I need a solution
If I was to delete old clients out of SEPM, but accidently delete clients that should still be active, will they add themselves back in? Or by deleting them out of SEPM does it sever the connection?
0
↧
Removal of old clients
↧
Lan Enforcer not connected to Policy Manager & reflected Offline at SEPM
I need a solution
Hi All,
I am cuurrently runnning SEPM v12.1.4 and my Lan Enforcer is also on v12.1.4 .
I need to change Policy Manager IP from the original SEPM to another SEPM of Servers. When i run configure spm ip <ipaddress> group <group> HTTPS <port:8014> keyhash <kcs>, then reboot my Enforcer and see it's coming from my SEPM on Servers tab after, and after that i run "show status" command, it reflected
Policy Manager Connected : NO
Enforcer Status :Online
Although the Enforcer appeared on my SEPM's Servers tab, it reflected "Offline".
On the Enforcer CLI I entered "capture start",I didn't see any response from the SEPM.
Both my Lan Enforcer and SEPM are able to ping each other, and I have tried reboting my Lan Enforcer. Seems like their's status still the same.
Please help!
Thanks!
0
↧
↧
Scalixpro sold me product..scam?
I do not need a solution (just sharing information)
A company called Scalixpro sold me my current Symantec Endpoint Protection. I cannot get in touch with them. Is this a scam company? Thank you.
0
↧
Offsite machine not connected to SEPM?
I need a solution
I've got two users at a conference on the other side of the planet. I know the laptops are on. I can see them with two other pieces of software for updates and software. The two users have been gone for over 30 days, but the laptops do connect to the internet. Both are 12.1.6_MP6, whatever the latest one before ver 14 is. Ditto for my SEPM server.
The other updating software sees the two laptops and tells me their ip addresses are 192.xxx.xxx.xxx. I'm thinking this has something to do with my question.
I noticed both machines are not in my SEPM client list at all anymore. The default to purge them is 30 days, so that probably happened. Except the laptops have been online.
Why aren't these connecting/still listed in my SEPM server? I thought if they connected to the internet, they would pull updates and stay connected to SEPM. That must not be happening. For sure the users have internet access though. But it is in a different country.
Is it something with the local 192 ip address/router there? A port that SEPM uses being blocked? If I had to guess, I'd guess it's a general consumer level router.
Or would there be something with certain countries blocking ports or aspects of the internet somehow?
I thought the users were travelling around a bit in this other country, so if it was one location's router, I don't think that would be it.
What would it take to produce this effect?
I'm assuming if the machines aren't listed in SEPM, they probably aren't getting updates either.
User doesn't have admin rights. I don't see SEP being uninstalled on these machines. I don't see the users tampering with the machines or hard drives either. And I'm thinking when they return, I can check, but the laptops will be back here. They'll connect and see recognized by SEPM again.
0
↧
Removal of old clients
I need a solution
If I was to delete old clients out of SEPM, but accidently delete clients that should still be active, will they add themselves back in? Or by deleting them out of SEPM does it sever the connection?
0
↧
↧
SEPM 12.1.6 Blocks Biomterics Scanners
I need a solution
I have SEPM 12.1.6 installed on a Dell PC. I have successfully installed all the packages on all endpoint clients, except the very same PC that has the SEP manager.
Currently, I have unmanaged SEP installed on the unit. This is because everytime I install the "managed" version (prior to that is the uninstallation of the "unmanaged", of course) , I could not see any of our biometric scanner as "Connected" anymore. I am using AccessManager Professional. It is a biometric management system containing fingerprint scanning devices across different entry points of the building.
To cut it short the said unit is a SEP manager server and is also the Access Manager server. And I need an endpoint protection for this unit. I have tried the following:
- Delete "Biometrics" class ID from the blocked devices, under Application & Devices Control Policy.
- Temporarily "Disable Symantec Protection" via the system tray icon.
- Turned Off inheritance of all policies, retained the default "Virus and Spyware Protection policy"& "Live Update Policy" (since I think they were the essence of the antivirus)
- Just tried to turn off ALL policies including the "Virus and Spyware Protection policy"& "Live Update Policy" (just in case, it might tell me which is really not allowing my connection to show up.
But still, I had no luck at all. It only works when I return back to the "Unmanaged" version. :(
I hope some people could help me. I am entirely new to this and I cannot be on the unmanaged version forever since I'm in a company and we need to abide by rules & policies too...
0
↧
Still not getting all the SEPM alerts
I need a solution
I popped in to ask another question, but as long as I'm here, I'll ask this too. This isn't a huge priority though.
I'm still not getting all my SEPM alerts. I get emails about viruses. Weekly reports and client change notification emails aren't coming through or aren't being sent.
A year or two ago I tried switching the weekly reports (all emails) to text only so no formatting would be caught by my organization's Exchange server restrictions. The simpler, the better for that. Just checked -- The weekly digest email is text, but the attachment is an mht file which is blocked by my organization. Those apparently don't even get sent to me though. I have a generic email account set up outside my org to receive those so I can actually open them and read them.
I'm looking through the main email account associated with my SEPM server. It looks like my org's Exchange system is rejecting emails since the attachment type is blocked. Since the original email is coming from the SEPM server, what I'm seeing in this general SEPM email account are rejection notices from my Exchange system. This is one for sure "Informational: Symantec Endpoint Protection Computer List Changed." Here's another "OLD VIRUS DEFINITIONS" "Scheduled Report: Executive Weekly Summary Rerport" too gets rejected. All I've got in the main email for SEPM are the subjet and some email header info.
I thought switching everything on SEPM to text would solve this, but it hasn't.
Any ideas?
I'm going to see if the Exchange people can create some kind of exception for SEPM emails. It's a little too strict.
0
↧
2 Firewalls
I need a solution
Hi all! We have a Fortinet Firewall in place. Is it neccessary to have the Symantec Firewall on as well?
0
↧
Renewing license in SEPM
I need a solution
Hi
I'm having some difficulties figuring out which method to choose when I update my license.
Case is that I have a license that expire the 29th of January 2017, and SEPM is asking for renewal - now I got a new license file and can choose Activate a new or Renew an existing license, this new file have a start date the 29th of January 2017 and expires the 29th of January 2018.
Option one:Renew an existing license.
Since my SEPM specifically is asking for a renewal, I expect this is what I am supposed to do? But then I read how it works and it seems it will delete my current license file when I do this, meaning I have to manually switch the license file on sunday the 29th of January to be sure that I am having an active license all the time?
Option two:Activate a new license.
I've actually done this to one of my SEPM servers, it leaves the old licensfile intact and to me it looks good and in the license overveiw I have my old licence file that expire 29th of January 2017 and the new that starts the 29th of January 2017 - But when I click "Home" my license status is still in need of attention complaining that my license expire soon... Is the new license working or not, will it take over on the 29th or do I need to keep an eye on that and do it manually on the day?
Regards
Morten Elmegård
0
↧
↧
System Lockdown Application Whitelist Not Working
I need a solution
We had SEPM 12.1 installed. I created a file fingerprint list using the checksum.exe tool for every program on my "C" drive. I applied the rule to two other identical laptops, running Windows 10, in a test group in the logging mode. It does not work. Every process, dll, exe, etc. on all three computers shows on the exception list. I added to the fingerprint list using checksum.exe on the other two laptops. Same problem. I upgraded to version 14. Same problem. I tried this on two servers running 2008 R2. Same problem. I called support - no help. Does anyone know how to make this work?
0
↧
SEP
I need a solution
Hi SEP experts,
Could any one help me with below queries,
1 . Windows XP professional client with Symantec 12.1.6 & 11.7 can get a support from Symantec management 14 console ?
2. what is the Expiry date of Symantec Endpoint support 12.1.6 client & server ?
3. Linux Susi Enterprises 12 desktop sp1 support release date ?
appreicate quick response.
0
↧
GUP selection not working after upgrade to 14
I need a solution
Hi,
I setup a test environment to test the functionality of the new GUP system with subnet mask option.
I got 1 manager, 5 gup's and 5 clients all in different subnets, this setup in the liveupdate policy.
As a test I upgraded 1 gup and 1 client to version 14.
- It seems that v12.1 clients ignore the provided subnetmask provided by the manager, only the v14 client understood.
- A v14 gup doesn't help with providing the subnetmask for v12.1 clients
- It seems that the v14 client could download from the v12.1 gup.
This would mean we should keep the 6000 gup entries for every network untill every pre-14 client have been upgraded ...
I hope there is a better solution so we can get those 6000 entries to 47 which is possible with the subnetmask option.
Thanks in advance!
0
↧
SEP Clients not appearing as online in SEPM console when in imported AD group
I do not need a solution (just sharing information)
I am having an issue where my my clients are only appearing as online when they are in a SEP created group.
I have imported the AD structure with all the computers in to SEPM.
When i view the computers in SEPM from the AD group they all apear as offline, but when i copy them in to a New Created SEPM group outside of the AD structure they appear as online....
I have an SEPM AD group with GUPs which are appearing as online as expected, so this issue only appears to be affecting Desktop clients.
Any explination as to why this is happening and how this can be resolved?
Thanks.
0
↧
↧
Symantec Endpoint protection Manger java won't load home graphs
I need a solution
When opening up SEPM I am unable to see the graphs displayed on my home page to show reports of Virus Definitions etc. I have tried uninstalling java and using just Java v7 u80 and that did not change the results and I tried upgrading to Java 8 u111 and still the same results. I added the SEPM address to my java trusted sites in IE and Java security exceptions. The weird thing is if I go to my monitors summary page all my graphs will load properly. Below are the screen shots that I was able to take.
0
↧
SEP 14 Windows OS Support
I need a solution
For SEP 14, will this support Win7 32-bit OS or is it just the SEPM that cannot run on SERVER 32-bit architechture?
Will it support legacy servers that are running anything older than server 2008?
I believe that Win7 32 bit is supported by Microsoft until 2020 so I'm not sure why Symantec would end support for this OS but, again the information out there is a bit confusing.
I'm hoping to get a clear understanding of this
0
↧
Symantec Endpoint Protection Number of Licences
I need a solution
We've got 15 PCs on our Network, and are thinking of using Symantec Endpoint Protection Antivirus. Do we need to purchase a seperate license for each PC, or only a single license, and then push install the Symantec Client to each PC on the Network?
I'm a little confused here. Could you help?
Thanks,
0
↧
Downgrade SEPM 12.1.6 to SEPM 12.1.4
I need a solution
I need to downgrade SEPM 12.1.6 to SEPM 12.1.4 on a server but when I go through the licensing portal and choose get software, it only allows me to download the installer for 12.1.6. Where can I get the installer for 12.1.4?
0
↧
↧
Citrix servers show offline
I need a solution
Hi all,
I'm sure you've come across this before but I'm running SEPM 12.1.6 and i have clients installed on citrix servers
Each time a citrix server is rebooted the client shows as offline in SEPM but also a duplicate entry shows as online.
This is bit of a nightmare when it comes to our daily reporting as each time i have a large number of citrix servers showing offline. In terms of stats this does not look good.
I'm shortly upgrading to version 14 but haven't read any release notes to suggest this issue is resolved after upgrading.
I have also heard of some users setting up a script to kill off any offline servers if they're reporting offline after a certain amount of time but i've only seen this where if removes all reported offline servers rather than being able to set this script to run on certain folders/subfolders etc.
Any advice would be much appreciated.
If you require more info please let me know.
0
↧
Endpoint Firewall blocks RDP over VPN
I do not need a solution (just sharing information)
FYI all,
The default SEP 12.1 firewall rules do not allow RDP over MS VPN. It is a simple fix:
Add a rule to allow VPN connections and port 3389 through the firewall for the affected subnets. Do add the matching block all rule following every allow.
What you Do Not Do is contact Symantec Support; especially if your company is a contracted service provider. You will run up a bill for your client for no support. We did call for help, and we emailed Symantec support our firewall .dat file for their review before the call.
Symantec spent 2 hours of our tech time and did not resolve the cause.
We maintain records and metrics and regularily review our suppliers capability. I see that Bitdefender Gravity and Kaspersky have received top honors lately.
Just sayin'.
Regards,
Mac
0
↧
SEP 12.1.6 MP6 install error on Windows Server 2016
I need a solution
Hello
Cannot install SEP Client 12.1.7061.6600 on Windows Server 2016 through Remote Push with the SEPM.
The installation always rolls back with the error:
The bhdrvx64 service failed to start due to the following error: The request is not supported.
The only way was a manual installation of an unmanaged client and then import the Communication Settings.
But I need a solution for a push or unattended installation.
Any idea?
0
↧