we are using Symantec endpoint protection and the version is 12.1.2015.2015. when we insert the external drive, all the folders in the external drive become shortcuts and we cannot access any files and it is showing empty. we scanned the whole drive but we can't find any virus. is there any solution to remove those shotcuts and restoring my folders.
can the symantec endpoint protection 12.1.2 scan cifs shared drive?
if so what are the steps to do this?
thanks.
I was reading the SMG v9.5 Deployment Options, and there was option to deployment a dedicated spam quarantine control centre? how to configure that?
thanks.
Trying to log into Endpoint v12.1 on my SBS 2003 and once I enter my login & pw, I get the "logging into server" box with the blue squares about 1/4 across the bar and it just sits there. I know it takes a bit to login but usually the blue squares continue to migrate across the screen until the login is completed and the console comes up. I was in just a few weeks ago with no problems.
I thought maybe it was a bad pw so asked it to email me so I could get it or reset and I never received the email.
Thoughts?
Thanks!
Marsha
Whenever i start or log in to my computer, the Symantec Endpoint Protection pops a box mentioning the name of an infected file (Trojan). From the day this started appearing, Windows Explorer restarts at least once almost every day after I start my computer. Whenever Windows Explorer restarts, the symantec pops the same message again. Not sure if the file is run when explorer runs.
This is a tmp file of called 46c9d0b_0.tmp. I am not able to delete or clean this file through symantec - I am not sure if it gets deleted when I clean my temporary files. There are several instances of this under View Quarentiane - each one has a different File Create Date (not all the days from when it started showing up first - there are no files on some dates in between (mostly one day in between dates are missing).
I do not see any such file when go into the folder where this file is supposed to be (users\svs\appdata\local\temp) located.
Can someone let me know if there is a way to get rid of this file?
Hello,
We upgraded SEPMs from SEP 11 RU7 MP2 to SEP 12.1 RU2 (confirming suppoted migration path). Exported client packages for 64-bit and 32-bit platform, with the installation type to "show progress bar only". Installation goes fine and install process runs liveupdate which also completes, but LiveUpdate Status windows does not close by itself. Initially I though it could be time issue and tried couple of clients over hrs and even over night, even then one has to click "close" button to close startus window.
There was no such issue when we used "unattended" in packages for SEP 11 in any of its builds.
Any body experienced such behavior.
Thanks & Regards,
pg
If an application writes a log file to a folder that needs to be encrypted/decrypted how can this be accomplished with NetShare?
Can it be scripted to use a key on the Universal so that only a username/password would need to be revealed such as with Command Line?
Thank you!
Has anyone been able to use a Flex Response in the following scenario, where a DLP agent & PGP Encryption SW is installed on the device.
On a laptop a user has a PGP Encrypted File that they are sending:
Via Email (Gmail/HTTPS)
or
To a USB device.
The customer would like to be able to inspect the contents of the encrypted file, but need to decryt the file using a Company Global Key. If the contents do not violate a policy the transmission will complete. If it does violate a policy then it will block the transmision.
Keep in mind that the policy can either be ONLY looking for PGP encrypted files or it can be lookng for other content or more policies (CCN, SSN etc).
I would assume that this would need to be using a flexresponse associated to a policy looking fr PGP files, but has anyone done this before?
Thanks..ronak
Since yesterday the Symantec Endpoint Protection on my window XP repeatedly give an error message "SONAR Component has encountered a problem and needs to close. We are sorry for the inconvenience". Then the Proactive Threat Protection becomes disabled, wrongly stating that "Protection definitions are too old for Proactive Threat Protection. Click Fix to update prtection definitions." Of course the definitions are updated, but the Proactive Threat Protection simply remains disabled.
I found an old thread (https://www-secure.symantec.com/connect/forums/son...) and realized this is a time-worn issue. Apparently it's come back again. Would anyone please come to my rescue? Thank you so much!
The documentation mentions that NAT is supported between agent and management server, but does not mention if a reverse proxy is supported.
Obviously the proxy would need to be capable of SSL offload, and have the certificate of the management server installed.
I am trying to move our only SEPM server (Version 12.1.1000.157 RU1) from an old server (SERVER1) to a new server (SERVER2) while keeping the same IP address and server name. Both servers are running SQL 2005. I have backed up the SQL 2005 database on SERVER1 and successfully re-attached it to SERVER2. I have done all the disaster recovery procedures on SERVER1 per the following link (http://www.symantec.com/business/support/index?pag...). I have installed the same version of SEPM on SERVER2 and have started the Management Server Configuration wizard and selected "Custom configuration" and "Use a recovery file". It then presents me with three options: Install my first site, Install an additional management server to an existing site, Install an additional site. I am unsure of which one to choose. Could anyone point me in the right direction? Thank you very much.
Hello,
I recently set up a new SEPM server for which I am going to test 12.1.2. I attempted to push the client package to my first machine (my machine running Windows 8). I am able to successfully push the package to the client as the management ui says package deployment was successful but the installation on my machine never actually happens. I see nothing in my machine logs to indicate the installation was even attempted. This machine does not or never did have an older version of SEP installed. So, according to the SEPM server communication between client and server is fine and the package was successfully delivered. Why would the client no install on my machine?
Thanks!
The server was low on disk space so the virus defs would not update. NetOps made space so now SEP shows the virus defs up to date. But the message still pops up saying that the virus defs are not updated.
Before, I figured out it was a disk space issue, I tried following the documents to manually update by cleaning the directory and registry thinking maybe the virus defs were corrupted.
Any suggestions.
Thanks. M.
Is there any way we can allow only certain users access to Shared folder under Risk Assessment and Control in RMS.
By default Everyone has Read/Execute and Write permissions to this directory.
Thanks,
Chaitali
Hello-
We use PGP Desktop, and I am interested in extending this support to my iOS device. On the web I find reference to "Symantec PGP Viewer for iOS" yet when I look on the iTunes store I can only find "Symantec Mobile Encryption for iOS" (but at the link https://itunes.apple.com/us/app/symantec-pgp-viewe..., so go figure). I can therefore only assume that the name is changed, and that they are referencing the same app.
Moving along-- when I install the app and run it, it wants me to manually enter my Symantec Encryption Management Server, to which we do not have. We just use PGP Desktop, and have our keys shared between each other and our customers.
So, what step(s) should I follow to allow me to use my licensed PGP Desktop generated keys on my iOS device?
Also, are similar steps available for android phones?
thank you.
..dane
I administer an internal LiveUpdate server (v2.3.1.82) and I have just moved my distribution center to a new drive (D:) according the to article below. Can I delete the content from the old DC (C:\Program Files (x86)\Symantec\LiveUpdate Administrator\clu-prod) now?
The articles I have looked at make no mention of removing old content after the DC has been moved and I need the space back on my C Drive. I have done an update and distribution but the old content is still there in the old clu-prod dir. Tomcat knows the new location, and I don't want to get the DB out of sync with the file system.
Hello everyone.
It seems lately everyone has been discovering the magic of TLS as if this is some kind of super new technology or something.
And they don't want to use opportunistic TLS - no, they want to enforce it. And they send us these request forms with dozens of domains that they own asking us to enforce TLS to all of them.
The problem is that there is no way to import multiple domains as external domains with Require TLS option in Protocols/Domains. I have to key them in one-by-one. And this is pretty slow. Each one takes a few minutes to accept. And it also seems to be pretty harsh on the MTAs - almost every time I add a new domain name and click Save, I start seeing alerts that this or that MTA service stopped responding or that there were bad messages in the queue.
Is there a better way?
Ok, I know there is a featured post and several articles about how uninstallation of SEP Antivirus is pretty much a manual hands-on-the-machine affair. Either that, utilizing a CleanWipe utility that, while I am unaware of this program, sounds like something similar to CCleaner.
Here is our company's problem and am hoping you all can assist.
1) We intend to lock down SAV from client access via the use of passwords (done through SEPM policies)
2) Almost all of our users are remote located in all of our state's counties.
3) All of our IT support is handled via remote control, Microsoft System Configuration Manager, Group Policy, or each applications management console.
4) We are being forced to move away from ESET AV and adopt SAV. ESET allowed us, through their console to install, remove, and remotely manage the ESET application.
Knowing the above, and that our client-side SAV setups will have password protection, and our users are remote, please tell me how we can remotely uninstall SAV 12.1 from their systems should the need arise?
Touching each and every machine via a remote desktop tool to utilize Windows Add/Remove process is just not practical for large numbers of users. Using the msiexec command line in a Group Policy "logon" script won't work if we have password protected our SAV installations.
Thank you.
Hi People,
Can anyone please assist me in resolving this issue with the
Everytime the user tries to use open up the application, there is pop up saying
[SID: 20903] FTP Generic Command Overflow detected which comes from the old Solaris server, after that the whole people in the department cannot use their FTP software to pull out the report from the server ?
how to safely ignore any false positive "attacks" from that server, because previously in version 11 it works as normal.
We have a computer with some issues, and everything seems to stem from the RECYCLERS file, 1406 unscannable docs. How do I change that setting so they are all scanned?
Thanks!