10.10.0
Type: IP Address
IP Address: 10.10.10.100
Port: 2967
After waiting several hours, I go to Monitors > System Logs > Client Activity > Event Source: SYLINK
And the only clients that receive AV defs from GUP 10.10.10.100 is the GUP itself. In other words, the log shows that GUP 10.10.10.100 receive AV definitions from 10.10.10.100.
I'm testing 5 GUPs and they all show this same result, i.e. GUP receives AV definitions from itself!!!!
How to simplify the creation of GUP policies so that I don't have to create individual GUP policies for each site!!!!!!
↧
Prevent Mac users from disabling Endpoint
I need a solution
Hi..
Was wondering if there was a way we could prevent all users...including those with local admin access on their Mac from disabling antirvirus and spyware protection.
Experience shows that even if it is disabled, server policy will enabled it once again automatically, but wanted to check if there is a way to keep it from getting disabled altogether.
Any thoughts?
Thanks!
-A
↧
↧
Microsoft Security Advisory 2916652 Released
I need a solution
Has Symantec published any communication on Microsoft Security Advisory 2916652 Released?
↧
enabling location awareness for a user
I need a solution
Hello
I am wonder is it posible enabling location awareness for a user which belong to group eg local administrator.
for example administrator can read writte on usb but normal user only read.
(every location have different police ADC )
I can assign location for user but i must know login this it is in registry
In same case especial in big envirometr is difficult to implement this so i think abut assign for group
But I haven't idea how to achive.
↧
SEP 12 RU4 - Mac OS - How to receive AV defs from GUPs
I need a solution
I am re-structuring how our clients receive AV defs from GUPs. Where do I specify that Mac OS clients receive definition from GUPs. Some of our branches have 90% Mac OS computers.
↧
jdb files: download issue
I need a solution
For some hours now (12/10/13 15:00 UTC to 19:00 UTC) it's impossible for me to download jdb files. It doesn't matter if I use a company PC via proxy or my private laptop with a completely different provider. I tried some certified jdb files and some Rapid Release files, HTTP or FTP. The download always failed after about 5 or 6 MB. Even specialized download programs failed.
Is there a known issue at the Symantec side for the time being?
Thanks!
↧
↧
Slow backup speeds after 12.1.3
I need a solution
In the last month we have seen a significant decrease in bandwidth following the SEP 12.1.3 upgrade. The problem did not exist in 12.1.2 and no policies have changed. I found that if i disable the Network Threat Protection the problem is alleviated, but this is not a valid long term solution.
So far I've tried:
-adding host exceptions in the IDP policy
-adding process exceptions in the virus scanning
-adding process exceptions
I have upgraded the backup server to 12.1.4, as well as a test destiantion client but that did not seem to make much of a difference.
I was hoping there would be a recommendation or suggestion on how to get BackupExec to work well with 12.1.3
↧
Do i Need Advanced Download And Browser IPS?
I need a solution
at our organization we have a good web gateway url filtering and antivirus solution.
for antivirus solution we are using sep 12.1.4
do we need to enable Advances download and browser IPS features or will they just waste PC resources?.
thanks
↧
12.1.2 Manual Install Error 25010: Microsoft Test root Authority.
I need a solution
Received the attached error on Manual install of 12.1.RU2.
Anybody has suggestion(s)on this?
↧
Symantec 12.1 Missing Tray Icon in a limited domain user account
I need a solution
Hi All,
First I would like to thank you for reading.
My problem is that we have workstations in a domain and daily operation of those workstations are run using a limited domain user account.
We found out that the symantec tray icon has disappeared in that account while it is normal in the administrator account.
We concluded it could have been domain policy problem in which the tray could be blocked by the app locker. We know that the Symantec client itself is online by checking in the server that the client is alive and kicking.
Thus I would like to know the exact path for the tray icon .exe (if there is one) so we could allow this to be accessed by the account in the domain policy.
Grateful if anyone could provide any alternative solution.
Thank you again for your time!
↧
↧
12.x Find unmanaged computers without NTP
I need a solution
We don't use NTP, and we won't, ever(due to a long history of it causing major headaches). So unamanaged detectors will not work.
So without NTP, how do I find unmanaged computers in 12.x? Please don't refer me to the "Client Deployment Wizard" it does no detection of any kind to see if a client is managed or not, I have thousands of clients and don't have time or patience to check each one manually.
↧
SEP 12 RU4 - When I delete Object from SEPM, it stays in Database
I need a solution
I have noticed when I delete an object from SEPM, i.e. Group, Policy, etc, it stays in the MS SQL Database.
This is a problem because let us say I create test policy "ABC LiveUpdate GUP Policy" with the 5 GUP IP addresses. I apply the policy, and then delete it from SEP Management Console.
Now, I want to create an actual policy "ABC LiveUpdate GUP Policy", but let us say that I add 20 more GUP IP Addresses that are GUP servers. I then apply this policy, but the clients only use the the IP addresses of the 5 GUPs from the old "ABC LiveUpdate GUP Policy".
Then, I go into the SQL database and run the query
SELECT * FROM IDENTITY_MAP
WHERE NAME LIKE '%ABC LiveUpdate GUP Policy%'
and it outputs TWO instances of ABC LiveUpdate GUP Policy (only the ID is different). Then I have to delete ABC LiveUpdate GUP Policy.
DELETE FROM IDENTITY_MAP
WHERE NAME LIKE '%ABC LiveUpdate GUP Policy%'
Why does this happen? When I delete something from the SEP Management Console, I expect it to be deleted from the SQL Database the first time around.
I should be able to create a policy, delete it, then create a new policy with the same name without worrying about whether it will work or not.
Can someone shed some light on this? Is there a workaround for this? Is Symantec aware of this issue?
↧
SEP 12 RU4 Client - Where is LiveUpdate? Cannot find it in Control Panel.
I need a solution
We have SEP 12 RU4 Client but cannot find LiveUpdate in Control Panel. Where is LiveUpdate located?
↧