Quantcast
Channel: Symantec Connect - Endpoint Protection - Discussions
Viewing all 10484 articles
Browse latest View live

SEP 14.2 Not Downloading Virus and Spyware defs from internal LUA

June 20, 2019, 2:04 am
$
0
0
I need a solution

So I'm at a loss here. We've recently upgraded a test environment from 12.1 to 14.2 RU1. Upgrade went fine from what we can see. We use an internal Live Update Administrator that the managers pull their updates from, and have for year with no issues. I've have gone through and added in the new Symantec 14, 14.1 and 14.2 packages to download the SEP Manager 32 bit and 64bit Virus and Spyware definitons, along with the new SDS versions of the updates.

They are also set to be distributed to our distribution centres fine. When the live update task on our managers starts, we can see almost all of our definitions downloading correctly, IPS, SDS and even the legacy 12.1.6 legacy updates we still use for legacy devices. However, the regular Virus and Spyware defintions Win32/64 14.2 RU1 are not showing as downloaded. I've even tried downloading the 14.0 versions of the files as this has been noted in the past as being a requirment for some.

Does anyone know what I need to download to check this off? The manager dashboard is showing that our current Windows Definitons is still at the 18th, the day of the upgrade whilst it know the current version from Symantec

0
Search

EICAR Excel is not getting while unzip

June 20, 2019, 5:16 am
$
0
0
I need a solution

HI,

We have created a EICAR excel and EICAR pdf file and zipped both file in one. Now when we unzip this file on computer, SEP Client is getting only EICAR PDF file and EICAR excel file is not getting detected. But we are double clicking on excel EICAR file, then it is getting detected.

Why SEP client is not detecting EICAR excel during unzip like PDF file?

Regards

KK

0

WS.Reputation.1 dispute

June 20, 2019, 10:09 am

Moving Clients Per IP Subnet

June 20, 2019, 2:03 pm
$
0
0
I need a solution

Good day,

My name is Keith and Iam with the City of Memphis. I was asked to move a number of clients from the default group (over 1000) to their respective groups via the  IP subnet. After researching the issue, The symantec forum said that a case would need to be opened with symantec to obtain a script that will allow the moving of clients based on IP Subnet.

Has anyone run into this issue? 

If so, Is opening a case the solution?

Thank you very much for your time.

Keith P.

Securtiy Analyst City of Memphis

0

SEP 14.x use over 30% CPU usage

June 20, 2019, 9:52 pm
$
0
0
I need a solution

We noticed Symantec Service Framework use more than 30% CPU usage. Is this normal?

Any reason it use a lot resources eventhough no scanning in progress ?

Hope the community can advise.

0

Endpoint 14.2 Hybrid

June 21, 2019, 5:35 am
$
0
0
I need a solution

Hi All,

If I've enrolled my SEPm.

Now I want to know if is there an option to configure that the clients ( sep ) will update policy from the Cloud ? 

Can I change policy and if there client is out of office without connectionto the SEPm server, can he check for new policy from the cloud ?!

Thanks !

0
1561127748

could not block to write registry by application control

June 20, 2019, 11:07 pm
$
0
0
I need a solution

Hi.

I made a application control policy.

I want block to write this registry value.

registry key : HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\

value : NV HostName

It is registry about Computer Name.

When it blocked to write if I change the value manually.

But, When I change it on My Computer > Property 

the registry value is change.

Why?

0

14.2 Endpoint Protection clients fail to update through GUP

June 21, 2019, 9:59 am
$
0
0
I need a solution

Hi,

I have a costumer running SEP 14.2 that is facing the issue when updating clients through a GUP, basically, it only works once I restart the SEP service or reboot the computer as described in this article from Symantec (https://support.symantec.com/us/en/article.tech255013.html).

I notice the article was updated around one week ago, but there isn’t a solution yet for it. I would like if there is any fix available for this that wasn’t posted on the article, or if the SEPM upgrade to the latest version (14.2 RU1) fixes this problem. I really don’t want to go through the whole process of upgrading everything and then the issue persists.

Many thanks.

0
Search

How to evaluate endpoint-threat-defense-for-active-directory

June 21, 2019, 10:22 am

Clear Corrupt SEPM 14.2 Corruption definitions

June 22, 2019, 7:32 am
$
0
0
I need a solution

Hello everyone.. Can anyone please share with me the steps to clear corrupt definations on SEPM like what folder and files I need to delete.

Your support is appreciated. Thanks

0

need to restart sql table

June 23, 2019, 7:07 am
$
0
0
I need a solution

hey

where i can find in the sepm database the table that hold the name of computers that need to be restart ?

BS.

shahar

0

Symantec Endpoint protection Configuration with Powershell

June 24, 2019, 1:07 am
$
0
0
I need a solution

Hi,

I am able to install SEPM with Powershell commands and tried finding commands for SEPM configuration but No luck.

Could you help me with Symantec Endpoint protection Configuration Powershell commands?

Thanks

0

SEP client has showing action as "Left Alone" in Endpoint

June 24, 2019, 4:18 am
$
0
0
I need a solution

Hi,

I have a query regarding "Left Alone" action of SEP Client in one of the endpoint.

In one of the endpoint user connected a removable drive and SEP identified the file as "Packed.Dromedan!lnk"

I can see in the Risk log of SEP the source is "Auto Protect" and SEP client's Actual Action is showing as "Left Alone".

Can anyone help me to understand that what could be the reason for SEP has left alone the file on endpoint even after SEP identified the file as "Packed.Dromedan!lnk"??

is there any setting that needs to be changed in SEP Manager or in SEP Client??

Quick response will be appreciated.

Thanks & Regards,

  Tejas Shardule

0

SEP 14.2 on RHEL 8, is it already supported?

June 24, 2019, 1:48 pm
$
0
0
I do not need a solution (just sharing information)

Hi,

is there an estimated release date for a SEP 14.2 version compatible with RHEL 8?

Regards,

0

Client push error.

June 25, 2019, 12:14 am
$
0
0
I need a solution

Unable to client push SEP on other machines. it is possible when i take RDP of the machine and copy the setup and install the endpoint protection.

machine is already in domain. But not able to client push SEP. The error is like "Failed to download and/or install the remote Installation Service. A logon request contained an invalid type value."

Error: -2   ApiError: 0  Message: Failed to download and/or install the remote Installation Service. A logon request contained an invalid logon type value.

0
Search

upgrading database schema fails

June 25, 2019, 12:20 am
$
0
0
I need a solution

Upgrading database schema fails with an error.

0

IPS definitions not updating

June 25, 2019, 6:06 am
$
0
0
I need a solution

Hi All , i have a issue with the IPS definitions that are not updated.

We have migrated from 14.0 to 14.2 and clients to 3332.

0

Autoprotect malfunctioning

June 25, 2019, 8:40 am
$
0
0
I need a solution

Hi Team,

Unable to compile kerenl, please advise

[root@bbcplzb01 ap-kernelmodule-14.2.1031-0100]# ./build.sh
Tue Jun 25 16:02:50 IST 2019: starting to build kernel modules of SEP for Linux
Kernel release not specified. Build kernel modules for current kernel version 3.10.0-957.el7.x86_64.debug
Kernel source directory not specified. Use default /lib/modules/3.10.0-957.el7.x86_64.debug/build
/tmp/avinst/src/ap-kernelmodule-14.2.1031-0100/symev /tmp/avinst/src/ap-kernelmodule-14.2.1031-0100
rm -f *.o *.ko *.mod.c .*.cmd modules.order Module.symvers* Module.markers Modules.symvers *.ko.unsigned Makefile.xen
rm -rf .tmp_versions* .build-*
/tmp/avinst/src/ap-kernelmodule-14.2.1031-0100
/tmp/avinst/src/ap-kernelmodule-14.2.1031-0100/symap /tmp/avinst/src/ap-kernelmodule-14.2.1031-0100
rm -f *.o *.ko *.mod.c .*.cmd modules.order Module.symvers* Module.markers Modules.symvers *.ko.unsigned Makefile.xen symap_test
rm -rf ../symev/.tmp_versions* .build-*
/tmp/avinst/src/ap-kernelmodule-14.2.1031-0100
./build.sh: line 220: lsb_release: command not found
RedHat/CentOS release 7.3 or later detected
/tmp/avinst/src/ap-kernelmodule-14.2.1031-0100/symev /tmp/avinst/src/ap-kernelmodule-14.2.1031-0100
make -C /lib/modules/3.10.0-957.el7.x86_64.debug/build M=/tmp/avinst/src/ap-kernelmodule-14.2.1031-0100/symev MODVERDIR=/tmp/avinst/src/ap-kernelmodule-14.2.1031-0100/symev/.tmp_versions-custom-3.10.0-957.el7.debug-x86_64 modules
make[1]: Entering directory `/usr/src/kernels/3.10.0-957.el7.x86_64.debug'
arch/x86/Makefile:96: stack-protector enabled but compiler support broken
arch/x86/Makefile:166: *** CONFIG_RETPOLINE=y, but not supported by the compiler. Compiler update recommended.. Stop.
make[1]: Leaving directory `/usr/src/kernels/3.10.0-957.el7.x86_64.debug'
make: *** [custom] Error 2
/tmp/avinst/src/ap-kernelmodule-14.2.1031-0100

Tue Jun 25 16:02:51 IST 2019: Build failed
[root@bbcplzb01 ap-kernelmodule-14.2.1031-0100]#

0

Configure SEPM with public NAT and still able to connect to GUP.

June 25, 2019, 10:12 am
$
0
0
I need a solution

Hello,

We have configure SEPM to use a Public IP to external communications with SEP clients. All works great as expected.

However, we still need SEP clients to be able to connect to a Local GUP, regardless of the Public IP communication with SEPM.

Any ideas how to accomplish this? Will we need to publish the GUP as well as the SEPM?

0

scheduled scanning takes long time

June 25, 2019, 11:25 am
$
0
0
I need a solution

 Hi Team,

scheduled scanning takes long time  on windows 2008 servers, we have best application performance option enabled, and scan until finish, tried to add some application exceptions but still taking long time. Any suggessions please.

0
Viewing all 10484 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>