Quantcast
Channel: Symantec Connect - Endpoint Protection - Discussions
Viewing all 10484 articles
Browse latest View live

Virus Defs Not Updating

February 1, 2019, 2:24 pm
$
0
0
I need a solution

My employer uses SEP for all client pcs and I have a laptop which I use at home without any access to the employer network remotely.  I run Live Update manually each time before I do any work on the Internet.  When I ran it today, it had been several days since the last LU run, so it should have updated virus defs but it did not.  When I examine log.lue, I see no virus definition file included in those that were downloaded and processed today.  Other files like CIDS Signatures, Whitelist, etc., were and those 5 updates succeeded.  The version on this Win7 client is 14.0.2415.0200.105.  Seems strange that only the virus defs would not update when the others did.  Scanning back thru log.lue over previous successful updates, in each case I see "Virus R Definitions SDS Win64" listed among the packages downloaded but not today.  At this point, IT is suggesting I bring the laptop in and reinstall SEP.  Any other possible solutions?

0
Search

SEP 14x on Windows 10 2016 LTSB

February 1, 2019, 9:42 am
$
0
0
I need a solution

I have an image using Windwos 10 2016 NTSB.  It is fully updated.  Currently, I have Internet Explorer that is working fine.  I also have Chrome installed (fully updated) and it is working fine.  Problem comes when I try to install SEP.  I first tried installing ver 14.0.23332.0100.   It would begin installing.  After a while, I would receive error stating "This driver cannot be used due to compatibility issues."  It references the Symantec Eraser Control Driver / Symantec Corporation.  I will try to attach a screenshot for the error.  It did complete and stated it neede to reboot.  I rebooted.  I launch Chrome and only thing it displays is a blank page.  Regardless of the website you go to.  Matter of fact, it will display a blank page even going to Chrome settings. 

 Well, based on the error message, I contacted my department that handes the SEP environment, and got ver 14.2.770.000.  I reverted to the snapshot prior to installing SEP.  Again, Chrome is working fine.  I install this version, and it completes.  Tells me I need to reboot.  I launch Chrome and the same result.  Just a blank page.  How can I install SEP on this version of Windows (again, Windows 10 2016 LTSB).  Any help is appreciated.

0

Unable to Migrate SEPM from 12.1.6 M9 to 14.2 MP1

February 1, 2019, 10:19 pm
$
0
0
I need a solution

Hi All,

During Upgradation from SEMP from 12.1.6 MP9 to 14.2. we are getting below error. Could you please help if you know anything about it.

=========================================================================================================

INFO: SemServiceManager> getServiceStatus>> Retrieve status for service SepBridgeSrv
2019-02-01 23:51:35.259 THREAD 22 SEVERE: SemServiceManager> getServiceStatus>> Error code from sc query: 1060
2019-02-01 23:51:35.259 THREAD 22 INFO: SemServiceManager> getServiceStatus>> Retrieve status for service SepBridgeUploaderSrv
2019-02-01 23:51:35.400 THREAD 22 SEVERE: SemServiceManager> getServiceStatus>> Error code from sc query: 1060
2019-02-01 23:51:35.556 THREAD 22 INFO: The service name is invalid.More help is available by typing NET HELPMSG 2185.
2019-02-01 23:51:35.556 THREAD 22 INFO: SemServiceManager> serviceControl>> Executed command - stop semapisrv, process return value = 2
2019-02-01 23:51:35.556 THREAD 22 INFO: SemServiceManager> waitForServiceTermination>> Waiting for service termination: semapisrv
2019-02-01 23:51:35.556 THREAD 22 INFO: SemServiceManager> getServiceStatus>> Retrieve status for service semapisrv
2019-02-01 23:51:35.697 THREAD 22 SEVERE: SemServiceManager> getServiceStatus>> Error code from sc query: 1060
2019-02-01 23:51:35.697 THREAD 22 INFO: SemServiceManager> waitForServiceTermination>> Service is stopped.
2019-02-01 23:51:35.838 THREAD 22 INFO: The Symantec Endpoint Protection Manager service is not started.More help is available by typing NET HELPMSG 3521.
2019-02-01 23:51:35.853 THREAD 22 INFO: SemServiceManager> serviceControl>> Executed command - stop semsrv, process return value = 2
2019-02-01 23:51:35.853 THREAD 22 INFO: SemServiceManager> waitForServiceTermination>> Waiting for service termination: semsrv
2019-02-01 23:51:35.853 THREAD 22 INFO: SemServiceManager> getServiceStatus>> Retrieve status for service semsrv
2019-02-01 23:51:35.978 THREAD 22 INFO: SemServiceManager> getServiceStatus>> The status for semsrv' service is 1
2019-02-01 23:51:35.994 THREAD 22 INFO: SemServiceManager> waitForServiceTermination>> Service is stopped.
2019-02-01 23:51:41.135 THREAD 22 INFO: The Symantec Endpoint Protection Manager Webserver service is stopping..The Symantec Endpoint Protection Manager Webserver service was stopped successfully.

==============================================================================================================

Please find the attachement as well.

0

Rubber Ducky

February 3, 2019, 3:25 am
$
0
0
I need a solution

Hi All,

My client asked me if SEP device control can block the USB Rubber Ducky.

Anyone know it possible ?

Thanks,

0

SEP Change Settings

February 3, 2019, 8:19 am
$
0
0
I need a solution

Hi All,

Can I configure that regular user ( not administrator ) will be able to Configure Settings here ? or only administrators can configure the settings

0

Virtual environnements supported in SEP v 14.x

February 3, 2019, 9:31 am
$
0
0
I need a solution

Greeting community,

Our customer want to implement SEP, all the machines (Windows & Linux) are hosted in Nutanix Acropolis with virtualization solution Nutanix AHV.

Nutanix Acropolis AHV is not shown in supported virtualization solution in RN SEP v 14.2

So, what sould we do so we can implement SEP v14.2 in Nutanix Acropolis.

Your feedback is appreciated.

0

Script blocking

February 4, 2019, 1:29 am
$
0
0
I need a solution

Can we block powershell scripts which contains "gwmi" commands? 

0

doscan doesnt work, what am I doing wrong?

February 4, 2019, 4:51 am
$
0
0
I need a solution

Hi, 

I am running the following command (doscan.exe /scanalldrives ) but instead of scan starting, I am getting a list of doscan command arguments, (see attached screenshot)

am I missing anything? 

0
Search

Creating Firewall Reports for the Mac OS

February 4, 2019, 1:57 pm
$
0
0
I need a solution

I'm currently trying to track events on the firewall for the Mac OS.

I dont want the SEP Firewall to block any of the traffic but to log any events that could have been triggered.

Here is how I've set the Firewall rules:

With that said;

1.) Where can I find the Traffic Log? Is that saved client side or is that also exported to the SEPM

2.) How can I create a report that would show what traffic was docuented by the SEPM Firewall.

3.) What would changing the Serverity do to the rule? I've tried checking on line but I can't find a complete break down of what impact does the Serverity change per level. 

0

Last Connected IP is frequently changing in SEP Properties

February 4, 2019, 3:28 pm
$
0
0
I need a solution

Hi All,

I have 20-30 Windows servers.Their Last connected IP address is frequently changing in SEPM console and actual IP address is also showing in Address column with MAC address.While I checked manually on the servers, all they have Static IP address assigned.

Also i want to know what exact mening of last connnected IP address showing in SEPM Network Properties >

Thanks.

0

Computer Status / Risk Report Export to email in csv

February 4, 2019, 11:22 pm
$
0
0
I need a solution

I it possble to to get export of SEPM--> Monitor --> Computer Status ( Past Month ) and  SEPM--> Monitor --> Risk Logs ( Pastt 24 Hours ) to CSV files at get it on email ? I hope there is some solution to this.

0

Need SQL query for getting the logs from SEP DB

February 5, 2019, 7:07 am
$
0
0
I need a solution

Hi All,

Can some one please help in getting an SQL query for the logs in SEPM.

We used to export the computer status in SEPM from below path: 

Monitors->Logs->Computer Status->View logs

Can we fetch the same from sem5 DB, Any specific location we have to search ?

These are thngs which contain in our logs.

Computer Name
Group Name
Last time status changed
Client Type
Operating System
Insert Date
Time Stamp
Client Version
Policy Version
Policy Serial
Current User
Infected
Antivirus engine On
Last Scan Time
Total disk space
Free disk space
Total memory
Free memory
Server Name

Deployment Status

Please let me know if any way to fetch this from DB, Many thanks in advance.

Antony

0

Free Webinar Feb 13, 2019: Redefining Endpoint Security

February 5, 2019, 9:51 am
$
0
0
I do not need a solution (just sharing information)

Just raising awareness: 

Redefining Endpoint Security - How to Better Secure the Endpoint
https://www.symantec.com/about/webcasts

Symantec Unites Superior Protection, Automation and Artificial Intelligence in its most Advanced Endpoint Security Solutions.
As attackers become more sophisticated, advanced protection and hardening are necessary for added layers of security.
Join our webinar for first-hand insights on the newest cloud-delivered endpoint security solutions and hear from Joakim Liallias, Symantec and special guest speakers Sundeep Vijeswarapu from PayPal and top industry analyst Fernando Montenegro, 451 Research as they discuss:
• How to gain a better understanding about the trends that are driving the need for a more comprehensive endpoint security approach.
• How PayPal is using Symantec Endpoint Security to protect their endpoints.
• How Symantec is redefining endpoint security with its new complete cloud-delivered endpoint defense:
- Introducing never seen before innovation to deliver best-in-class prevention
- Hardening Detection and Response to help customers achieve superior threat prevention,
- Quicker identification of attackers and more tightly integrated technology and human expertise lead to better response and faster remediation
- Security professionals and IT teams are strapped for time – streamlined management and automation will reduce significant burden
Don't miss this great opportunity to get the latest information on taking steps towards simplifying Endpoint Security for your organization
0

SEP blocks ping on DC

February 5, 2019, 11:23 am
$
0
0
I need a solution

Hello,

Im using ping (via nagios) to monitor connectivity with servers. 

Just created a rule to allow icmp from remote host.
I got logs of allowed traffic that show its working. But smth is wrong with SEP client on domain controlers.

After a couple minuts I dont recive any log for that rule, for about 6-10min. When i check server connectivity monitoring I lose a lot of packages on ping from remote host, in 2h its about 88% 

After I removed SEP client, there is no problem with losing packages on ping anymore.

Any idea what can I do with that?

SEP 14.2

0

delete sep from SEPm

February 5, 2019, 10:14 pm
$
0
0
I need a solution

Hi,

Is there an option to uninstall sep client from the SEPm console ?

0
Search

Non-persistent VDIs not removed from the SEPM automatically

February 6, 2019, 12:18 am

Auto Protect Notification

February 6, 2019, 1:35 am
$
0
0
I need a solution

Hi All,

I have an issue with Auto Protect Notificaiton,.

when the sep alert about risk, he gives to the user the option under Other Action to exclude and Undo Action.

I want to disable the Other Action to the user,

0

Commands sent from web console to Mac computer are not performed

February 5, 2019, 8:17 pm
$
0
0
I need a solution

Hi,

Hoping someone may be able to help me.

I am evaluating SEP 15 with Symantec Cyber Defense Manager to manage Mac computers from console loacated at https://securitycloud.symantec.com

Commands sent from the console to Mac computers are not performed (such as LiveUpdate, Restart, Scan) - Are these actions upport on Mac clients?

The client version installed is SEP 14.2 Build 171 Layout ESD and this was installed from the package creator downloaded from the console.

Many thanks.

0

SEP - CentOS Linux on VPS

February 6, 2019, 2:06 am
$
0
0
I need a solution

Will SEP work on a VPS with CentOS and Cpanel and protect the server? Has someone used it in the environment for a basic mail/website hosting server?

0

open ports needed

February 6, 2019, 4:48 am
$
0
0
I need a solution

Hello everyone,

I have a Server 2012 with Endpoint protection manager (SEPM 14.2) in AWS cloud. I need to be able to manage MAC machines and update definitions from SEPM. I believe I need the following port open to communicate:

8014, 443

In addition to the port above, I found the article below. I am assuming the ports mentioned will need to be added in the MAC policy for the SEP client and the same ports should be open on the Server that’s hosted in AWS. Am I missing anything or wrong? Please let me know. Thank you

https://support.symantec.com/en_US/article.TECH250...

0
1549462732
Viewing all 10484 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>