• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1573
  • Last Modified:

Why are the client's AV version not the latest Symantec Endpoint Manager

I've setup symantec endpoint protection manager on a windows sbs server 2003. All went well. Then I added in the clients  by creating the client package and then pushing it out to the clients silently.

It all went well, but somehow when I look at the endpoint manager and the virus definition dates, the dates are not update to date.

I attach a screenshot. Can someone advise how I can troubleshoot this?

Thanks


Noname.jpg
0
binele
Asked:
binele
  • 2
1 Solution
 
AngelSlayer8Commented:
You can get the defination from Symantec website, the file extension will be .zip, change it to .jdb and copy the file to \Program Files\Symantec\Symantec Endpoint Protection Manager\data\inbox\content\incoming.

P.S.: Find the defination that is .jdb file extension.
0
 
bineleAuthor Commented:
why isn't this automatic? L
0
 
AngelSlayer8Commented:
It is actually auto update as it is set while installing the SEP manager. SEP manager update defination is based on Symantec virus defination release, so it is not weird if your defination is 1 or 2 days old.

By the way, the way I provided is the manual way.
0
 
xmachineCommented:
Hi,

1) Your server is up-to-date (Latest Symantec Version: 2009-05-14 rev. 039)

2) Your SEP clients somehow are not able to download the latest definitions due to some reason.

3) Lets start troubleshooting communication between SEP client and the server:

1) Enable debugging on one SEP machine that has an outdated definitions.

Start > Regedit

The default debug logging can be enabled with the following registry setting:

[HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\SMC]
"smc_debuglog_on"=dword:00000001


2) Enable Sylinkmonitor (SEP monitoring tool) debugging:

To create a Sylink log:

Create the the following registry key (REG_SZ):

[HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\SMC\SYLINK\SyLink]
"DumpSylink"="file path"


The file path value should be a string value (REG_SZ) and is where the log will be generated (e.g. c:\sylink.log).

3) Restart SEP SMC service, by doing this:

Start > Run > smc -stop
Start > Run > smc -start

4) Run SylinkMonitor for 2 minutes, then attach the log file here (c:\sylink.log)


@AngelSlayer8: Symantec releases virus definitions on daily basis.

A Symantec Certified Specialist @ your service
0

Featured Post

Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now