El cliente tiene su Active Directory en Windows 2003 y algunos clientes tienen Windows XP y otros Windows 7 se instalo la consola los clientes de Windows XP no tuvieron problema sin embargo los de Windows 7 si tienen problema con la instalación, algun caso similar??
System:
Windows 7 x64
PGP 10.3.0 MP1
Ever since upgrading to IE 10, every time I launch it, the IE program crashes. Here is the error I see from Windows Event Viewer. Anyone else seeing this?
Faulting application name: IEXPLORE.EXE, version: 10.0.9200.16611, time stamp: 0x5191e7aa
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000
Faulting process id: 0xe9c
Faulting application start time: 0x01ce67b8783192ef
Faulting application path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Faulting module path: unknown
Report Id: b5ee0b77-d3ab-11e2-920b-005056c00003
i have deplyed SEP11 for some time,but its client dose not work on windows 8,is there anything i can download to solve this problem?
thx
Recently we have had clients report out-of-date definitions. The only definitions I show in the console that are out of date are SONAR. I have been told that this isn't a problem and we won't get alerts. Any particular reason TruScan can keep itself up to date but SONAR can't?
This monrning I had about 4 clients out of date...mainly SONAR defintions. This evening I have over 270. With only about 650 clients installed my console went from green to red in minutes. Most of these out of date clients are due to SONAR definitions.
This is an irritation for me but a larger issue for my boss.
Why is this happening?
Hi,
When I'm trying to enable Risk Tracer for my SEP client, I got the prompt to enable the Firewall policy ?
This is the artcile that I follow: http://www.symantec.com/business/support/index?page=content&id=TECH94526
I do not want to cause any issue in my production server because I do not specifically enable internal firewall for all of the server.
Does this message harmful to the current production environment ?
I have a question?
I have migrated a number of SEP 11 Clients to our new SEP 12 SEPM.
Some Clients upgrade easily and reboot, but different groups do different things, like some won't upgrade at all even after the auto upgrade is loaded. I verified that.
I know the MS FW or SEP FW are turned off. UAC is off.
Any suggestions, on what I am missing and why they are not upgrading?
Any assistance would be appreciated.
Thanks,
Hi
We have XPSP3 on Lenovo ThinkPad T430 laptops. Part Number (23561y3)
We are using GuardianEdge Framework and Client version 9.5.3
BIOS USB Settings are:
USB UEFI BIOS Support - Enabled
Always On USB - Enabled
Always On USB Charge in Off Mode - Disabled
USB 3.0 Mode - AUTO
USB Port - Enabled
The issue is:
If a USB Keyboard is attached to the laptop via a docking station and a user tries to authenticate at preboot there is no input from the keyboard.
If the External Keyboard is disconnected then the character entry goes through.
I see this has been an issue with other models of laptop but cannot determine if this laptop is also known to be affected.
Can anyone confirm if this is so?
Is there any way I can determine this through testing?
Any assistance is greatly appreciated.
Hi People,
I have successfully configured the SNAC policy in one test group and would like to apply this to the existing production group, I just want to copy the highlighted items in particular so that I got the consistent result in the production group as the test group previously.
how to do that in SEPM v12.1.2 ?
Hi
we are planing to migrate from SEPM 11.0.6 to 12.3. but before that i was looking for some answers. i have seen that 11.0.6 also support network access control but i havent seen that tab in SEPM policy or the client so i can i activate it in 11.0.6.
also i wana know can i import all the policies from 11.0.6 to 12.3? wont there be a version conflict? also if i change the SEPM then do i have to go to every client to uninstall the client of 11.0.3 and then re install the client of 12.3 or is there a way that i got simply upgrade clients from SEPM?
regards
Method to install the dlp agent?
Mehtod to install symantec endpoint clients?
We are currently configuring the Symantec Encryption Desktop for Messaging. I have managed clients using SKM. However, if I send encrypted email internally. There's always an error keys not found: Blocked Message. I'm not sure if I missed some configuration here.
- LDAP Settings is successful.
- SKM
- Mail Policy default
- Enable Messaging on Desktop policy
If I try to search keys from my pgp desktop using the Encryption Server. Result is : No Keys Found.
Help please..
thanks,
Hi there,
I've inherited a Endpoint Protection server running 11.x on Win2K3 in an environment that has approximatley 200-250 clients (mixture of workstations and servers). As far as I can make out, it's been unloved/poorly maintained and there are almost 600 computer accounts in the system and of course almost half of those don't exist any more. I've discovered the option to delete clients that have not connected 'x' days under Admin > Servers > Local Site > Edit Site Properties.
I'm keen to enable this and clean out all the old/non-existant/retired computers in the system, but wanted to know what would happen if, say, a laptop that was locked in someone's cupboard for months was re-connected to the network. Would it check back into the server OK, if it's account had been deleted?
Is there anything else I should consider?
Any advice is welcome.
Thanks
Olly
Hi,
I've installed the client on an SBS 2011 server but it keeps showing as 'Symantec Endpoint Protection Requires a Restart'. If I reboot it doesn't auto restart, I go in services, change it from disabled to automatic, start the service, reboot and I get the same again 'Symantec Endpoint Protection Requires a Restart' so it's stuck in a loop.
Enviroment
1st Server, Windows 2003 hosting the SEP Manager
|
2nd server SBS 2011 Client Version 12.1.1000.157 RU1 with the 'Symantec Endpoint Protection Requires a Restart'.
I think I installed it from a Package created a while ago so could probably do with removing it from the SBS2011 server and pushing it out but there is no Uninstall option.
Any ideas and I can't find a sutable solution on here via search?
Hi everyone,
I've been given the task of installing Symantec Endpoint Encryption onto a Windows Sever 2012 PDC. I would just like to know whether the 8.2.1 version of the encryption will work with server 2012?
Thanks,
adavies169
I have a Dell Studio running Windows 7 64-bit with an older version of Symantect Endpoint Protection (ver. 11.0.5002.333).
Starting about ten days ago, I found as a consequence of a manual scan a reported infection of a number of files which were reported by Symantec Endpoint Protection as being infected by the JS.Alescurf malicious code. The files had names generally of a naming convention "51xxxxxx.tmp" and were located within the directory:
ProgramData > Symantec > Symantec Endpoint Protection > xfer
I usually operate the computer from a lower privileged account. Running the scan in the regular privileged account identified the purported infection, but left the files unchanged.
So I logged onto a privileged account and ran the scan as an Administrator. Endpoint Protection then identified and Quarantined about fifty files that it represented were infected by JS.Alescurf malicious code, all in the xfer directory. (This was last week.)
I have since had several recurrences of the reported infection when I either scan the aforesaid directory OR open that directory and seek to check the properties of one or more of these files.
The appearance of the files in a xfer directory seemed to present either the possibility that Endpoint Protection was detecting its own Antivirus definition files OR that somehow infected files were being presented by an unknown vector within a directory that might somehow infect Endpoint Protection itself, which is particularly concerning.
Last night, I noticed that there was a new accumulation of upwards of 1,000 .tmp files in the xfer directory. I manually ran LiveUpdate from the UNPRIVILEGED account about 3 AM and thereafter noticed that about 270 new files appeared within the xfer directory, suggesting that this was a transfer area for new definitions, etc. The most recent files have names of the form "51babxxx.tmp".
The xfer file now shows 1,607 items, all with dates within the past week. It was completely CLEAR last week after I ran a complete scan of ProgramData.
I ran a new session of LiveUpdate this morning from an Administrator account, which seemed to download some new updates, but no new files seem to appear within xfer. I am in the process of running a new scan now.
I am wondering if anyone has any insight as to whether the xfer directory is a typical vector for exploit by JS.Alescurf or whether there is reason to expect or believe that Endpoint Protection is giving a false positive in respect of files properly transferred to the xfer directory, possibly through the LiveUpdate process. Also, is there a reason files accumulate within this directory? What is the regular process by which files in xfer are deleted if these, in fact, are associated with installation of new AntiVirus Definitions.
Any other suggestions or recommendations for troubleshooting or remediation of a JS.Alescurf infection are appreciated. Endpoint Protection is reporting the successful Quarantine of these files when I run the scan in Administrator mode. Is there anything else I should be doing in respect of a possible JS.Alescurf infection?
Hi everyone,
After clean Installation of detection server Network Monitor (Symantec Data Loss Prevention 11.6) services (Vontu Monitor and Vontu Update) don't start with Error 1067. What could be the solution?
Hi All,
I have a mixed environment of SAV10.x, SEP 11.x and SEP 12.x. I also have LiveUpdate Admin 2.3.2.66 downloading updates for clients. All Windows machines.
My question: Is there a setting in Symantec System Center (for SAV10 clients), or LUA, to allow SSC to download delta updates from LUA, instead of full definitions every time?
Please don't suggest to update. We are in the process of migrating away from SAV10, but until this is complete, I still need to provide definition updates to clients.
Thanks in advance.
We have Multi-function copiers scanning documents to a server. To facilitate scanning across a vpn, we changed the SMB port from 139 (using NetBios, which often failed) to 445 (SMB over TCP/IP). This files are now scanned reliably, but Endpoint Protection is labeling them as suspecious. We need to change a rule to make the PDF documents "trusted".
How do I turn off alerting for certain notification such as the generic, "Scan Engine Scan Error," while receiving notifications for others?