Quantcast
Channel: Symantec Connect - Products - Discussions
Viewing all 12029 articles
Browse latest View live

Maximum number of clients that can be installed by Push Deployment Wizard ( Standalone Utility) at a single time

January 20, 2016, 2:00 am
$
0
0
I need a solution

Hello everyone. Version of SEPM is 12.1.6 MP3 . I need to know that is there any theoratical limit on the number of maximum clients that can be pushed at a single time when using the Push Deployment wizard ( standalone utility) that is found in the tools folder in SEPM software. By default the value is set to 10 for the maximum number of concurrent deployment. I need to know are there some limitation in real world or in practically when we are pushing the packages and increases the value to a higher number i.e 40 - 50 does it fails ?

As far as I remember in the previous version  of SEPM I read various forum posts where users were having issues when they increase this default value to a higher number then the installation would fail. I dont know if it is true with the latest version of SEPM or not.

Would appreciate your feedback and confirmation on this. Thanks 

0
Search

Trying to Understand GUP Precedence in this way of Configuration

January 20, 2016, 3:23 am
$
0
0
I need a solution

Hi Guys , I know how GUP works and what are the diffrent types and the mehacinism it uses to do the download and how we can configure it. However there is a particular scenerio I am trying to understand as how thing will work exactly in such kind of configuration . Would appreciate your expert opinions and suggestion in such scenerio.

Group A contains the following subnets 192.168.1.0 -x.x.3.0 , 10.1.1.1.0 - x.x.3.0 . Have the following options enabled for this group ( Multiple GUP= 192.168.1.1, 10.1.1.1)

Group B contains the following subnets 192.168.9.0 - x.x.11.0 , 10.9.9.0 - x.x.11.0 . Having the following options enabled for this group ( Multiple GUP= 192.168.9.1 and 10.9.9.9.1 )

Explicit Group mappings are like this  :-  

Group A

Local Subnet        Explicit GUP

192.168.2.0          192.168.1.1

192.168.3.0          192.168.1.1

10.1.2.0                10.1.1.1

10.1.3.0                10.1.1.1

192.168.2.0          192.168.9.1

192.168.3.0          192.168.9.1

10.1.2.0                10.9.9.1

10.1.3.0                10.9.9.1

Group B

Local Subnet        Explicit GUP

192.168.10.0          192.168.9.1

192.168.11.0          192.168.9.1

10.9.10.0                10.9.9.1

10.9.11.0                10.9.9.1

192.168.10.0          192.168.1.1

192.168.11.0          192.168.1.1

10.9.10.0                10.1.1.1

10.9.11.0                10.1.1.1

Now since each local subnet dont have any multiple GUP in their own local subnet so that will be using GUP mappings to obtain content definations . 

Now as you can see that each subnet has two explict GUP mapping each ? Now what would be the precedence for the local subnet to pickup explict GUP since for each subnet we have two explicit GUP mappings ? 

Would it pick the explicit GUP in the order it is defined ( match the top entry) or the Explicit GUP that is defined first and ignore the below entry for the same local subnet and explicit GUP mapping entry? and in case if the first explicit GUP is not reachable it will try the second for same local subnet ( Failover)

What would be the logic here ?

Thanks

0

SEPM computer status log shows most of the clients Sequence number as 0 (Not Blank)

January 20, 2016, 5:56 am
$
0
0
I need a solution

Hi All,

In our environment if I fetch Computer status log it shows nearly 50% of clients sequence number as 0.But all the clients having latest definition.

Note: It displays 0(Zero), not blank.

SEPM Server version - 12.1 RU6 MP2

Clients - 12.1 RU6 MP2

Thank You.

0

HI Policy - Registry Value w/ String Value

January 20, 2016, 10:19 am
$
0
0
I need a solution

I'm creating a rule in HI for SEP 12.1.6 MP3 so that IF a registry key exists AND NOT a registry value with a string value then it runs a program and reports a FAIL.  However all are reporting a FAIL when I know that they have already run the command now the registry value with the string value does exist.  In looking at one of these test nodes I can also see that, whereas the policy is set to check every 2 minutes, it has not logged anything in the client management>security log since yesterday at 4 PM EST.  Below is the screen shot of the rule:

Snap 2016-01-20 at 12.54.58.png

0

need advice to remove Symantec Endpoint Protection 9

January 20, 2016, 12:07 pm
$
0
0
I need a solution

Operating system is Windows 10. Have tried Norton removal tool and CleanWipe with no success.

Was not able to remove it from the control panel but another program has taken care of that. However when I try to install the new virusprogram it says there is still SEP9 files that needs to be removed.

So I guess I have to manually remove it?

0

Host integrity policy check - SEP 12.1 RU6 MP3

January 20, 2016, 4:26 pm
$
0
0
I need a solution

Hi,

Need help with below queries:

1. Is HI policy designed only for system with SEP client on them?

2. If yes to 1, what is the purpose of having a condition to check for any AV present on the system?

3. If No to 1, where in HI policy can i define the network/IP range where it can scan for systems with NO AV present on them? Note: I do not want to use unmanaged detector, but expect HI to detect a system without AV, from defined network range, and take necessary actions as tailored in the HI policy.

4. Is there a complete guide to HI policy for SEP 12 RU6MP3 version?

Thank You.

Regards,

Manish Gupta.

0

SEPM and SEP version

January 20, 2016, 7:53 pm
$
0
0
I need a solution

Hi,

  • SEPM 12.1.4104.4130
  • SEP 12.1.6608.6300.105 (12.1 RU6 MP3)

Can SEPM version compatible with SEP version ?

Thanks

0

SEP client update package criteria

January 21, 2016, 12:46 am
$
0
0
I need a solution

Hi 

My problem abouth SEP manager update criteria ( if the client has been offline more than 15 days, it will download a full SEP 12 Virus definaiton file this file around 400 MB  we have many user like this. Same user can't download full package ang giving the eror for update status.

I want to learn Update criterrias SEPM 

When need user full package? How it is the change tis settings.

Thanks greatly!

0
Search

Discrepancy of number of total clients

January 21, 2016, 4:27 am
$
0
0
I need a solution

Hi all,

I wonder why is there a huge discrepancy in number of total clients in 12.1.6 MP3 when u look at home / endpoint status and

when u look at report Symantec E.P Product version. Here are screenshots of both with discrepancy of 65 clients ?

sym2.JPGsym1.JPG

Anyone have same situation ?

0

Can't connect to Symantec LUA from Chrome

January 21, 2016, 7:54 am
$
0
0
I need a solution

Hi, 

I have a problem to connect to the LUA from Chrome or Firefox, I'm getting the following error (Chrome)

Server has a weak ephemeral Diffie-Hellman public key

ERR_SSL_WEAK_SERVER_EPHEMERAL_DH_KEY

I know that it is happening because the server is trying to set up a secure connection but, due to a disastrous misconfiguration, the connection wouldn't be secure at all.

The question is: How do i fix it? How do I change the SSL/TLS Diffie-Hellman Modulus to 2048 Bits?

Thanks in advance

0

Application and Device Control

January 21, 2016, 10:25 am
$
0
0
I need a solution

How would I block all usb access and still allow iphones to Synch along HID devices such as printers keyboard etc. is this a possibility?

I understand that we can use application control to allow read only access and then phones would Synch. But we want to BLOCK USB Thumbdrives and Hard drives, but still allow HID devices.

0

upgrading Symantec 12.15 to 12.1.6 error

January 21, 2016, 10:58 am
$
0
0
I need a solution

 I  presently   have a  multiple  server topology  replicating  to each other  over  satellite  connection.  I have  decided  to upgrade  one  of  the small site server from 12.1.5 to 12.16.  After i have  launched  the  executable ,  i got the  above error  message  capture in the  screenshot.  The error message  was also  link to an  existing  article  https://support.symantec.com/en_US/article.TECH228988.html  I  read   through  the  article  and  went to the  local  group policy  setting  for  log as  service.  The  two default  Symantec  users were  enact .  NT SERVICE\semsrv

NT SERVICE\semwebsrv

 I  later  restarted the sever and  re-launched  the setup  file. I  was  given the  option  to  re-configured  management server.  After the  reconfiguration  of the server, i finally  log on the  console  and  saw that the  new version  was 12.1.6.  I couldn't see  the  new client  packages  which  was very surprising  to  me. I  manually  imported  the  *.info file  in  order to  get the  package.

I am  about  to upgrade the   centralized servers   but i want  to avoid  the  above error  from  disrupting   the  upgrade process.  Do  i need to installed  new release on the 12.1.5  before  upgrading  to 12.1.6?   I  also want to  upgrade my existing  client  easily . Below  is  capture  of the  error message.

 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

2016-01-20 12:08:41.254 THREAD 1 SEVERE: ================== Server Environment ===================

2016-01-20 12:08:41.258 THREAD 1 SEVERE: os.name = Windows Server 2008 R2

2016-01-20 12:08:41.258 THREAD 1 SEVERE: os.version = 6.1

2016-01-20 12:08:41.258 THREAD 1 SEVERE: os.arch = x64

2016-01-20 12:08:41.258 THREAD 1 SEVERE: java.version = 1.7.0_80

2016-01-20 12:08:41.258 THREAD 1 SEVERE: java.vendor = Oracle Corporation

2016-01-20 12:08:41.258 THREAD 1 SEVERE: java.vm.name = Java HotSpot(TM) Client VM

2016-01-20 12:08:41.259 THREAD 1 SEVERE: java.vm.version = 24.80-b11

2016-01-20 12:08:41.259 THREAD 1 SEVERE: java.home = D:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\jre

2016-01-20 12:08:41.259 THREAD 1 SEVERE: catalina.home = D:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\tomcat

2016-01-20 12:08:41.259 THREAD 1 SEVERE: java.user = null

2016-01-20 12:08:41.259 THREAD 1 SEVERE: user.language = en

2016-01-20 12:08:41.259 THREAD 1 SEVERE: user.country = US

2016-01-20 12:08:41.259 THREAD 1 SEVERE: scm.server.version = 12.1.6608.6300

2016-01-20 12:08:41.260 THREAD 1 INFO: Main> Main>> Checking upgrade arguments... Command-line argument length is: 1

2016-01-20 12:08:41.260 THREAD 1 INFO: Main> Main>> Upgrade args length = 1

2016-01-20 12:08:41.260 THREAD 1 INFO: Main> Main>> Upgrade args = SQL

2016-01-20 12:08:41.260 THREAD 1 INFO: Main> retrieveAdminInfo>> Waited for 1 seconds to get info from stdin.

2016-01-20 12:08:41.261 THREAD 1 INFO: Main> retrieveAdminInfo>> Get string from stdin = username=sa

2016-01-20 12:08:41.261 THREAD 1 INFO: Main> retrieveAdminInfo>> adminUserID = sa

2016-01-20 12:08:41.261 THREAD 1 INFO: Main> retrieveAdminInfo>> Password is received.

2016-01-20 12:08:41.261 THREAD 1 INFO: Get string from stdin:END_INPUT_FROM_STDIN

2016-01-20 12:08:41.261 THREAD 1 INFO: Main> Main>> Unable to retrieve the admin password.

2016-01-20 12:08:41.262 THREAD 1 INFO: Main> Main>> Server Home = D:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\tomcat

2016-01-20 12:08:44.350 THREAD 1 INFO: Main> Main>> Database server is MSSQL. Testing DB connection... Current time = Wed Jan 20 12:08:44 UTC 2016

2016-01-20 12:08:44.350 THREAD 1 INFO: DatabaseUtilities> testDBConnection>> Testing DB connection using 'DefaultDatabaseConnection' method. Parameters used (needDateFormat: false, isRetryUntilDBUp: false, defaultConnectionMaxRetry: 20)

2016-01-20 12:08:44.603 THREAD 1 INFO: Main> Main>> DB(MSSQL) test connection succeeded. Continuing with upgrade process...Current time = Wed Jan 20 12:08:44 UTC 2016

2016-01-20 12:08:44.865 THREAD 1 INFO: Has valid SAV license

2016-01-20 12:08:44.865 THREAD 1 INFO: Info>> No SNAC license file in D:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\tomcat\etc\license

2016-01-20 12:08:45.098 THREAD 1 INFO: Main> executePreLaunchSteps>> Config schema format is getting upgraded from (schema version from db): 12.1.5.4

2016-01-20 12:08:45.719 THREAD 1 INFO: Saving disaster recovery data to: D:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\tomcat\..\Server Private Key Backup\recovery_2016-01-20-12-08-45.zip

2016-01-20 12:08:45.971 THREAD 1 INFO: Main> executePreLaunchSteps>> DbVersion: 12.1.5.4 schemaVersionFromDB: 12.1.5.4 isSpm51Mr7: false hasOtherOSAgents: false dbcompanySize: 0 dbConnected: true isTelemetryOptedInFromDB: true

2016-01-20 12:08:45.972 THREAD 1 INFO: Main> checkUpgradeFeasibility>> Checking for upgrade feasibility, current schema version = 12.1.6.4, schema version from db = 12.1.5.4

2016-01-20 12:08:45.974 THREAD 1 INFO: VersionToBeSupported: 12.1.5.4

2016-01-20 12:08:45.975 THREAD 1 INFO: SchemaVersion>> isSupported> versionToBeSupported '12.1.5.4  is supported for this release

2016-01-20 12:08:46.068 THREAD 1 INFO: Main> displayOnlineServerListIfAny>> Checking online servers. siteId = 9D4C31970ABCF1B2019EAC0247A4B369

2016-01-20 12:08:46.160 THREAD 1 INFO: SYSOUT : Checking onlist status for server min-mpti-sepm01

2016-01-20 12:08:46.161 THREAD 1 INFO: SYSOUT : Not checking status. offline status detected

2016-01-20 12:08:46.161 THREAD 1 INFO: SYSOUT : [name=min-mpti-sepm01,id=F4A034370ABCF1B20045B0DE4451C909] is offline

0

SEP network traffic issue

January 21, 2016, 5:55 pm
$
0
0
I need a solution

Hi,

I have a network traffic issue on SEP client.

In remote site, I have pointed SEP to update definition from Group update provider.

And log showed cilent was updated from Group update provider.

But I found some client using large amount of bandwidth to communitate with SEPM server.

Please advice.

Thanks

0

RHEL 7.2 support?

January 21, 2016, 6:09 pm
$
0
0
I need a solution

We've recently installed RHEL 7.2 (Kernel 3.10.0-327.4.4.el7.x86_64) and have found that the Endpoint Protection client (12.1.6608.6300) cannot register with the Management Server (12.1.6 MP3).

From reading the forums our problem is pretty much the same as one posted a while ago (Linux SEP client cannot connect to SEPM).

The autoprotect module compiles correctly and the product appears to be working fine, just not connecting to the server.

Is this something Symantec or others are aware of and if so, is there a fix available, or do we need to wait until MP4 is out?

0

Mail attachments

January 22, 2016, 12:19 am
$
0
0
I need a solution

Hi all,

I have a user that send many times a day, the same attachment to different mail address.

It is possible that SEP blocks the attachment and send the email without it? (without any warning in console?!?)

0
Search

How do I white list an installer?

January 21, 2016, 11:38 am
$
0
0
I need a solution

Image Burn, specifically.  That's got adware (toolbar, search settings, homepage, that crap) bundled with it. 

I still install it on machines though.  I've got a lot of that automated and when it's automated it skips any option for installing the adware. 

This is the one program that SEP goes after though.  There is adware bundled with other installers that SEP doesn't touch.

I'd like to ok the image burn installer for any user or ok a single file on a fileshare server so it's in place for automated installs. 

SEP keeps deleting the installer though....I know it's got adware.  I watch carefully when I'm manually installing.  Automated installs don't have the adware issue.

How do I get SEP to leave the image burn installer alone?

0

SEP Unresponsive

January 22, 2016, 2:10 am
$
0
0
I need a solution

Hi,

Appologies if this has been covered but I've not found a solution yet.

We have upgraded the clients to 12.1.6 MU1 and starting getting issues where SEP would not update, Definitions were pulling down constantly but failing to install, and the client was unable to open, closing itself on the splash screen. The client was still communicating with SEPM. This occured when the machine was left on for a long period and after 4 days you would start seeing this occur. Only Windows 7 machines seemed to be effected as we did not see this issue on Windows 8 or any servers (03,08, 08 R2,12, 12 R2).

To resolve the issue I had to end the SVCHOST process that was linked to the SepMasterService. This is not a solution as with over 1000 machines I simply don't have the time to do this on every machine and I shouldn't have to.

I have installed 12.1.6 MU6 to see if this resolved the issue, which hasn't as I've started to get machines reporting the same thing that have been upgraded. This wasn't an issue in any previous version of 12.1.x

Is there a patch to resolve this issue, or do I have to roll back to 12.1.5?

0

How to Disable USB charging of Phones

January 22, 2016, 4:00 am
$
0
0
I need a solution

Hi All,

Recently I have blocked the access of all storage devices & smart phones though Symantec. Now I also want to disable the USB charging of phones.

Can I block the block the USB charging through Symantec ???? If yes then request you to please share the solution. 

OS platform is window 7.

0

12.1.6 - clients out of date

January 22, 2016, 8:29 am
$
0
0
I need a solution

Hi,

I have recently inherited an offline SEPM on Server 2012. Just before I joined the company it was upgraded from 12.1.5337 to 12.1.6. All desktop machines have been upgraded to 12.1.6. Daily I upload the jdb files from our WSUS laptop to both delivery centres and our cloud environment. The definitions on the server are always 1 day behind the current date.

We have it on 3 environments. The cloud environment reports all servers are up to date. On our 2 delivery centres we have 58 (out of 75) machines showing as out of date. The definitions are within the last 24 hours but the Download Protection Content is out of date (01/28/2015). To check reporting I log onto SEPM on the  delivery centre 1 as delivery centre 2 is set as a replication partner.

How can I update the Download Protection Content? Is there a way of amending the endpoint status settings to only report certain features being out of date? 

One additional thing I have noticed which I have raised with my management is that we need a few more licences. Will this affect the reporting automatically putting the unlicensed machine into the out of date status?

Thanks in advance.

0

SEP not scanning hidden local drive

January 22, 2016, 11:43 pm
$
0
0
I need a solution

Hello,

I need advice on the following. The customer has workstations where only C drive is visible. There is also D drive but it is hidden. If we browse from Windows Explorer to D drive, it opens.

The problem is that SEP is not scanning this local hidden drive, also we cannot run manual scan from the SEP interface and the customer said that they found a virus there. Only possible way to scan this drive is with DoScan.exe /ScanDrive D command.

Is there any way SEP to scan this hidden D drive via scheduled scan or what we can do in this situation?

Thanks in advance

0
Viewing all 12029 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>