I need a solution
Hi,
I want to upgrade SEP 11 to SEP 12.1, I can deploy from SEPM.
But can I export install package from SEPM then run the file to upgrade directly on target server without uninstall SEP 11 ??
Thanks
↧
Upgrade SEP11 to SEP12
↧
virus detect
I need a solution
virus attack in my personal laptop.
when i attach my usb device only shortcut folder is display
when i show the hidden file, all the data have been display in one no name folder and 2 other .ini file disaplay.
how can i remove it?
↧
↧
Symantec Endpoint Protection Version
I need a solution
Hi Guys,
What is the latest version of SEPM?
currently iam using 12.1 RU4..
↧
SEPM console replication vs SQL mirroring
I need a solution
Hi,
We currently have 28000+ clients with 3 SEPM's (load balancing in place). I have setup another server to be a replication partner as a failover should the primary DB go offline.
What are the differences of using SEPM replication vs SQL DB mirroring? Which one should I choose and why?
The DB size is between 40-60GB.
↧
Symantec endpoint protection block active directory replication
I need a solution
Hi All,
As we have installed Symantec end point protection 12.1 on windows server 2012 but we are facing some issue.
Symantec endpoint protection is blocking active directory replication where our company user is facing lock account issue so please any one can suggest how we can solve this issue.
Please provide better soloution whereby windows server 2012 active directory can be run easily and dont be replicate.
Thanks
Naivedya
↧
↧
SEP 12.x and VMWare Workstation 9.x
I need a solution
I am running Windows 7 as my main operating system (i7 processor, 32GB of RAM, SSD drive for the main OS). I have SEP 12.x installed in the main OS for virus and firewall protection. I have VMWare Workstation 9.x installed on the SSD and I run a Linux image (also hosted on the SSD). I assigned 16 GB of RAM to the VM image.
My system completely slows to a crawl right after I receive a new virus definition and a file system scan is initiated. It takes 30 minutes to sometimes 2 hours for a scan to complete after having received the new defnition, in the meantime my laptop is unusable, clicking on anything either in the main OS or the hosted OS takes 1 to 2 minutes to respond. In the SEP settings, I tried excluding the VMWare directories from the scan, but that does not seem to help. If VMWare is not running, I never see the issue, but I really need the image to be running most of the time. I uninstalled SEP and had 2 weeks of pure enjoyment being able to work without any issues. Unfortunatelly, corporate policy requires that I run SEP all the time, I had re-install SEP today and I am back to the same issue, first definition push I received and my laptop is again unsusable. We sometime get 2 or 3 new defnitions pushed out a day (I am locked out of most of the preferences in SEP, thus I can't control when to receive the new defs).
Anyone experienced this?
is there a setting somewhere that I am missing that makes SEP play nice with VMWare Workstation?
↧
SEPM Reporting - Search specific signature ID
I need a solution
In the Symantec Endpoint Protection Management Console how do I create a report to show specific clients that have a particular risk detected? (Intrusion Prevention detection)
I can see the total number of detections via one of the default reports however can't find any report that simply gives me the list of machines.
I'm only interested in an Intrusion Prevention Detection - I can view the log of individual machine but can't seem to run a report that shows me all the machines that have that particular risk detected.
If anyone can show me the correct report to use, if there is one let me know.
Thanks,
Simon
↧
Data written to removable storage logging with continue action
I need a solution
In the application and device control policy, one of the policies is created to allow users to read and write to the removable storage devices, my configuration is to "continue processing with other rules on each of removable device listed, the policy works pretty well to give the users rights to write to the removable storage devices, however, from the log, it is difficult for me to figure out whether the users is just to read the file from device, or it is action that the user has copied or write the data to the removable storage device. for the logging, I will need to have the log clearly and accurately tell me which file is copied or write to the removalbe storage device, how do I achieve it?
↧
Installing SEP client 12.1.4.1 and connecting to SEPM 12.1.1
I need a solution
Any issues with SEP client 12.1.4.1 connecting to SEPM 12.1.1 ? Also would there be an issue if SEPM was to be upgraded to the lasest ver. after upgrading SEP clients first.
Is SEP 12.1.4a the same as 12.1.4.1 ?
↧
↧
Endpoint Protection Manager
I need a solution
How many Endpoint Protection Managers can you install per license? I have 400 plus systems and I would like to create two Endpoint Protection managers one for my In Scope systems and one for my out of scope systems for PCI compliance.
↧
Frequent Pop-up, Traffic blocked from NTOSKRNL.EXE
I need a solution
Good day! This has been a problem for some months, and I'm hoping someone can help me. It's very annoying. I've searched for solutions numerous times, but what I've found either didn't work or is too complicated for me to implement.
The pop-up is as follows:
Traffic has been blocked from this application: NTOSKRNL.EXE
It appears about every 5 min all day, every day, and is starting to damage my sanity.
I'm using Symantec Endpoint Protection, version 12.1.2015.2015, managed by my company, and my computer is Win 7 SP1.
Any other information needed?
I am tech savvy but no expert, and I would very much appreciate any assistance! Thank you kindly in advance!
↧
Tamper Protection Scan Logs Filling Event Viewer
I need a solution
Currently running SEP 12.1 RU4.
On a few PCs, we are using LogMeIn for remote access.
On those PCs (all of which are XP), the Windows Application Event Viewer is filling up every hour (each scan) with more scan results.
The results point to the logs in C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.4013.4013.105\Data\Logs\AV
Each hour the scan picks up on all of the logs, including the one from the previous hour, so PCs that have had this scan running hourly for months have hundreds of logs, each one being placed into Event Viewer on the hour.
In SEPM we have set "When a commercial remote control application is detected:" to Ignore.
This is an example from Event Viewer:
Scan type: Tamper Protection Scan
Event: Tamper Protection Detection
Security risk detected: C:\PROGRAM FILES\LOGMEIN\X86\LOGMEIN.EXE
File: C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.4013.4013.105\Data\Logs\AV\06062013.Log
Location: C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.4013.4013.105\Data\Logs\AV
Computer: *
User: SYSTEM
Action taken: Leave Alone
Date found: Wednesday, April 16, 2014 2:15:38 PM
Is there any way to prevent the Tamper Protection Scans from picking up on LogMeIn completely?
Thank you for reading.
↧
SEPM SQL Server database sizing guide and calculator
I need a solution
Hi People,
Does anyone here know what is the best suggested SQL Server disk space or LUN sizing ?
because I've been tnotified by my DBA that the database is running out of some disk space hence they do manual log truncation to relieve the disk space.
database sem5 - Could not allocate space for object 'dbo.BINARY_FILE' in database 'sem5' because the 'FG_CONTENT' filegroup is full.
There was 55MB free when observed this morning. But after shrinking 2 log files there was 5.57GB available
Does the manual shrink above causing any issue to the SEPM database ?
Thanks in advance,
↧
↧
Endpoint with Event ID 42 -
I need a solution
We are currently running Endpoint version 12.1.2015.2015 .
We have a few clients which is reporting one entry of event ID 42 error after a an event id 7 which is reporting a successful update of the virus DAT's
Error: Event 42
Auto-Protect Error: Auto-Protect is disabled because registration of the virus databases failed.Application has encountered an error.
For more information, please go to: http://www.symantec.com/techsupp/servlet/ProductMe...
Event 7: New virus definition file loaded. Version:
Does anyone have any idea to get the event 42 to stop?
Regards,
Chanth
↧
virus clean from system
I need a solution
How to remove the virus from system in which no antivirus is available?
How to clean it?
↧
sep upgrade
I need a solution
Which is the latest version for upgrade?
Sep -12.1 ru2
↧
block the site
I need a solution
How can i block and access of any web site through symantec endpoint?
↧
↧
Symantec 12.1 RU5 release date.
I need a solution
Dear All,
Please share the release date of SEPM 12.1 RU5.
Thanks,
Prakash
↧
Script to modify SEP agent to enable application and device control silently
I need a solution
We have rolled out SEP 12 but did not enable application and device control. What is the script that needs to be run on a machine
to get ADC feature installed silently?
p.s We are using Altiris to deploy agents.
1758521
↧
SEPM language
I need a solution
SEPM is showing clients details in hindi language. But My manager has told me to change it in English.
how to do this.
↧