Solved

Endpoint Loading in Citrix sessions

Posted on 2012-03-14
2
1,109 Views
Last Modified: 2013-12-09
Recently users started seeing an extra Symantec Endpoint icon in their system tray. It's coming down with their Citrix session from the servers (of them). How do I keep this from happening? I'm not sure of the additional bandwidth that this may be using and I don't see a point for it to be running when all machines have AV anyway.
0
Comment
Question by:TSB14883
2 Comments
 
LVL 23

Expert Comment

by:Coralon
ID: 37726925
Are you running a published app in a published desktop? or multiple published apps from different servers?

These are common scenarios that could cause the symptoms you describe.  If it is, check your version of Symantec and see if there is simply a way to hide it.. If it doesn't work, you can look at blocking the systray icons from the published apps, but that could hide important icons.

Coralon
0
 
LVL 1

Accepted Solution

by:
jduell earned 500 total points
ID: 37727609
This is common with Symantec's SMCGUI and terminal services.

There is a regkey to Prevent SmcGui from loading with each user session

HKLM\SOFTWARE\Symantec\Symantec Endpoint Protection\SMC\LaunchSmcGui=0x0
See Symantec Endpoint Protection 11.0 Terminal Server and Citrix Best Practices http://www.symantec.com/docs/TECH91070

We applied this setting by GPO but you can create a regkey file just the same...

A word of caution... adding this regkey will also prevent Symantec popups from displaying on the console.  Not a real issue unless you have Symantec SEP issues that require the troubleshooting popup... you have to either set the Dword value to 1 just long enough for the SMCGui to launch. Or delete the LaunchSmcGui key all together

Second word of caution: Without the LaunchSmcGui key, if SEP detects a problem, all the existing user sessions will also get the popups and likely click update now... or scan now... causing the server to tank. If not locked down correctly they may also change Symantec Endpoint Protection  settings. This is why we enforce the setting with a GPO... Better Safe than Sorry

This problem has been around for years... Symantec is aware of it but it just isn't a priority to fix it so it only runs on the console... Here is hoping someone at Symantec is listening.

Good Luck
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

These are on the increase and getting more common these days. Users who use the Google search engine may complain of having their search redirected to unwanted sites, regardless of what browser is used. This happens when the system is infected with…
The purpose of this Article is to provide information for a newly released variant of malware – with the assumption that many EE Members will have need of the information. According to “Computerworld”, well over one million web sites have been co…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now