Quantcast
Channel: Symantec Connect - Products - Discussions
Viewing all 21603 articles
Browse latest View live

Comment ajouter un numéro de série pour activer la licence

May 24, 2019, 4:17 am
$
0
0
I need a solution

Je viens d' installer une console SEPM14 sans problème mais lorsque arrive l'étape d' ajout du numéro serie je suis automatiquement redirigé vers l' interface d' ajout du fichier SLF.

je me suis connecté sur le portail "mysymantec" pour enregistrer le numéro de serie et télécharger le fichier "SLF" malheureusement je ne trouve pas le lien pour ajouter un numéro de serie

Quelqu' un sait comment je peux faire pour enregistrer mon numéro de serie afin de télécherger le fichier "SLF"

eddy

**Translation**

I just installed a console SEPM14 without problem but when the step of adding serial number arrives I am automatically redirected to the interface of adding the file SLF.

I logged into the portal "mysymantec" to register the serial number and download the file "SLF" unfortunately I can not find the link to add a serial number

Someone knows how I can do to register my serial number to download the "SLF" file

0
Search

SEP Syslog(or Event log)

May 24, 2019, 7:52 am
$
0
0
I need a solution

Hello All,

I'm using SEP v14.

And I'm trying to forward SEP Syslogs to our SIEM.

But, I can't find Syslog format. To normalize in our SIEM, I have to know about syslog format which is coming in SIEM.

After nomalizing, we can monitor it with this.

Also, I'm trying to get Windows Event ID to monitor AV for us from SEP.

So, My question is..

1. Where can I get syslog format?

2. Where can I get Windows Event ID for AV monitor?

Thank you in advance for any assistance.

0

PXE don't start

May 24, 2019, 8:47 am
$
0
0
I need a solution

Hi all,

I have all tutorials and all videos read and watch but I don't have a solution for my problem. I have no idea what to do in my case.

I have GSS Suite on a Server 2012R2 in a VM ESXI and on the same VM machina a windows 7 prof. Client. If I want to boot PXE

I become the following screen and after this my Win7 boot normaly but don't boot PXE. Is there anyone who have the same problem?

Thanks for your help

0

Inbound Messages to Symantec.cloud customers bounce back

May 24, 2019, 8:48 am
$
0
0
I need a solution

We are not a Symantec customer, but send to Symetec customers often. Beginning on May 22 we have had several messages returned after being filtered and considered SPAM. All messages had the same issue.

550 5.0.350 Remote server returned an error -> 553 Message filtered

All messages are sent from the originating domain reckner.com through Microsoft Office 365. This is the first time I can recall us having messages returned from Symantec Cloud customers. My senders have had to call the recipients and ask to be whitelisted, which is inconvenient to them. The messages are legitimate business communications with recipients they have communicated with frequently in the past.

I can provide sender/recipient and times if necessary.

0

SEPM 12.1 - Unexpected server error pertaining to Java

May 24, 2019, 10:59 am
$
0
0
I need a solution

Hi! We re are continously having an error in our SEPM. Please see below for the entire Stack Trace. 

Please advise.

java.lang.NumberFormatException: This is not an valid IP address. at com.sygate.scm.util.Utility.getIpLong(Utility.java:530) at com.sygate.scm.server.agentmanager.actions.AgentRegisterHandler.registerComputer(AgentRegisterHandler.java:958) at com.sygate.scm.server.agentmanager.actions.AgentRegisterHandler.agentRegister(AgentRegisterHandler.java:349) at com.sygate.scm.server.agentmanager.actions.AgentRegisterHandler.handleRegistrationRequest(AgentRegisterHandler.java:300) at com.sygate.scm.server.agentmanager.actions.AgentRegisterHandler.handleAction(AgentRegisterHandler.java:204) at com.sygate.scm.server.agentmanager.AgentRequestHandler.handleRequest(AgentRequestHandler.java:90) at com.sygate.scm.server.agentmanager.AgentRequestHandler.handleAction(AgentRequestHandler.java:130) at com.sygate.scm.server.agentmanager.AgentRequestHandler.handleRequest(AgentRequestHandler.java:90) at com.sygate.scm.server.servlet.AgentServlet.doPost(AgentServlet.java:62) at javax.servlet.http.HttpServlet.service(HttpServlet.java:646) at javax.servlet.http.HttpServlet.service(HttpServlet.java:727) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) at com.sygate.scm.pool.HttpResponseFilters.doFilter(HttpResponseFilters.java:82) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:504) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:170) at org.apache.catalina.valves.ErrorReportValve.in
0

CVE-2019-0708

May 24, 2019, 12:40 pm
$
0
0
I need a solution

We are currently running a hybrid environment as we are moving from SEP12 to SEP14, so this question pertains to both versions. 

Has Symantec released any signatures or behavioral/heuristic detection rules for CVE-2019-0708? Thanks.

0

SEP Cloud - how do I contact support? (Urgent Support Needed)

May 24, 2019, 11:16 pm
$
0
0
I need a solution

How do I contact support for Symantic Endpoint Protection Cloud regarding Cloud user licences; I am in the UK if any relavance.

Essentialy I need to resolve a urgent licence issue as shown below.  (How can usage and limit both be 0!)

 

Also If I unroll a device, it wont add it back to my avalible licence pool if that makes sense. How stupid that I can unroll a device, but can not enroll a device following unrolling a device due to not having any licences avalible!

 

All came about due to major hardware chnages folling the death of my motherboard, what inturn caused the SEP on my computer to become unlicnced. 

 

Regards: Elliott.

0
1558766427

ProxySG integrate with Symantec DLP

May 26, 2019, 8:05 am
$
0
0
I need a solution

Hi All,

I've configured the ICAP configuration on the ProxySG.

I'm trying to configure the action of "Perform Request Analysis" but I got an error message

% Load failed with error(s)

Policy installation
Compiling new configuration file: Inline configuration
Sun, 26 May 2019 15:07:56 UTC
Error: Late condition guards early action
Condition 'http.response.apparent_data_type=executable' vpm-cpl:43
Action 'request.icap_service(dlp, fail_closed)' vpm-cpl:46
Error: Late condition guards early action
Condition 'http.response.apparent_data_type=executable' vpm-cpl:43
Action 'request.icap_service.secure_connection(auto)' vpm-cpl:46

There were 2 errors and 0 warnings

ICAP configuration on ProxySG

0
Search

BCAAA agent SSO max thread limit reached

May 27, 2019, 1:43 am
$
0
0
I need a solution

Hello, 

Our problem is cannot authenticate client with ip address. We have been using windows sso authentication with DCQ and CQ. We were checking bcaaa agent event log and saw some error and information event log.  BCAAA agent version is 6.1.4.0 and ProxySG version is SGOS 6.7.4.2

Information log : SSO max thread limit reached. You may need to increase the MaxSSOThreads parameter in sso.ini ( Event id : 2208 ) 

Error log : Could not send response to remote system: 0x2736 (10038); status=10038:0x2736:An operation was attempted on something that is not a socket. ( Event id : 400 ) 

Anyone help us ? please

0

Web Isolation "there is no access To localstorage"

May 26, 2019, 6:04 am
$
0
0
I need a solution

Hello; I have two errors in the Web Isolation, 1. “There is no access to the localstorage, Please contact your system administrator” : I found an article but it didn’t help me, I tested on all three browsers (Firefox, chrome and IE) but it doesn’t work. https://support.symantec.com/en_US/article.TECH251... 2. “No Detailed diagnostic were found”: i didn't found nothing. Please find the screenshots of the errors in attachement. Thanks for helping me.

0

User quarantine security

May 26, 2019, 7:31 am
$
0
0
I need a solution

Hi

I have SMG 10.6.6. I've turned on quarantine for users. I set the frequency of notifications about new emails in 1 hour. It works. However, I noticed the problem when the message about blocked messages is passed to another person, this new person can view the quarantine of the person from whom the message was received. Is it possible to force logging into SMG or to secure it in a different way to view quarantine?

Best regards

Tom

0

CCS asset export automation

May 27, 2019, 7:32 am
$
0
0
I need a solution

Hello CCS Experts,

CCS version is 11.5. I'd like to automate and schedule what the manual procedure of "Manage->Assets->Asset Tasks->Export Assets as CSV" does. I'm not finding any option/job/query for this task in the GUI, nor am I successful with PowerShell, e.g.

Search-Assets -AssetType "Windows Machine" -NumberOfObjectsToRetrieve 1000

gives a list of DisplayNames (and some other information), but it's very far from being as detailed, as the manual export. Any help appreciated, thank you in advance.

Regards,

Peter

0

Unblock wmz files

May 27, 2019, 7:43 am
$
0
0
I need a solution

Dear all,

wmz files are blocked from a default content policy but we cant find which file type is wmz so as to be excluded from the content policy.

Could you please help?

Thx in advanced.

0

Folders exclusion does not seem to work

May 27, 2019, 8:01 am
$
0
0
I need a solution

Hi everyone, I need an hint about folder exclusion.

I'm a software developer, and a customer of my company uses an ERP we provide. It is a standalone app installed on about 100 clients. Every client also has a Symantec Endpoint Protection client installed. Every time we install or update our ERP, SEP deletes (or quarantine) some DLLs, but it is a false positive.

We asked our customer to add an exception in the server configuration to exclude our folders from being scanned, but it seems that is doesn't work. The customer said that, despite the exception, SEP always scans the DLLs everytime they change, and therefore they are quarantined with every update.

Is there a way to solve this problem? We can't submit a false positive for our DLLs due to the very rapid update of our software (we release a new version every 3/4 days), and we don't know how to deal with the problem.

Thanks for the support!

0

[SEP]Install Rollbank, SEP_INST.LOG Display "RunSymEFAQuery: exitCode converted from HRESULT: 13"

May 27, 2019, 8:48 am
$
0
0
I need a solution

Hello Everyone

1# Have any one have the same issue. SEP_INST.LOG Display Return Value 3 is ...

MSI (s) (44:D8) [15:57:43:743]: Invoking remote custom action. DLL: C:\Windows\Installer\MSIC795.tmp, Entrypoint: RunSymEFAQuery
動作開始 15:57:43: RunSymEFAQuery。
RunSymEFAQuery: cmdline: "C:\TEMP\NTPCSEPMSI64\Program Files\Symantec\Name\Version\Bin\EFAInst.exe""Symantec Endpoint Protection 14.2.3332.1000" /query
RunSymEFAQuery: exitCode converted from HRESULT: 13
RunSymEFAQuery: The SymEFA installer query had an unexpected exit code. The current installation will fail and rollback!
CustomAction RunSymEFAQuery returned actual error code 1603 (note this may not be 100% accurate if translation happened inside sandbox)
MSI (s) (44:94) [15:57:44:292]: Machine policy value 'DisableRollback' is 0
MSI (s) (44:94) [15:57:44:292]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts 3: 2 
動作結束 15:57:44: RunSymEFAQuery。傳回值 3。

I have create CASE, but chine support tell me don't know this error code detail....

Thanks

0
Search

Intelligent services Database not downloading

May 27, 2019, 10:01 pm
$
0
0
I do not need a solution (just sharing information)

BCIS database still downloading in progress from yesterday also i am getting an error.

Attached error.

0

Info:Content download to the server failed. Symantec Endpoint Protection Manager could not update Symantec Endpoint Protection Manager Content Catalog 14.0 RU1.

May 28, 2019, 12:00 am
$
0
0
I need a solution

Im having problem with liveupdate it says below

Info:Content download to the server failed.
Symantec Endpoint Protection Manager could not update Symantec Endpoint Protection Manager Content Catalog 14.0 RU1.

Product:Symantec Endpoint Protection Manager Content Catalog 14.0 RU1
Version:
Language:
Monikers:,{FEFE68E7-0A93-1A98-2647-DB8261242A06}
Sequence:
PublishDate:
Revision:0
Source:Public LiveUpdate Server (Symantec LiveUpdate Server)
Size(in bytes):-1

<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">

-<System>

  <Provider Name="SEPM" />

  <EventID Qualifiers="0">7201</EventID>

  <Level>3</Level>

  <Task>2</Task>

  <Keywords>0x80000000000000</Keywords>

  <TimeCreated SystemTime="2019-05-28T06:33:47.000000000Z" />

  <EventRecordID>59620</EventRecordID>

  <Channel>Symantec Endpoint Protection Manager</Channel>

  <Computer>SMARTSEPSVR01.smart.LOCAL</Computer>

  <Security />

  </System>

-<EventData>

  <Data>Info:Content download to the server failed. Symantec Endpoint Protection Manager could not update Symantec Endpoint Protection Manager Content Catalog 14.0 RU1. Product:Symantec Endpoint Protection Manager Content Catalog 14.0 RU1 Version: Language: Monikers:,{FEFE68E7-0A93-1A98-2647-DB8261242A06} Sequence: PublishDate: Revision:0 Source:Public LiveUpdate Server (Symantec LiveUpdate Server) Size(in bytes):-1</Data>

  </EventData>

  </Event>

Below screenshot shows the Symantec Endpoint Protection Manager Content Catalog 11.0

Here's what i already do but still the content catalog 11 is still there. We are running in version 14 now

Deleted files in here C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager and run liveupdate. 

reinstall liveupdate . Update Lucatalog

0

Roaming Clients and SEPM/Cloud

May 28, 2019, 12:39 am
$
0
0
I need a solution

Hello Mates,

A question on the cloud option in SEP14.2 where we can have an extension of SEP in the cloud for the romaing endpoints that do not have access to the SEPM.

Is it mandatory for the endpoint after the client install, to at least connect to the SEPM once?
The point I am asking here is, can we export the client install package from the SEPM for a specific Group in SEPM and then deploy it on a roaming computer which can never connect to the SEPM and then manage the endpoint from the cloud console permanently ?

Regards
Fawaz M

0

The user could not be determined by the Single Sign-on agent.

May 28, 2019, 3:00 am
$
0
0
I need a solution

Hello guys, 

We have been using DCQ and CQ on windows sso authentication. If the client is running with not domain user then DCQ and CQ will fail. We were organizing policy of second layer to access websites for clients that didn't matter for authentication successful by windows sso realm but client couldn't get access to website with any rule. The client side receive error message of authentication. The client could get access to the website that has domain user and authentication successful.  

Are you guys have any idea for this issue ? 

Thank you for support.

Web authentication layer
SourceDestinationActionTrackcomment 
anyanyauthSSO(auto)none  
Web access layer
SourceDestinationServiceTimeActionTrack
anyanyanyanyAllowNone
test@example.comanyanyanyAllowNone
0

Symantec CSP agent - Regedit Value to change name/guid etc

May 28, 2019, 7:12 am
$
0
0
I need a solution

Hello,

Is there any path in regedit or config file where we can change the guid of the symantec csp agent ?

I now that in different solutions such as solid core for example, you can delete in regedit the value of GUID so in the management console you cannot have the same agent host name with different ip etc

thnx

0
Viewing all 21603 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>