Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1175
  • Last Modified:

Endpoint Loading in Citrix sessions

Recently users started seeing an extra Symantec Endpoint icon in their system tray. It's coming down with their Citrix session from the servers (of them). How do I keep this from happening? I'm not sure of the additional bandwidth that this may be using and I don't see a point for it to be running when all machines have AV anyway.
0
TSB14883
Asked:
TSB14883
1 Solution
 
CoralonCommented:
Are you running a published app in a published desktop? or multiple published apps from different servers?

These are common scenarios that could cause the symptoms you describe.  If it is, check your version of Symantec and see if there is simply a way to hide it.. If it doesn't work, you can look at blocking the systray icons from the published apps, but that could hide important icons.

Coralon
0
 
jduellCommented:
This is common with Symantec's SMCGUI and terminal services.

There is a regkey to Prevent SmcGui from loading with each user session

HKLM\SOFTWARE\Symantec\Symantec Endpoint Protection\SMC\LaunchSmcGui=0x0
See Symantec Endpoint Protection 11.0 Terminal Server and Citrix Best Practices http://www.symantec.com/docs/TECH91070

We applied this setting by GPO but you can create a regkey file just the same...

A word of caution... adding this regkey will also prevent Symantec popups from displaying on the console.  Not a real issue unless you have Symantec SEP issues that require the troubleshooting popup... you have to either set the Dword value to 1 just long enough for the SMCGui to launch. Or delete the LaunchSmcGui key all together

Second word of caution: Without the LaunchSmcGui key, if SEP detects a problem, all the existing user sessions will also get the popups and likely click update now... or scan now... causing the server to tank. If not locked down correctly they may also change Symantec Endpoint Protection  settings. This is why we enforce the setting with a GPO... Better Safe than Sorry

This problem has been around for years... Symantec is aware of it but it just isn't a priority to fix it so it only runs on the console... Here is hoping someone at Symantec is listening.

Good Luck
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

What Kind of Coding Program is Right for You?

There are many ways to learn to code these days. From coding bootcamps like Flatiron School to online courses to totally free beginner resources. The best way to learn to code depends on many factors, but the most important one is you. See what course is best for you.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now