I need a solution
SBE Cloud client shows offline but is protected and can update definitions.
Did not find a solution in the forum.
0
↧
SBE Cloud client shows offline
↧
Symantec client blocking update of Windows 10
I need a solution
Hi,
Windows 10 clients need to be updated. Problem I am having is that Symantec client 14.2.0 is blocking the update. 1 person uninstalled the client so that the updates in installed. Today I stopped Symantec client smc -stop then updates were installed. Please help.
Thanks
0
↧
↧
Symantec AWS DLP and Proxy Solution
I need a solution
My managment has asked me to provide a greenfield DLP solution within our AWS cloud environment. The on-prem solution used is currently provided by Symantec using a BlueCoat SG explicit proxy configuration feeding DLP via ICAP. lLooking to do the same exact deployment within AWS with no inter dependencies between AWS and the on-prem solutions.
Since I am not familiar with deploying Symantec within the AWS cloud enviroment, I was hoping I could get some real hands practical feedback on how to deploy both the DLP and proxy solutions in AWS to meet the above stated requirements.
My initial plan was to create an inside forward-proxy BlueCoat instance ELB sandwich using transparent proxy, but found out that the AWS version of BlueCoat doesn't support this method. My alternate plan is to use an explicit proxy configuration with both the Windows and LINUX EC2 instances to forward the internet bound HTTP/S traffic to the BlueCoat sandwich. The traffic of interest would then be sent decrypted to the Symantec DLP via secured ICAP for inspection. Does anyone have any experience with this type of solution?
If not, is there any better recommendations with getting the ec2 instances internet bound HTTPS traffic decrypted, sent to the DLP, then back to the proxies to encrypt and send onto destination if no mitigation is required? Also, can someone confirm whether or not if the AWS BlueCoat instances support ICAP? One of the customer's resources told me that they don't so looking for confirmation on that feature.
At this point am open to any suggestions and all feedback would be greatly appreciated.
Thanks in advance,
Jaime
0
↧
workaround to block psiphon ??
I need a solution
A proxy application called "psiphon" can pass and avoid the filtering. It's not categorized in the proxy avoidance category and not recognized as an application by Bluecoat.
We tried to block it using the following regex "\/\/\b\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}\b" that used to work with me but it didn't work this time.
Any Ideas ??
0
↧
See assigned account and expiration date on client?
I need a solution
Hello,
we provide the endpoint protection cloud to various customers as SAS. (We manage the registration installation etc.)
Now on a client we see a installed client, but don't know to what account is is related and what the expiration date is.
The only thing we see in "Help"->"Info" is a serial number and endpoint id.
Where/how can I find the matching login/account, to also see the licence lifetime?
0
↧
↧
New version of CleanWipe
I need a solution
Hello.
I want to uninstall a client using CleanWipe, which I am downloading from here: https://support.symantec.com/en_US/article.HOWTO12...
The problem is that my client version is 14.2.770 and CleanWipe is 14.2.760 and I cannot do it this way.
Can someone tell me when can I expect the new version of this utility?
0
↧
Data Loss Protection for Mobile Devices
I need a solution
I need to protect my Organization sensitive data from leaking. I have secured endpoints, network and storage but what about mobile devices. I have searched and found that DLP suite no longer supports mobile devices as of V15.0.
How can I secure mobile devices. If someone downloads email attachements containing sensitive data from outside the corporate network.
0
↧
Will Endpoint Protection work on Server 2003?
I need a solution
Hi,
I'm running Symantec Endpoint Protection Small Business Edition 14.2. I was wondering if this will work on my old 2003 Server until I'm able to migrate away from it? Thanks.
0
↧
Error when migrating 15.1 "Failed to run migration action "UpgradeReadinessTool""
I need a solution
We get below error during migrating 14.5 to 15.1 , please let us know what we are missing.
We have placed the Readiness extract in URT folder (without any sub folders). all seems fine in Readiness tool as well.
We have placed the Readiness extract in URT folder (without any sub folders). all seems fine in Readiness tool as well.
SQLPlus standard output end
Aug 29, 2018 9:06:36 AM com.symantec.dlp.migrationcommon.MigrationActionsExecutor executeMigrationActions
SEVERE: Failed to execute migration actions
com.symantec.dlp.migrationcommon.MigrationException: Failed to run migration action "UpgradeReadinessTool"
at com.symantec.dlp.migrationcommon.MigrationActionsExecutor.runMigrationAction(MigrationActionsExecutor.java:54)
at com.symantec.dlp.migrationcommon.MigrationActionsExecutor.executeMigrationActions(MigrationActionsExecutor.java:100)
at com.symantec.dlp.migrationcommon.MigrationUtility.runMigrationUtility(MigrationUtility.java:115)
at com.symantec.dlp.migrationcommon.MigrationUtility.runMigrationUtility(MigrationUtility.java:70)
at com.symantec.dlp.enforceservermigrationutility.EnforceServerMigrationUtility.runMigration(EnforceServerMigrationUtility.java:17)
Caused by: com.symantec.dlp.migrationcommon.MigrationException: Failed to execute prechecker SQL script
at com.symantec.databasemigration.UpdateReadinessProvider.precheck(UpdateReadinessProvider.java:104)
at com.symantec.dlp.enforceservermigrationutility.actions.UpgradeReadinessToolMigrationAction.runAction(UpgradeReadinessToolMigrationAction.java:70)
at com.symantec.dlp.migrationcommon.MigrationActionsExecutor.runMigrationAction(MigrationActionsExecutor.java:47)
... 4 more
Caused by: java.lang.Exception: SQLPlus error:
no rows selected
0
↧
↧
Symantec Endpoint Protection blocked Docker Community installer for Windows 10 Pro operating System
I need a solution
Hi
I have Symantec Endpoint Protection installed on my Windows 10 pro. When I am trying to install Docker Community Edition its been blocked and deleted from my system.
Can someone provide me a solution on this ?
Thanks
0
↧
USB Device Control - Security hole - please fix urgently
I need a solution
Good day
As a company,we have elected to use Symantec Endpoint Protection for Cloud as our platform to provide Antivirus / Antimalware and USB Device control for our VMware vCloud offering. This will be used on our Management platform and utilised by our entire Support and Project Delivery Teams.
I have configured our environment and have come across what I consider to be a rather large Security Risk. We are using USB Device Control to manage access to USB devices on our Windows 10 Laptops. I am able to control USB sticks, and deny their access / allow Read Only. When connecting an Android Mobile phone, no matter whether I set the policy to Deny or Read Only, I am able to bypass this policy. The policy is ignored and I am able to copy files to and from the Android device from the Windows 10 Laptops which we use.
Details of Systems:
Laptops - Lenovo T470
Operating System - Windows 10 LTSB
Symantec Endpoint Protection SBE - NIS-22.14.2.13
Can you please advise whether this "bug" has been reported previously?
Can you please advise when this will be "fixed"?
If this is not going to be fixed within the next two weeks, the likelihood is that we will have to reject the product and source an alternative, secure product. We are managing a Secure Cloud, and the inability to prevent users from copying files to and from the Management platform is of great concern.
Thanks
0
↧
Receiving Connection Timeout From MessageLabs.com
I need a solution
We cannot send email to our partner! We keep getting the following error:
Remote Server at cluster5a.eu.messagelabs.com (85.158.139.103) returned '550 4.4.7 QUEUE.Expired; message expired'
Remote Server at cluster5a.eu.messagelabs.com (85.158.139.103) returned '441 4.4.1 Error encountered while communicating with primary target IP address: "421 4.4.2 Connection dropped due to ConnectionReset." Attempted failover to alternate host, but that did not succeed. Either there are no alternate hosts, or delivery failed to all alternate hosts. The last endpoint attempted was 85.158.139.103:25'
I have check the symantec blacklist and it says we do not have a negative reputation.
Our mail servers ip address are:
82.85.144.121
88.35.52.221
Please can you help me?
Regards
Fabio
0
↧
DLP and Egnyte
I need a solution
Does DLP work with Egnyte? If so can someone please point in the direction of some documentation for implementation. Thank you.
0
↧
↧
SEP 14.2 MSI command line reference - extended options?
I need a solution
Hello all,
Having recently joined the SEP userbase, I'm trying to automate installs and updates as much as possible.
Unfortnately we are not currently in position currently to push use SEPM, but with some major network overhauls on the horizon, I do see us using it eventually.
I've been referencing this TECH doc: https://support.symantec.com/en_US/article.TECH102668.html
- also I've adapted some portions from other discussions I've seen on this forum.
This is my current setAid.ini:
; NOTE: Do not edit the config below
[PREDEFINED_SMC_CONFIG]
AppType=105
VendorID=4096
PlatformType=WIN64BIT
PackageChecksum=cb6a907f5bdc7e9e3ef0383d31fc99bd
; User configureable options
[CUSTOM_SMC_CONFIG]
InstallNewInstanceOnly=0
InstallUserInterfaceLevel=s
KeepPreviousSetting=1
InstallationLogDir=C:\Logs\SEP14.2.770-silentinstall.LOG
DestinationDirectory=
LaunchIt=1
AddProgramIntoStartMenu=1
OptOutRepSubmission=1
UIRebootMode=0
ReducedSize=0
PromptType=SNOOZE
RebootMinutes=180
HardReboot=false
AutoReboot=false
RebootRandomize=true
RebootRandomizeHours=2
RebootMethod=NONE
SnoozeInterval=60
RebootDay=TODAY
RebootDisplayTimeout=60
Countdown=5
RebootPromptUser=true
RebootPromptMessage=The Symantec Endpoint Protection installation requires this computer to restart.
RebootMaxSnoozeCount=3
RebootSchedule=LATER
[LU_CONFIG]
ServerProduct=SESM AntiVirus Client Win64
ServerLanguage=English
ServerVersion=14.2.770
SequenceNumber=0
ServerMoniker=
ClientProduct=SESC AntiVirus Client Win64
ClientLanguage=English
ClientVersion=14.2.770
ClientMoniker=
SequenceTag=PATCH
ShortName=spcAvClient64en_14_2
DisplayName=Symantec Endpoint Protection Win64 14.2.770.0000 (English)
Language=en_us
CONNECT_LU_SERVER=1
[FEATURE_SELECTION]
Core=1
SAVMain=1
Download=1
NotesSnapin=0
OutlookSnapin=1
Pop3Smtp=1
PTPMain=1
TruScan=1
DCMain=0
NTPMain=0
Firewall=0
ITPMain=0
LANG1033=1Now here is where my questions begin.
- Using "KeepPreviousSetting=1" will preserve custom-configured scans?
- I can't seem to find reference to the option to specify Client Type? Standard/Embedded/Dark
- Will my "FEATURE_SELECTION" be adhered to even though the installer defaults to the "Typical" Installation, not "Custom" ?
- Setting "InstallUserInterfaceLevel=s" doesn't appear to have actually done anything. I'm still clicking through all of the same pages, except my features and other setttings are already populated. I assume changing to "InstallUserInterfaceLevel=u" should automate the entire process once I'm ready?
- Similar to "OptOutRepSubmission=1" is there an option to Opt-Out of the "Data Collection - Installation Options" ?
Thank you very much!
J
0
↧
Network applications holding connections to network share
I need a solution
Running SEP 14.2.770.0000 on Windows 10 workstation. During software development programs are copied from local workstation to network share. Application is executed from network share. After program stops execution for about 5 min time frame new versions of the application cannot be copied to the network share. Something has the files (exe's and dll's) still locked up an in use.
Tried various exclusions. Tried Disabling SEP. Only un-installing the Endpoint Protection fixes the problem. What is holding a lock on the program, it seems that it SEP 14.2 but even with the program disabled we still have issue. SEP is only loaded on workstation and not on network server. We did not have issue with version 14.0.3.
0
↧
use SEP 14 to block Network Access for Win10 1703 and older win10
I need a solution
Is there a way to use SEP 14 to block network access on Windows 10 1703 and older Windows 10 versions?
we have some win10 users who are dragging their feet on upgrading to Win10 1709 and so we want to see if we can use SEP14 to implement Firewall Rules or IPS or anything in SEP's arsenal to automatically block network access if the OS is Windows 10 1703 and older Win10 versions? and automatically unblock when Win10 1709 is installed?
0
↧
proxySG-Unexpected behaviour
I need a solution
Hi Team,
Customer has configured emplty whitelist policy (i am not sure why they configured), In That polcy none of the url is present(its emply).
The rule like that,
Any Whitlist policy(empty) any any allow.
But when in check test the url category in the proxy its some of the urls are matching that empyt policy.
When i disable this policy that url is not working. even in that policy trace also it matches in that policy only.
Please advise.
Thanks,
Ram
0
↧
↧
upgrade Path and procedure for CAS
I need a solution
upgrade from current version 1.3.6.2 to version 2.3.1.2 , Kindly provide the procedure
0
↧
Guard Boot stopped showing up on dual boot encrypted windows with unencrypted linux
I need a solution
Hi,
It uses to work great for both windows and linux, and suddently the boot guard dissapeared and not showing up on power on / restart
Now the Guard Boot not showing up, it goes straith to grub bootloader, from there i can successfully boot unencrypted linux.
But can't boot encrypted windows.
I tried restoring the guard boot, by downloading recovery image.
If i boot from recovery image, the drive is recognized, i enter my passphrase and successfully boot to windows.
From there i tried running:
pgpwde --recover --disk 0
But i get:
Error: This drive is already managed.
0
↧
Pls help for application error 512
I need a solution
Hello, I have aprobleme on my symantec ghost. I would like to create a picture but the copy of the picture does not want to launch. The problem is that I have everything set up and open all the ports but it does not work. the error message is :
Application error 512
Ghostcast Write error with Ghostcode 19944
If the problem persists, contact symantec Technioal support
And on the server ghost software the error message is :
Connection reset by client
0
↧