I need a solution
Hi,
is it possible to get an exportable list of all the GUPs in the network?
I was looking in the Report or Monitor section but did not find something at first sight.
Thanks.
0
↧
is there a way to get a list of all GUPs
↧
SEP AWS platform
I need a solution
Hi,
Just wanted to know Does SEP work on AWS platform if we need ANtivirus for our hosted webserver which is on AWS plafrom.
Any help would be appreciable. thanks
0
↧
↧
My digital signed application gets blocked by download insight and Auto-Protect
I need a solution
We are software developement company. We have digitally signed our software with a level 3 certificate.
Even with the digital certificate Symantec EndPoint blocks my software. Right now we whitelist our software based on Hash.
But this is tedious as we make new versions almost every week. So whitelisting takes a lot of operational time.
I don't have this problem if I install or upgrade microsoft products.
My question is How can I approve my software on the same level as microsift products ? Is there a way to whitelist my application baed on digital signature ? so that I only need to do this every 3 years and not every week.
0
↧
Server 2003 64 Bit
I need a solution
Unable to install SEP 12.1.6 version in server 2003 64 Bit.
Uninstalled pervious version with Cleanwipe utility latest one 12.1.
SEP was installed with local Admin account ,space is almost 5 GB free with RAM more than 4 GB.
Could you please help on this.
Regards,
Sumit
0
↧
Exclude applications - file vs. application exception
I need a solution
Hi there,
I've created my exceptions for applications (.exe) based on File Exceptions. Our environment is running SEP 12.1.6 RU6 MP4.
Now I'm asking myself if this correct. Does SEP Client ignore running applications based on File Exceptions e. g. notepad.exe? Or is it necessary to create specific application exceptions?
My problem with application exceptions: Once a file has been changed during an Update the file hash would change, so my application exception doesn't work anymore and I need to start from scratch. This doesn't feel very convenient in large environments.
I'm assuming it's working with File Exceptions, because I can specify if subordinated processes should be excluded as well. But I'm not sure at all. I checked the Admin Guide, but it doesn't clarify this for me.
Thanks for clarifying.
Cheers,
S-L
0
↧
↧
Log viewing by other than creator
I need a solution
I have several systems all running a version of Microsoft Windows (XP standalone, Win7 standalone and Server 2K3 in a domain) that run Symantec Endpoint Protection v12.1.x that I have created a scheduled, monthly full scan.
I am the only privileged user that can view:
- The scheduled scans
- The results from these scans
I need to be able to have at least one other user see both the scans that are already configured and the results of the scans when they are completed.
When this other user logs in, they are a part of the "Administrators/Domain Admins" groups, they can not see any of the scans that I setup or have run previously.
How do I fix this?
Thanks
0
↧
url filtering with SEP 12.16 MP4
I need a solution
Hi Everyone,
Can somebody assist me ?
I want to use url filtering in SEP. My purpose is the block some web site like facebook using SEP.
Waiting for your answers guys,
Best Regards
0
↧
PenDrive Data Recovery
I need a solution
I am using gn Symentic.cloud - EndPoint Protection. NIS.NIS-22.5.4.24 and Symantec. Cloud – Cloud Agent 2.03.71.2618
Once when I inserted my pen drive, Smentec detected virus. Quarantine all the files & folder in the pen drive. Unfortunately my mistake I cleared entry in the View Quarantine
In Windows explore show the pen drive empty. When I check the property of the pen drive, it shows folder & file size properly.
I tried to copy the files to HDD using Xcopy. It copies all the files and folder to HDD. But still I am unable to see the file in HDD.
Can you please help to restore the files & Folders.
Thanks in Advance.
0
↧
SEP for Oracle Database Server
I need a solution
Hello all , Can we install SEP on oracle database , is it supported and what exclusions are we required to put for this Oracle Server.
Appreciate your response.
Thanks
0
↧
↧
SEP support Windows server 2012 R2
I need a solution
I am using SEPM 12.1.RU6 and most of our client servers are running SEP 12.1.2015.2015. To support Windows server 2012 R2, what client version we must use? Can the previous package of SEP 12.1.2015.2015 work on Windows server 2012 R2? Or I have to gernerate package of SEP 12.1.RU6 ?
Is there any problem for SEPM management if we have multipule SEP client version. Thanks
0
↧
SEP points
I need a solution
Hi,
Please help me address below points.
1. Any mobile device or USB Device storage should be blocked in any android with any OS Version. \
2. High end Camera e.g. Cannon/HP should work properly without any USB block beside it has SD Card must block as Storage device.
3. Few 150+5 machines are in productions which are critical should not block any URL goes into cloud for verifications (it has cloud base verification key)
4. Any file or folder should restrict by Mask/extension on network and USB devices. (e.g. only .cab file can be copy from USB to Network and Vice versa)
5. Symantec could have upload/download restriction on network or cloud.
6. If any user attempt to uninstall Symantec, it should get mail alert to admin.
7. Wi-Fi and Bluetooth must be blocked and admin should get that user's attempted mail alert.
8. Instant alert mail on specified mail ids on detection of virus on any of client machine or violation of End point Device policy with details like: Machine Name, Virus Detected, Time stamp of detection, action taken, severity/ Machine Name, device details, username and time stamp of violation of end point device policy.
9. After searching client on console, right click on client should have all options for changing settings e.g. profile, device control settings, move to another group, remove client from console.
10. Connecting mobile device on client, it starts device setup wizard on windows 10, which should not open.
11. Exclude outlook/outlook express program by default for all mail scanning clients to avoid slow mail download
12. Protect proxy settings should be on console.
13. After silent installation of client, it is not giving message for reboot or completion of installation.
14. On “Show Symantec Tray Menu? pause protection must be available even if tray menu is “0?
15. How to disable any notification popup on client machine on update of Symantec definitions.
16. On console, search machine by name or ip does not work.
17. How to update client from internet when disconnected from network. It searches for console server when we press “Update Now?.
18. OTP for pen drive
0
↧
SNAC status is showing disabled by policy
I do not need a solution (just sharing information)
Hello Team,
In SEPM Console the disabled counts are increasing every day. All the features are showing enabled and component is malfunctioning but the SNAC status is showing "diabled by policy" and that's the reason it is increasing the disabled counts.
Can anyone help me out in this prevent these numbers increasing and tell me how to enable the SNAC?
0
↧
Reputation check problem
I need a solution
Hi everyone,
we have Symantec Endpoint Protection Manager 12.1.6 MP4 installed on a Windows server.
All is working fine except for a notification that keeps arriving by e-mail since 10 days.
Theis notification is about one Windows 7 x64 pc that had some network issues for 2-3 days and then recovered.
Since that days, our Endpoint Protection Manager keeps sending this notification to me (the admin of the server):
Reputation check for unproven files failed because of network errors for the last 3 days
I already told SEP through console to acknowledge this problem, but every day I'm receiving the same e-mail notification.
What should I do, except to disable those notifications (that I don't want to disable, indeed)?
Thanks in advance for your time,
Regards
0
↧
↧
Manually compile Auto-Protect Module for Ubuntu 14.04 Failed
I need a solution
Hi,
I am trying to install SEP 12.1.6 on Ubuntu machine, 14.04 and 15.10.
I understand that install.sh that exist in Symantec AV zip file will not auto-compile AP module for the kernels running in my Ubuntu (4.2.0-27-generic and 4.2.0-35-generic for 15.10).
Therefore I tried to manually compile the modules following the information Symantec support gave me and also this:
https://support.symantec.com/en_US/article.TECH132...
Eventually I'm getting an error when trying to run the Build.sh.
log file attached. Also in this URL:
https://onedrive.live.com/redir?resid=302D2D9A5FF21D8!9239&authkey=!AIc1ORH15mqhEe4&ithint=file%2ctxt
Can someone help me with the errors on the log file? cannot tell exactly what to do with it.
Many thanks,
Daniel
0
↧
Symantec Endpoint Protection cannot open because some symantec services are stopped
I need a solution
The error is poping after installing 12.1.6 client on windows 7. Attempted to run repair, Remove client using clean wipe, boot to safe mode and removed symantec client and reinstalled it. I tried manual and push from SEPM, i even cleaned any and every symantec registry completely and reinstalled it. No matter what i do short of rebuilding the desktop, the error message wont go away. I have noticed something is killing the sepmasterservice as soon as i start it. I notice a cpu spike and the service goes down. Evenlog tells me the ccsvchost.exe is faulting application. I don't want to rebuild the machine, because i also have few 2008 r2 servers that are displaying that error message. What else can you guys recommend, i have been working on this issue now for 2 month. Downgrading is not an option, so if there are some symantec guru's out there, please i need some suggestion here. Please if you can help it, refrain from asking, if i rebooted or tried to reinstall. I need some advanced troubleshooting please. I have tried all the obvious troubleshooting. 2 month. I have not seen any resolution online as of yet....
0
↧
Report for SEP versions + computer names
I need a solution
Hi guys,
We're running the latest SEPM and for the past 2 hours i've been trying to pull a report that will not only show me the amount of computers that are running version X, i also need to know the names of these computers. I see that we have about 35 computers that are running the non-6400 version but i need to know the names.
Any idea?
Thanks!
0
↧
SEP
I need a solution
I have a problem where our machines suddenly can't connect from an untrusted network to our VPN. It fails on the DNS lookup of the name of the destination VPN server. If I put in the IP address of the destination VPN server, it works.
While still using the DNS name of the destination VPN server as the target in our Avaya VPN client, when SEP is enabled it fails every time on the lookup. If I right-click on the SEP tray icon and select Disable Symantec Endpoing Protection, it still fails. But, if I run an smc -stop from the command prompt to completely stop SEP, then it works.
Also, if I stop SEP and connect to VPN once, then disconnect, and restart SEP, it will work the second time. I think that's because the IP associated with the target DNS name is cached for a short period of time. If I reboot the machine, I'm back to square one where the machine can't connect again.
In the traffic log, I don't see any blocked outbound DNS requests. I'm not sure what to do here. Which things are turned off when you run smc -stop that would still be running when you select the Disable Symantec Endpoint Protection system tray option? There seems to be a difference and whatever that difference is seems to be stopping the DNS lookups. I don't see any security alerts in any of the logs.
0
↧
↧
SEP client always error in one particular server ?
I need a solution
People,
I'm running Windows Server 2008 R2 as a VM in my production environment. All of them running good with the SEP client since v11 but this one particular VM, always stuck with the SEP client unable to get updates from the SEPM server ?
This is the error message:
Error logged daily:
Log Name: System Source: SRTSP Date: 4/05/2016 8:02:38 PM Event ID: 4 Task Category: None Level: Error Keywords: Classic User: N/A Computer: PRODVC01-VM.domain.com Description: Error loading virus definitions.
Log Name: System Source: Service Control Manager Date: 4/05/2016 8:03:24 PM Event ID: 7026 Task Category: None Level: Error Keywords: Classic User: N/A Computer: PRODVC01-VM.domain.com Description: The following boot-start or system-start driver(s) failed to load: SRTSP
I have make sure that I can ping the SEPM server from the affected VM and also it is on the same subnet hence there is no firewall.
This has been an ongoing issue since I install SEP cleint v11.0.6 and then upgraded to the latest 12.1 MP4.
Any help would be greatly appreciated.
Thanks,
0
↧
Disabling SEP using smc command
I need a solution
Hi,
I need help. We have 250 SEP client installed and whenever we want to troubleshoot something that we think this AV is preventing us to run, we usually use smc -stop ans smc -start to stop and start the service. I use the eicar AV test to test if the SEP is already stopped, but it still quarantines the test file. BTW, the "disable the Symantec Endpoint protection" option is already greyed-out.
What is the best way to disable the SEP client? for troubleshooting purposes. We dont want to uninstall then install it just for the sake of testing an application.
0
↧
Event ID 7201
I need a solution
Hi.
Every day when the live update run i receive 1 warning
Event Type: Warning
Event Source: SEPM
Event Category: Content
Event ID: 7201
Date: 6/5/2016
Time: 1:41:01 πμ
User: N/A
Computer: ANTIVIRUS1
Description:
Info:Content download to the server failed.
Symantec Endpoint Protection Manager could not update Symantec Endpoint Protection Manager Content Catalog 12.1 RU2.
Product:Symantec Endpoint Protection Manager Content Catalog 12.1 RU2
Version:
Language:
Monikers:,{999C2E87-0AB4-F6CD-0051-672E4F7C7C3D}
Sequence:
PublishDate:
Revision:0
Source:Public LiveUpdate Server (Symantec LiveUpdate Server)
Size(in bytes):-1
I had already try the TECH197844 without success.
Any idea??
0
↧