Quantcast
Channel: Symantec Connect - Products - Discussions
Viewing all 21603 articles
Browse latest View live

SEPM configured port errors

June 4, 2014, 6:19 am
$
0
0
I need a solution

When I had update my management console to 12.1.4104.4130 i have been getting an error on the symhelp. I cannot find a clear solution

Title: The Endpoint Protection Console is not using its configured ports
Product: Endpoint Protection Console

Status: Error

Symantec articles:

Which Communications Ports does Symantec Endpoint Protection use?
http://www.symantec.com/docs/TECH163787

Troubleshooting communication problems between the management server and the client
HOWTO80740

Details:
------------------------------------------------------------------------------------------------------------------
Error    Reporting Console (httpd.exe) is not using its  configured port {43} with a state of 8445.  The application   is using the port.
------------------------------------------------------------------------------------------------------------------
Ok    Tomcat Shutdown (SemSvc.exe) is using its configured port 8765 with a state of 'Listen'.
------------------------------------------------------------------------------------------------------------------
Ok    Remote Console Logon (SemSvc.exe) is using its configured port 9090 with a state of 'Listen'.
------------------------------------------------------------------------------------------------------------------
Ok    Remote Monitoring & Management (SemSvc.exe) is using its configured port 8446 with a state of 'Listen'.
------------------------------------------------------------------------------------------------------------------
Ok    Remote Management Console (SemSvc.exe) is using its configured port 8444 with a state of 'Listen'.
------------------------------------------------------------------------------------------------------------------
Ok    Client Communication (httpd.exe) is using its configured port 8014 with a state of 'Listen'.
------------------------------------------------------------------------------------------------------------------
Information    No application is using RADIUS Communication(httpd.exe)'s optional configured port 1812 with a state of 'Listen'. 
------------------------------------------------------------------------------------------------------------------
Information    No application is using AjaxSwing(SemSvc.exe)'s optional configured port 8045 with a state of 'Listen'. 
------------------------------------------------------------------------------------------------------------------

Search

Location check every 4 seconds

June 4, 2014, 11:21 am
$
0
0
I need a solution

I have SEP 12.1.4100.4126 and want my clients to update from the SEPM when on the network and update from Symantec LiveUpdate server when not on the network. I have set up a second location "External" and clients switch to this location when they cannot contact the SEPM. My question is:

The location will be checked every 4 seconds - that is the default

What is best practice for this location check? To me every 4 seconds seems pretty extreme. Currently I have a small test group but this is going to be deployed to a few thousand endpoints and I don't want them hammering the SEPM every 4 seconds. Any advice or real world proven checkin times?

1401910971

Simplest Policies for Software Developers on Intranet

June 4, 2014, 12:52 pm
$
0
0
I need a solution

I am running Symantec Endpoint Protection Manager on a small intranetwork used by software developers.We have no Internet access, in fact, we are completely self contained.  I update the antivirus definitions weekly by downloading the .jdb file to external media and loading it onto the server.  I am not really worried about anything other than the ability for the clients to initiate/cancel virus scans.  The big problem is that the default policies are so intrusive that every time a developer changes a file in his application, it takes forever to launch it; presumably because the endpoint protection client is rescanning everything anytime a change is made.  I guess to put it simply, I have a Cadillac and I need a Yugo.  Can I limit the invasiveness enough via policy to make the SEPM activities more "transparent" to the user.  If so, how?  All I really want to do is be able to run a scheduled scan once a day at midnight and allow the users to scan at will.  I really don't care about all of the other functionality.  What can I turn off and how do I do it?

Citrix Non-Persistent VDI machines dont download defs from SEPM automatically

June 4, 2014, 1:12 pm
$
0
0
I need a solution

I have this weird issue happening only on Non persistent VDI Machines, here it goes:

 

When a VDI is turned on - it loads the image it had when it was created. AV definitions will show up for when the image was created. 

Now, for some weird reason, this happens:
-If a user logs in to VDI-a, on the syslog will show that that machine connected to the SEPM and downloaded the latest definitions. 
-If NO user logs in to VDI-b, on the syslog will show that that machine connected to Symantec's live update servers and downloaded the latest definitions.

 

VDI-a and b are the same image.

 

Attached are some screenshots.

Unexpected Server Error

June 4, 2014, 11:20 am
$
0
0
I need a solution

I have one SEPM that is daily throwing an Unexpected Server Error. I've searched the Knowledge Base but haven't found anything that points at a solution to stopping this. The SEPM is functioning, you can log into without errors, all the tabs work and you can run logs and reports just fine.

We're just being notified through a Server Alert that it has an unexpected server error. Checking the scm-server-0.log file shows many days with just one line entry: 2014-06-03 16:19:55.778 THREAD 35 SEVERE: com.sygate.scm.common.communicate.CommunicationException: Unexpected server error. ErrorCode: 0x10010000

Some days there are extra lines of data but the additional information on the error haven't been any more help. I'm attaching the server log file.

Emailing pgp file after using pgpnetshare in Symantec Encryption Desktop for Windows

February 10, 2014, 10:44 pm
$
0
0
I need a solution

We use pgpnetshare to encrypt a file and send it to the vendor for further processing.

If to attach the file to email it looses pgp encryption. Why? Could we email encrypted file? How could we transfer this file to external user with pgp properties?

Can't get the client to communicatie with the manager

June 4, 2014, 12:57 pm
$
0
0
I need a solution

Hi all. I've recently installed the Endpoint Protection Manager on my home pc (which runs with Norton 360). From there I've generated a client install executable with the manager and installed this on one of my servers (Windows Server 2008 R2). However I'm unable to see this client active in my Endpoint Protection Manager.

On my server I did not install the SEP firewall but I'm still using the Windows Firewall. I've tried opening the ports 8014 and 9090 on both firewalls and I've also tried disabling both firewalls at the same time (home pc and server) but I still was unable to have them communicate with each other.

I've also ran the Symantec Help v2.1 tool on both my home pc and my server with the following results:

Home PC: I got 2 warnings:
1. User Account Control is enabled

2. SQL Server or client is not installed on this machine. You can ignore this test if you are using embedded database.

Windows 2008 R2 Server: 2 errors 1 waring

error 1. Disable the Windows Autorun feature
error 2. Client to Manager communications are not working
warning 1. Windows Firewall Configuration
The exception was not found: SMC Service.

However when I check the exceptions of Windows Firewall, the SMC Service is there and the box is checked. Which is confusing to me.

I don't understand why they won't communicatie with each other, even with both firewalls switched off. What am I doing wrong here?

DLP Endpoint Discover Not Detecting Incidents

June 4, 2014, 9:07 am
$
0
0
I need a solution

I’m new to DLP and am having difficulties getting Endpoint Discover to detect incidents. I have a test text file with false social security numbers that should be detected using the US Social Security Number Data Identifier that came with the DLP.  In the discover target filter I have it targeting the specific file.

When the scan is ran it reports that the file was scanned but fails to detect any incidents.

 

Search

How do I check my SSL certificate being installed correctly?

May 28, 2014, 2:42 pm
$
0
0
I need a solution

I just installed my cert on my webserver and was wondering if there is a way to test if my cert is installed properly?

1401378303

GUP Symantec Management Client Crashing

June 4, 2014, 2:43 pm

How to avoid GTIN/UPC, Bill of loading numbers from being detected.

June 4, 2014, 11:52 pm
$
0
0
I need a solution

Hi,

In our scan we get a big amount of GTIN/UPC codes or BOL (Bill of loading) numbers, which eventually are False positives. But these are detected as they pass the criteria of a valid credit card number.

Is there a way we can avoid GTIN/UPC codes or BOL to be detected to reduce the false positives.

Regards,

Kapil

SEP Reports, Historical Data needed per Server

June 5, 2014, 11:12 am
$
0
0
I need a solution

Good day;

I am hoping that someone of you BRILLIANT people can assist me in generating a report from teh SEP Management console to get Historical dataout of the  SEP Reports, using the advanced setting.  If there is a way to get it per Customer then per Client, and did  I mention per Server for everytime the virus definition files were updated, thank would be GREAT!

Please reply as soon as you can;

dslman57

VIP Access Activation Fails with Error code 0x20

June 4, 2014, 11:55 pm
$
0
0
I need a solution

I'm trying to install VIP Access and it fails on activation phase (first run) with the following error:

Activation could not be completed. Sign in again later to activate VIP Acccess. Error code: 0x20

Log from %USERPROFILE%\AppData\LocalLow\Symantec\VIPAccessClient have the following record:

STORE  :ERROR:06/05/2014 09:46:59 VIPUIManager.exe[1188] [         .\VSAuthCode.cpp][ 182] GetAuthenticationCode::No AuthCode Information recieved from IDCenter

VIP Access is version 2.2

My environment: Win7 Ultimate + SP1 (64bit)

Internet connection is not a problem. Firewall/antivirus was deactivated.

Any help is appreciated!

Symantec web Gatway Virtual Appliance

June 4, 2014, 9:17 pm
$
0
0
I need a solution

Dear Symantec Support,

Kindly i did the following to configure Symantec web gatweay virtual appliance

1. start ESXi Vshpher Client and connect on the ESXi Server

2. Deploy OVF File ( choose Thick Disk)

3. Create 4 Virtual Switch ( Management, WAN, LAN, Monitoring) each switch in Promiscious mode.

4. assign the 4 Netowrk port of the OVF Machine to separate virtual switch

5. i disconnect NIC Port ( WAN, LAN) from the machine, before i start it & make Management NIC Port connected to Management Virtual Switch & Monitoring NIC Port connected to Vitual Monitoring Switch.

6. Start OVF Machine. and connect with the default credential.

7. i display the IP Address and found it ( 192.168.254.254), then i choose Option 5 "change/test IP Configuration" then Option 3 " Set IP/Disaple DHCP", and change IP Address to be in the range of management IP Ranges.

8. i created virtual machine and get ip from management IP Ranges.

the issue that i can't reach Symantec WG IP Address from any machine, i try with Internet exploere & by Ping, nothing work.
i cant Ping Gateway or any mahine in this subnet or any other subnet

Note that when i check MAC Address of the configured NIC card inside symantec web gateway, its related to the other Network card ( NIC3) which connected to Virtual LAN Switch.

Please explain the reason of that and how to connect to webgateway correctly.

Encrypt to Groups

May 21, 2014, 10:26 am
$
0
0
I need a solution

We use gpg on our linux boxes to encrypt files to groups of people.  By creating a file and including a csv of the users whose keys we wish to use, we can automatically have all the users' keys added to the encryption.  We wish to perform a similar function on our windows clients which are licensed for Symantec Encryption Desktop.  While we have the file share encryption, we wish to email these (and we are not licensed for the email encryption).  Is there a simple way (like gpg) to create a group or a file containing lists that can be used to encrypt files so that several users' keys are automatically added?  I have confirmed that group keys created with our PGP Server cannot be added using the zip encryption processes.

Search

PGP Engine Quits

March 9, 2014, 7:12 pm
$
0
0
I need a solution

I cannot figure out why PGP Engine seems to quit about 50% of the time when encrypting a file via the services menu. The encryption desktop icon from the menu bar disappears as well. It relaunches when I select the encrypt service once again, typically works for one file, and then quits withe the next file. Problem occurred with MacOSX 10.8.x and continues with 10.9.2. Currently running Symantec Encryption Desktop 10.3.2.

SCSP Shutdown & Deleting the Collectors

June 4, 2014, 10:45 pm

How to create a custom program in Data Center Security

June 3, 2014, 3:18 pm
$
0
0
I need a solution

Hi,

I am having trouble getting an application to run with Data Center Security 6.0.  My policy is using the Hardened mode and prevention is enabled.  Unlike most apps which are blocked, the logs are not showing me why this app is being blocked.  I suspect it has something to with registry access but I am not 100%.  What I would like to do is setup a custom application for this one application, and allow everything at first but log everything - file, registry, process access.  Then I could narrow this down.  I am reading the documentation which came with the installer to see how to create the custom app, but the steps don't match what I see in my console.  Would anyone kindly point me in the right direction for setting up a custom application that starts with no restrictions?  One thing I can add is that this app is assigned to the Trusted_Updater Sandbox and if I disable that sandbox, my app will run.  

Thanks in advance,

BB

account lock out

June 5, 2014, 10:25 pm
$
0
0
I need a solution

Symantec console is not accepting the password and showing it is lock out.

How to unlock the account for login?

How can I reset password for Symantec Enpoint Protection Manager 12.1

June 4, 2014, 9:15 pm
$
0
0
I need a solution

Dear Sir;

I forgot password to login Symantec Endpoint Protechnition Manager 12.1 with Windows Server 2012 platform. I tried to use "Forget Password button", but I never received temporary password from SEP Server. I also cannot find the resetpass.bat in c:\Program Files (X86)\Symantec Endpoint Protection Manager\Tools. How can I reset the password?

Viewing all 21603 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>