Quantcast
Channel: Symantec Connect - Products - Discussions
Viewing all 18527 articles
Browse latest View live

Machines enter BSOD on upgrade from 14.2.3357.1000 to 14.2 RU2 (14.2.5323.1000)

February 3, 2020, 8:29 am
$
0
0
I need a solution

Hi

We recently upgraded our Sepm managers to 14.2 ru2 (no issues) and have started upgrading our clients now.

it has come to our notice that few of our clients end in BSOD post reboot and this is a show stopper .We have submitted the memory dump to Symantec support and the response we got is that it was because of AC definitions (which were btw latest defs in the clients which failed) and that the issue is occurring in some "win10" machines during reboot due to the sysplant.driver.

this information doesn't really help .we need to upgrade our clients at the earliest and disabling adc is not an option as we need it .Further fresh installation causes no issues in the same machines which landed in bsod during upgrade .however this cannot be followed for all our clients.

Any suggestions / solutions ?

Ps: we do have machines which upgraded successfully( running with the same Os/build config as the ones which resulted in Bsod ...so this rules out that it may be related to config or build of Os)

0
Search

Altiris Password Location

February 3, 2020, 8:55 am
$
0
0
I do not need a solution (just sharing information)

I'm trying to create a package installer for our new Cloud-enable Agent for version 8.5.5017 in OS X 10.15. When I run the Symantec_Management_Agent_Installer.pkg I am prompted for the server password which I have.  To elminate that prompt I'm thinking the password needs to be inserted into the cem_package.sh file. After looking through the cem_package.sh file I see the word password appears in eleven places and some have ( )  around them while others have < >. I think I only need to put the password in one or two places but so far I haven't been able to get it to function correctly because I'm stil being asked for the password during installerion. I need to know specifically where the password(s) go and in what format like are the ( ) or < > needed. Thanks for any help suggestions! 

0

Proxy Gateway potentially causing website performance issues

February 3, 2020, 9:59 am
$
0
0
I need a solution

Hi everyone

I hope someone can help me with a rather puzzling issue.

We have a website, collaborative.eversheds-sutherland.com 213.212.88.203 which users can connect but experience very slow performance when navigating around the site. This only occurs when they are on the network. Performance when accessed from home or another non-network source is absolutely fine.

From what I can tell, traffic leaves our network via the firewall (bypassing the proxy). This proxy override has also been enabled on Group Policy for this website. However, the puzzling thing is that I'm still seeing active sessions for this website on the Bluecoat Proxy Gateway. I believe the traffic is coming back through the Proxy but I can't see why.

Gateway details: 

ProxySG 810-10 SGOS 6.5.3.6 Proxy Edition

Is there anything I can check on the Bluecoat? Like I say connectivity is there but the website performance is very slow. When users use the developer tools in the browser to inspect the site, they commonly see the following errors:

ERR_TUNNEL_CONNECTION_FAILED

CORS Policy Error

I've looked up both of these errors and they both point to a proxy issue but I cannot work out what it could be. I've attached a screenshot which shows the active sessions currently on the BC Gateway. The Gateway IP is 10.20.48.100 but each different office has it's own BC Proxy server that does it's own web filtering. The one on screenshot is from the London office.

 I'd appreciate any assistance as this is proving to be a huge issue for me.

Many thanks

B

0

Endpoint Protection (SEP) 14.2 install fails with the install setting "Automatically uninstall existing third-party security software" selected.

February 3, 2020, 1:48 pm

ServiceDesk 8.1 in-place OS upgrade

February 4, 2020, 5:32 am
$
0
0
I need a solution

Hi all,

I have looked but not been able to find an answer - can anyone help (pleeeeeaaase).

I need to upgrade the OS on our Service Desk server - does anyone know if I can perform an in-place upgrade from Windows Server 2008 to 2016 or will i need to build a new server?

Thanks in advance of all your help :)

0

Importing Computer structure causes Ghost console to crash.

February 4, 2020, 5:47 am
$
0
0
I need a solution

Hi,

I've run into an issue with our exported Computer file structure causing ghost to crast when importing. 

I've determine the root cause to the problem and a temporary workaround however this is not a solution.

We had a catastrophic failure on our ghost server after an upgrade in October 2019.  After a clean rebuild we started exporting the tasks and computer structure on a regular basis weekly\bi-weekly basis.  Our January export of the computers structure when imported crashes the console part way through.  After manually digging around I’ve determined the problem to be 4 systems in different containers have no NIC listed.  In the console it states that the NIC are disabled.  In the exported file they are identified by having “<nics/>” which basically indicates no NIC.

                                <name>aaaTNTLIB-104</name>

                                <computer_name>aaaTNTLIB-104</computer_name>

                                <serial_num>CY09aaaa</serial_num>

                                <uuid>{4C4C4544-aaaa-3010-8039-C3C04F305132}</uuid>

                                <UAC>1</UAC>

                                <nics/>

                                <grouppath>

                                                <group>aaaton</group>

                                                <group>Tlib</group></grouppath></computer>

If I remove them from the exported file, it will import properly.

For now, I deleted those system from the console and they added themselves properly with their working NIC’s.  Now the export file will import fine, however there is no dynamic group rule I could come up with to detect such systems before an export.

Has anyone run into this before? 

Using Symantec Ghost Suite Ver3.3 R3  (Build 2642)

Running on MS Server 2016.

Thanks,

  Ed White

0

Extracting decrypted HTTPS sessions

February 3, 2020, 8:06 am
$
0
0
I do not need a solution (just sharing information)

Hi,
Anyone know whether SA interprets decrypted HTTPS the same way as plain-text HTTP ? We've got problem with extractions from decrypted HTTPS sessions. SA show particular requests but mostly their responses have a 0 byte size, and we are unable to got any artifacts from that session. Things got a little bit better when we enable Assemble partial content in system settings but still responses are truncated and SA seems to be unable to reassamble that.
We're running 8.1 SA. Tried it with two sources of decrypted SSL: ProxySG with Encrypted TAP and Checkpoint NGFW. In both cases it was the same.

0

Latency in VIP Validation

February 3, 2020, 7:29 pm
$
0
0
I need a solution

Friends, 

Few users are complainaing about delay in validating the Tokens, through the VIP validation Server. Wanted to know how can we extarct a report to get the response time for each client the RADIUS Server is serving too.

0
Search

VIP Access silent uninstallation

February 4, 2020, 4:34 am
$
0
0
I need a solution

Hello,

Looking for detailed information on how to perform a silent uninstall for Symantec VIP Access application

I've found details and command-line switches to perform a silent Install, however during a silent uninstall, I come across a yes/no message. See attached screenshot.

Any one know how to bypass this message?

Thank you.

0

Delete user-allowed applications exceptions from the SEPM

February 4, 2020, 7:00 am
$
0
0
I need a solution

Hello,

In my current configuration, local admins can add their own exection on their SEP client. I want forbide this but first I would like to delete all exceptions already created on the clients. I can see them from the SEPM throught the Policies menu > Exceptions > clicking on an exception policy > on the Exeptions part, when I click on Add > Windows Exceptions > Application > then in the View list I select "user-allowed applications". But there is no way to remove them.

Does anyone know how to do it or I have to contact all my users one by one to tell them to remove their exceptions manually?

Thanks.

0
1580834238

WSS Agent

February 4, 2020, 7:37 am
$
0
0
I need a solution

We have recently deployed the Web Security Service and deployed the Unified Agent 4.11 (Windows 7) and WSS AGent 6.1.1. However when we add domains and IP addresses to be bypassed on the portal, the rules dont appear to take effect with the domain names still appearing in the user traffic and the egress adddress still coming from Symantec. Is this standard behaviour for the agents or can anyone advise as to what we are doing wrong?

0

DLP Incident Issue

February 4, 2020, 7:54 am
$
0
0
I need a solution

I implement Policies on DLP (15.5) and i specify this policies for Specific User Groub From Active Directory

and when i Did this i tested the policy and no incidents appeared to me eventhough there were alot of incidents before i use the User Group Rule To apply this policies to this Groups only,

what shuould i do and could any one faces this issue to tell me the reason and the solution ?

Thank you.

0

What Happens When You Exceed Your Client License Number?

February 4, 2020, 7:56 am
$
0
0
I need a solution

What happens when you exceed your license? Looks like we're over by about 15 clients right now.

Our SEPM is synced with Active Directory, are licenses counted just on computers that actually have a SEP client or when they pop up in AD before ever getting a client pushed to them?

0
1580834196

Naming a windows 10 computer post-image

February 4, 2020, 7:57 am
$
0
0
I need a solution

Does anyone know if Symnatec might add a task specifically to name a computer with a promt for the end-user? I currently use a powershell script that prompts the end-user to name the computer. Lately, my current windows 10 image of build 1903 has been initiating the altiris agent before my admin account automatically logs into the desktop. The result here is the script will run before-hand and fail. My image job process does the following:

1. Deploy image

2. reboot to production

3. Run windows 10 application job

Step 3 should not start until the administrator account logs in automatically and the desktop is on the screen (this has been working great for years) just lately this issue began. I was thinking instead of a script, does or would Symantec have a speciifc task to prompt for a computer name? I checked out Apply System Configuration' but the options look like the naming needs to be predefined.

SCCM for example uses a variable OSDCompterName intheir task sequence that prompts the end-user at the start of the imaging job and applies the name into the OS sometime during their imaging process.

0

Whole Word Keyword Detection

February 4, 2020, 10:17 am
$
0
0
I do not need a solution (just sharing information)

I need to be able to detect “domain” but not “domain.com” using the DLP EndPoint agent with Outlook integration.

Here’s what I have tried so far:

Setup a policy using keywords and checked the “whole word” option.  DLP is setup to ignore the period so it detects “domain” AND “domain.com”.

Created the following regex:  “aexp[ ]”  This will exclude “domain.com” but also excludes any instance where “domain” occurs at the end of a sentence (“domain.”)

Created a DI with a list of keywords.  Tried different validators such as “Exclude Exact Match” (domain.com),  “Exclude Suffix” (.com), “Exclude Ending Characters” (.com).  It doesn’t seem that any of the validators are being applied so “domain.com” continues to be detected.

If anyone has a solution, I would be very appreciative.

0
Search

Understanding the dash metrics

February 4, 2020, 9:38 pm
$
0
0
I need a solution

I have deployed several workstation and server clients in a new SEPc tenant. I am trying to understand the dash metrics,

On this home screen it lists several "secure" clients but on the same area states that there are zero protected clients - why is this zero?  is it because not all policies such as Traffic Redirection policy are enabled?

On the ICDm home page, it states the devices protected number, which is equal to the total of workstation clients not including servers.  On this same screen it is suggesting I activate a server protection product. So is it correct it won't consider any server protected unless this extra component is purchased?

Also, Application control now seems to be a separate product.  with any of the policies, blacklist, app control I can't find any way to simply block a file based on file extension. Is this possible at all?

 thanks

0

Total Endpoints in SEPM Dashboard Doesn't Match Report

February 5, 2020, 5:00 am
$
0
0
I need a solution

A "Symantec Endpoint Protection Product Versions" report shows we have a total of 1207 computers. But, in the SEPM dashboard under "Endpoint Status" the "Total Endpoints" shows 1539. Our license is for 1500 computers and we're getting pinged that we're "overdeployed". Why the discrepancy?

0

Bypass user authentication and SSL interception for mobile phones traffic

February 1, 2020, 9:43 am
$
0
0
I need a solution

Hi,

We have configured explicit proxy. We need to bypass the use authentication and ssl interception for the traffic coming from mobile phones. what is the best way to do this?

0

How to replace the Enforce server default SSL certificate with wilcard certificate

February 4, 2020, 9:59 pm
$
0
0
I need a solution

How to replace the Enforce server default SSL certificate with wildcard certificate.

0

Cannot install Symantec VIP software

February 5, 2020, 12:56 am
$
0
0
I need a solution

Hi all,

I'm trying to install the Symantec VIP software from https://vip.symantec.com. I've downloaded the W10 version (im running Windows 10 10.0.18363) but when I try to launch the application it says "This app can't run on your PC".

I've tried temporarily turning off Bitdefender as well as Windows Defender with no success. Looking on some forums, people have suggested that Intel® Dynamic Application Loader (DAL) Host Interface Service needs to be disabled, however I'm running a AMD Ryzen system so and this isn't listed in my services tab.

Can anyone give me any advice on how I can install the app please?

Thanks

0
Viewing all 18527 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>