Symantec Endpoint Protection and Microsoft Server 2008 R2 RDS issues

I installed Symantec Endpoint Protection on to our new Windows Server 2008 R2 that is running Remote Desktop Services.  Once I did this I was no longer able to remote in to the server with the domain administrator account.  Whenever I would I got an error that popped up saying "Access is Denied".  Other users were able to get connected but after a short time they got an error that said "Because of an error in data encryption, this session will end.  Please try connecting to the remote computer again."  I checked everything I could but couldn't find anything.  Once I removed Symantec and restarted I was able to get in.  Any thoughts?
LiberatingInsightAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Michael OrtegaSales & Systems EngineerCommented:
Go to start | run | and type: smc -stop

Try to connect again and see there is a problem.

Another note is that you should not install network threat protection on the server. Make sure the firewall policy that applies the group your server is in is disabled as well. It's enabled by default.

MO
0
LiberatingInsightAuthor Commented:
I did try the "smc -stop" command and it was not recognized.  The client had installed the Symantec software and he thinks that he choose Managed.  I will try to install the software again myself and set it to Unmanaged.
0
Serge FournierAnalyst ProgrammerCommented:
install symantec, but without it's firewall component

this component is known to block everything on any server version
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
The Ultimate Tool Kit for Technolgy Solution Provi

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy for valuable how-to assets including sample agreements, checklists, flowcharts, and more!

jimmymcp02Commented:
what version of sep11 do you have installed (exact build)?
 
 
0
Michael OrtegaSales & Systems EngineerCommented:
If you just installed SEP11 the latest build should be MR5 (11.0.5).  You should install the client on the server in question as a managed client, but make sure the firewall policy is disabled for all server systems. You can disable the firewall policy in SEPM (SEP Manager). Simply logon, go to Policies, identify the firewall policy, and uncheck "enabled". Right click on your client on the server and update the client to force it update immediately. Again, you should not install Network Threat Protection on the server. AV/AS is all you need on the server, so create a client package with those components only.

MO
0
Darius GhassemCommented:
There are known issues with SEP on Windows 2008 server even with the lastest verison of the client install. I would recommend that you don't use this AV on Windows 2008 servers since MS will not even support the server until the AV is removed because of issues presented by this software.
0
Michael OrtegaSales & Systems EngineerCommented:
In response to dariusq I have SEPM/SEP (server/client) running on more than 100 win2k8 servers without problem. I would love to see evidence of post where Symantec has said that there are known issues in this operating system environment that there is not yet a fix for. I'd hate to think that one really does exists and that our farm of servers are potentially at risk of exposure to this issue.

MO
0
Darius GhassemCommented:
Symantec will not admit to the issues. For an example I purchased SEP when it first came out I couldn't get it to work Symantec tech support couldn't get it to work. They even sent someone onsite couldn't get it work so they stated we will give you a refund. Come on a refund. Get it to work!

So, with the new verison of SEP MR5 we installed on test servers to see what affects the new software might have if it would be better. All was good for a couple of days then out of no where network started to sieze, systems started to hang, and etc. Same issues that were presented in the last four verison of SEP 11.

MS states there are known issues with Windows 2008 server and SEP. Before tech support will work on the system they require the system be cleanwipe by the cleanwipe tool.

Now think about it they have had 5 major releases and 4 of them had the same issues and now the 5th does to from my experience at least.

Don't get me wrong I only used Symantec products for everything almost until 2008 when SEP came out and caused me a lot of problems and many customers problems.
0
LiberatingInsightAuthor Commented:
I reinstalled the software as an Unmanaged client and did not install the firewall portion.  Seems to be working okay now.  Thank you for your help.
0
TimSharpe02118Commented:
OK, I disabled SAV and it happened again. I was running a Perfmon data collection set and it does look like the memory usage peaked around 11 AM on 12/30 when the problem occurred. I attached the screen shot of the data collection set. The server has 4 GB of RAM and another 4 GM stick as an online spare. Should I look into turning on SEP and using the full 8 GB of RAM. Also this happened on the Thursday before the holiday and there were only about 1/3 of the staff in the office that day so I'm not sure why the memory would peak then. This is happening at random times, one of the last few times it happened was at 7 PM at night when almost no one was in the office. permon
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Anti-Virus Apps

From novice to tech pro — start learning today.