• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1087
  • Last Modified:

SEP Security Status reportes dekleted client

I have SEP management console installed on a server and the Security Status is "attention needed" because of one Client reporting "Intrusion Prevention Signature Failure". The issue is that this client (server) has been shut down and removed without uninstalling the SEP Client. What I did is that I have removed the Client from the management console, but the report still shows the security status RED and points to the same client.
Autorefresh is set to 15 minutes, restart of the console did not help either.

Any ideas?
0
haldoxp
Asked:
haldoxp
  • 4
  • 2
  • 2
  • +2
2 Solutions
 
Sudeep SharmaTechnical DesignerCommented:
Did you tried CleanClients command from a web browser on the SEPM:

http://127.0.0.1:9090/servlet/ConsoleServlet?ActionType=ConfigServer&action=CleanClients

Sudeep
0
 
haldoxpAuthor Commented:
An output i get from this one:
  <?xml version="1.0" encoding="UTF-8" ?>
  <Response ResponseCode="0" />
0
 
haldoxpAuthor Commented:
Well obviously this did not help, any other suggestions?
0
Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

 
Sudeep SharmaTechnical DesignerCommented:
Since how many days are passed the client has been removed? The offline clients are purged from the console after 15 days if I am not wrong. If it has not been 15 days you would need to wait till then.

Sudeep
0
 
jimmymcp02Commented:
What version of sep are you using? there is a bug in sep11 mr5 that causes the status tracker not to track risk correctly see


http://www.symantec.com/business/support/index?page=content&id=TECH103087

look up fix id 1947676
0
 
haldoxpAuthor Commented:
@Sudeep: it is more than 15 days since I deleted the client.

@Jimmy: The Version is 10.0.4202.75
0
 
jimmymcp02Commented:
There is no symantec end point 10.0.4202

Are you sure we are talking about the same product?    It looks like you might be using Sep11 MR4 have you tried restarting the server and clearing the status page?

You are using an older version the currecnt version is sep11mu6 mp2
0
 
haldoxpAuthor Commented:
Sorry my bad it is 11.0.4202.75 of course

I tried to restart the server and run CleanCLients command

how exactly should I clear the status page?
0
 
jmlambTechnical Account ManagerCommented:
Hi haldoxp,

jimmymcp02 has provided the solution for you. The issue you're having is due to a defect and there is no workaround for it. Below are the corresponding fixes related to this.

Symantec Endpoint Protection Manager Home page "Attention needed" details do not match client properties
Fix ID: 2009806
Symptom: On the Symantec Endpoint Protection Manager home page, "More Details, IPS Failures" does not match client properties.
Solution: A SQL query for IPS Failures was updated to that Symantec Endpoint Protection Manager shows the latest IPS version.

Symantec Endpoint Protection Manager Home Page "Security Status . Attention Needed" lists old data in details
Fix ID: 1745613
Symptom: Symantec Endpoint Protection ManagerHomePage "Security Status . Attention Needed" lists old data in details.
Solution: The algorithm to create the hardware key was changed such that the hardware key should not change with minor hardware changes, such as disabling of NICs.

You'll need to upgrade to Release Update 6 Maintenance Patch 1 (RU6 MP1) or later. RU6 MP3 is currently available.
0
 
younghvCommented:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

  • 4
  • 2
  • 2
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now