About alert notifications for out-of-date virus definitions
|Article:HOWTO82485|||||Created: 2012-11-30|||||Updated: 2013-10-28|||||Article URL http://www.symantec.com/docs/HOWTO82485|
Mail Security provides the following methods for notifying administrators when virus definitions are older than the configured number of days.
An alert notification email is sent to the administrator.
An event is logged in the system's event log with event ID 404.
Mail Security checks at least once a day whether the current virus definitions are latest or out of date. If virus definitions are found outdated, then Mail Security sends an email notification to the administrator. Mail Security continues to send periodic notifications until it gets a new definition set.
Administrator can specify the frequency of sending notifications when an old definition is found. By default, an email notification is sent to the administrator after every six hours. Administrator can set the frequency of sending notifications at an hour-level granularity.
Administrator can configure the number of days an outdated virus definition can remain on the system after which an alert notification is sent. This configuration is done by specifying values for the registry keys DefsMonitorDaysThreshold and DefsMonitorResendIntervalInHr
The path for these registry keys for 32-bit platform is: HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\SMSMSE\7.0\Server\ Components\LiveupdateConfig
The path for these registry keys for 64-bit platform is: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Symantec\SMSMSE\ 7.0\Server\ Components\LiveupdateConfig
Table: Registry key settings lists the registry keys for this feature, their data types, and possible values.
Table: Registry key settings
With this feature, Mail Security has discontinued using the older mechanism of sending alerts on LiveUpdate failure.
Article URL http://www.symantec.com/docs/HOWTO82485