Has anyone been successful in pushing an update using SolarWinds Patch Management? I'm trying to upgrade our agents from 14.5 to 15 in a more automated fashion. If not, what SMS tools seem to work the best here?
Hi, all
Im a new for this product, i have a problem with endpoint version, i have two endpoint servers, endpoint 1 and endpoint 2,
the problem : in endpoint 1 the version status display correct version :14.6.0.32030 same as enforce , but not with endpoint 2, it says "unknown" and N/A,
this is a fresh installation dlp 14.6 with oracle 11g for the DB,
any suggestion ?
for the endpoint servers i use VM's
and i am not importing the solution pack yet,
see the attachment file for the SS
regards,
Dwi
newbie
Hi,
I tried to add a certificate from one of our customers in my lab but got the message that the certificate is invalid (it's definitely not expired but I guess that's not the problem...). The hash algorithm is sha384 and it was issued by an intermediate CA.
I was wondering if there are any documentaries about the requirements in order to add a certificate exception?
It did work with a certificate I issued from my lab's root CA (sha384 as well as sha1).
Thanks!
Hello,
I got the return email message from cluster8.eu.messagelabs.com, the message is connection timed out.
I tried to check if our email server has a negative reputation from http://ipremoval.sms.symantec.com/lookup/.
And the reply is below.
The IP address you submitted, 60.251.126.92, does not have a negative reputation and therefore cannot be submitted for investigation.
May I know how to solve the problem?
Then our email server can communicate with server cluster8.eu.messagelabs.com without problems.
Best Regards,
Alex
We recently upgraded our SEP Manager to version 14.0.1 RU1 Build 3752(14.0.3752.1000) and since this upgrade a lot of our clients are malfunctioning. We only upgraded the server and did not create an Install package for the clients yet.
After the upgrade of the server some of the clients received a message from the Windows 7 action center that Symantec Endpoint Protection is malfunctioning and that there is no firewall configured. After a reboot of the computer all network cards are malfunctioning and it's not possible to make any network connection (wireless or cable).
After running cleanwipe on the computer network functionality was restored and we could install the new client version.
Our clients are on version 14.0.2332.0100 and no install package was active for the group they where in. I assume that a server upgrade should not affect the client installation if no install package was enabled?
We upgrade our SEPM on 26/10 and even today we received calls from malfunctioning SEP clients.
Anybody else encountered the same problem? I can provide the SEP_INST.LOG, SYMEVENT.LOG and Cleanwipe log from1 of the malfunctioning computers.
Thx
Tom
Hello, I need to move our existing SMG VM to another Hyper-V Cluster, so I exported the existing one and imported it into the new Hyper-V Host. After starting the VM there was no eth0 anymore, even though there is one in the VM Hardware settings. How can I re-configure the eth0 interface?
Hi,
currently we are facing the following problem in my company. Some users from a site which has no connection to our central systems used a template to deploy some of their machines, which automatically installed SEE RSE V 11.1.0 Build 9900 on this machines. Now we need to uninstall them. Normally we would assign a policy to the specific clients which allows them to uninstall RSE via normal software manager. But this clients wont receive the new policy, because they cant make a connection to get the new policy.
Now we are searching for a way to remove the software from the devices with some kind of Cleanup Tool or Script. But unfortunately it seems that there a no "Cleanup-Tools" or something around. I found one article from symantec displaying manual steps with removing registry entries and folders, but it doesnt work on windows 7. So is there a possibility to remove this Software? Please help.
Kind regards,
Julien
Hi all,
in Reports and Monitors, when you select a server from the drop-down menu, old sep Management-Servers are listed which are not in use anymore. See attached screenshot.
Is there a way to remove them? We tried to do that under Admin -> Servers -> Local Site -> Edit Site Properties -> General, but there are only those Management Servers listed which are actually in use. The old ones are not displayed there and cannot be removed.
Thank you.
Best regards
concentric
Hi all,
I have a question about SEP 14 clients. They're not updating automatically as I want. This is wat happend.
1 month ago I migrated the Symatec update server from server A to server B due conflicts with other programs. Everything went wel and I also changed the update policy in SEPM. After that I updated the policy on the client and tried Liveupdate. Everything working fine and updating. But now comes the problem, after 3 weeks the definitions are still the same as at the time I manually ran liveupdate. So I ran liveupdate again and it got some new definitions. I checked my configuration, but everything is fine I think. The only thing changed is the location of the update server. The clients arent updating automatically on schedule, I need to run the updates manually.
This is causing some security issues in my network. Is there someone who have an explanation for this of even better, an solution?
Greetings,
Timo
I am having trouble sending individual e-mails and getting the following bouce back :
host cluster2.eu.messagelabs.com [85.158.136.51]
SMTP error from remote mail server after end of data:
553-SPF (Sender Policy Framework) domain authentication
553-fail. Refer to the Troubleshooting page at
553-http://www.symanteccloud.com/troubleshooting for more
553 information. (#5.7.1)
I have checked that the SPF and DKIM records are correct.
The outgoing servers don't have a problem.
The recipient e-mail address is correct
I am trying to reply to an email (have managed to go do vis gmail but this is not a long term solution)
I have checked that our domain is not on any Spam blacklists.
Would it be possible for someone to look into this:
The IP is: 185.119.175.252
Our SEPM 14 server stopped updating (suspected corrupt definitions) and the error pointed to requiring LiveUpdate to be reinstalled. Deleting the cache did not work.
LiveUpdate reinstalled ok but it’s no longer having the LiveUpdate policy applied on it. The policy changes the location for updates to be another internal server (via https through firewall). Access to this server is confirmed by connecting to it and entering username and password via browser.
However, in the log, its still looking out to the default Internet site, which is blocked for the SEPM server.
How do I have the policy re-apply? SymDiag confirms corrupt definitions but of course cannot download fresh updates either.
Thanks
Hi Peeps,
Need assistance on some of DLP agents issues:
- DLP status are critical (already perform restart, change group end up status is still critical)
- Workstation that changes its hostname? do i need to delete it on console? what will happen?
Good Day!
As we are facing a high number of incoming Spam Mails and also Mails that get stuck in Quarantine, we do have to Sort and Filter to mark them as SPAM or NOT SPAM.
I'd like to clean the Quarantine giving specific Filters like Subjects in quotations. This is not possible in Symantec Messaging Gateway 10.6.3-2 or I cant seem to find a solution yet.
The Problem is, that I can set a Filter, but it shows me all Mails where these words are in.
For Example:
If I search for the Subject [Spam] hi --> This gives out a big list with other subjects aswell, even Subjects without the letters "hi"
But I'd like to use the filter as followed "[Spam] hi" -->This should give out all Mails with the Subject [Spam] hi and no other Mails.
This should work for all other Search Filters To, From and Message ID aswell...
Best Regards,
Marc
I want to know can, symatec can provide security and antivirius services for website, i have website http://uaenationalday.info/ and i need to know, so i can protect my site. Please help me out.
Good day guy,
I found http://www.symantec.com/docs/TECH242614 but not help my issue because error not match.
Some path of the journal file.
BCRJ:2017-11-22 08:33:16 (5a14d3dc) ALW.ERRO.SHUTD
..\src\sg_main.cpp,1637,MainThread::Run
main_00001a00(6656),,
==> REPORTER IS SHUTTING DOWN IMMEDIATELY BECAUSE OF SOME FAILURE CONDITION DURING STARTUP
BCRJ:2017-11-22 08:33:16 (5a14d3dc) NOR.INFO.SHUTD
..\src\sg_main.cpp,1674,MainThread::Run
main_00001a00(6656),,
Shutdown: unloading databases
BCRJ:2017-11-22 08:33:16 (5a14d3dc) NOR.INFO.SHUTD
..\src\sg_main.cpp,1685,MainThread::Run
main_00001a00(6656),,
Shutdown: removing system tasks
BCRJ:2017-11-22 08:33:16 (5a14d3dc) ALW.ERRO.SCHED
..\src\sg_schedule.cpp,316,Scheduler::DisassociateTask
main_00001a00(6656),,
'Scheduler' cannot cleanup 'BCRTask' that does not belong to it or is in an invalid state
BCRJ:2017-11-22 08:33:16 (5a14d3dc) ALW.ERRO.SHUTD
..\src\sg_main.cpp,1203,MainThread::SysTasks_Fini
main_00001a00(6656),,
'MasterThread::DeleteSchedulerTask' failure
BCRJ:2017-11-22 08:33:16 (5a14d3dc) ALW.ERRO.LEP
..\src\sg_log_entry_processor.cpp,1587,LogEntryProcessor::DisassociateTask
main_00001a00(6656),,
'LogEntryProcessor' (0) cannot cleanup 'BCRTask' that does not belong to it or is in an invalid state
Any idea for it.
I use Symantec Protection 6.0 for SharePoint servers and i see that the Symantec servce is getting stopped in the services.msc console in between resulting in our application performance.
Below is the error i see in event viewer logs. Any suggestion to improve the performance is welcome1
Application: Symantec.Sharepoint.SPSSService.exe
Description: The process was terminated due to an unhandled exception.
Exception Info: System.OutOfMemoryException
at Symantec.Sharepoint.SPSSService.Service..ctor()
at Symantec.Sharepoint.SPSSService.Program.Main()
Hi,
Is there any rule count or layer count limitation on ProxySGs VPM?
I have SG200-40 model.
Dear Aravind,
If we host PAC file on proxy , does it created one copy on C drive or any other folder.
In my PAC i have define 2 proxy in PAC and Suppose 1 proxy is down , then the request will go that 1 first proxy which is down and then Second One correct ?
Hi we are running a mailserver on 149.210.163.35. Message we are receiving from mailservers which are using messagelabs is: Cannot delivered, host not available. When using an other ip, it works. So we expect that our IP is on a blacklist. However that is not the case, please help to support us.
We checked our IP: The IP address you submitted, 149.210.163.35, does not have a negative reputation and therefore cannot be submitted for investigation.
kind regards,
Bas
So we are in the process of upgrading our clients from SEP12RU6MP7 to SEP14RU1.
After the initial restart when installing the new version, IE11 is not starting up anymore.
Error Message:
iexplore.exe The application was unable to start correctly (0xc0000005). Click OK to close the application
Event Log:
Faulting application name: iexplore.exe, version: 11.0.9600.18838, time stamp: 0x59e1b492Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000Exception code: 0xc0000005Fault offset: 0x00000000004e0a8aFaulting process id: 0x2140Faulting application start time: 0x01d3650967e64262Faulting application path: C:\Program Files\Internet Explorer\iexplore.exeFaulting module path: unknownReport Id: a59c52d1-d0fc-11e7-aae2-ecb1d7725227When disabling the Memory Exploit Mitigation policy, everything works fine again.
The policy even was set to "Set the protection action for all techniques to log only". Bummer.
So, what's the issue here?