Solved

Why are the client's AV version not the latest Symantec Endpoint Manager

Posted on 2009-05-15
4
1,547 Views
Last Modified: 2013-12-09
I've setup symantec endpoint protection manager on a windows sbs server 2003. All went well. Then I added in the clients  by creating the client package and then pushing it out to the clients silently.

It all went well, but somehow when I look at the endpoint manager and the virus definition dates, the dates are not update to date.

I attach a screenshot. Can someone advise how I can troubleshoot this?

Thanks


Noname.jpg
0
Comment
Question by:binele
  • 2
4 Comments
 

Expert Comment

by:AngelSlayer8
ID: 24393728
You can get the defination from Symantec website, the file extension will be .zip, change it to .jdb and copy the file to \Program Files\Symantec\Symantec Endpoint Protection Manager\data\inbox\content\incoming.

P.S.: Find the defination that is .jdb file extension.
0
 

Author Comment

by:binele
ID: 24393813
why isn't this automatic? L
0
 

Expert Comment

by:AngelSlayer8
ID: 24394049
It is actually auto update as it is set while installing the SEP manager. SEP manager update defination is based on Symantec virus defination release, so it is not weird if your defination is 1 or 2 days old.

By the way, the way I provided is the manual way.
0
 
LVL 15

Accepted Solution

by:
xmachine earned 500 total points
ID: 24401870
Hi,

1) Your server is up-to-date (Latest Symantec Version: 2009-05-14 rev. 039)

2) Your SEP clients somehow are not able to download the latest definitions due to some reason.

3) Lets start troubleshooting communication between SEP client and the server:

1) Enable debugging on one SEP machine that has an outdated definitions.

Start > Regedit

The default debug logging can be enabled with the following registry setting:

[HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\SMC]
"smc_debuglog_on"=dword:00000001


2) Enable Sylinkmonitor (SEP monitoring tool) debugging:

To create a Sylink log:

Create the the following registry key (REG_SZ):

[HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\SMC\SYLINK\SyLink]
"DumpSylink"="file path"


The file path value should be a string value (REG_SZ) and is where the log will be generated (e.g. c:\sylink.log).

3) Restart SEP SMC service, by doing this:

Start > Run > smc -stop
Start > Run > smc -start

4) Run SylinkMonitor for 2 minutes, then attach the log file here (c:\sylink.log)


@AngelSlayer8: Symantec releases virus definitions on daily basis.

A Symantec Certified Specialist @ your service
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Some site administrators might be considering how to filter incoming traffic to a site by identifying the domains or networks of the traffic source, in the same way that a spam filter does on an email server, such as blocking all emails sent from th…
The purpose of this Article is to provide information for a newly released variant of malware – with the assumption that many EE Members will have need of the information. According to “Computerworld”, well over one million web sites have been co…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …
Need to grow your business through quality cloud solutions? With everything required to build a cloud platform and solution, you may feel like the distance between you and the cloud is quite long. Help is here. Spend some time learning about the Con…

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now