Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

Active Scan Notifications

Created: 25 Oct 2011 | 3 comments

Good Afternoon.  

I am in need of some assistance.  I recently upgraded our SEPM to SEPM 12.1.671.4971.  I am also in the process of upgrading all of the clients as well.  Ever since the upgrade, users are now getting Active Scan Pop-up notifications everytime a tracking cookie is detected.  It is really starting to annoy the users as well as myself.

I want these detections to continue to be logged, but is there a setting in SEPM 12 that I can set that will still log the detection but NOT throw up the notification on the user's computer?

This was not happening in SEPM11, and tracking cookies were still being detected.  All I have really done is to upgrade the SEPM to the version 12 but not done any other extensive configuration since the upgrade.  So the policies and settings that were in affect on SEPM 11, should have stayed the same, except for whatever is different in version 12.  I have attached an example of the pop-ups that my users are now getting since the upgrade to the SEPM.  Looking for a way to stop these pop-ups from appearing but still log the detection.

Also, what is SONAR and do I need to have it turned on and running?

Any help would be greatly appreciated.

Thanks,
Lawrin

Comments 3 CommentsJump to latest comment

sandra.g's picture

Hard to tell if this is the scan that occurs when new definitions arrive, or a scheduled Active scan. I'd double-check (in the Virus and Spyware Protection policy in effect) both the Administrator-Defined Scans Advanced tab for Scan Progress Options, or the Notification options for the scheduled Active scan just to ensure the settings are the way you want them.

As for SONAR, the basics--you may wish to test on a small number of computers before installing/enabling environment-wide.

About SONAR
http://www.symantec.com/docs/HOWTO54887

sandra

Symantec, Senior Information Developer
Enterprise Security, Mobility, and Management - Endpoint Protection

Don't forget to mark your thread as 'solved' with the answer that best helps you!

lwalker1958's picture

Sandra,

Thanks. I don't have the option to scan when new definitions arrive. I do have a scan set to run when the users logon. Maybe I will try turning that off and see if that fixes the issue of still logging the tracking cookies but just not showing the pop-up notification of its detection.

I will respond back once I know that is what works.

Thanks,
Lawrin

sandra.g's picture

I don't have the option to scan when new definitions arrive.

You should, at least I would expect you to if you have 12.1 Enterprise. It should be in the Virus and Spyware policy, under Windows Settings > Administrator-Defined  Scans. Choose the Advanced tab in the right pane, then look just below "Allow startup scans to run when users log in" and above "Scan Progress Options" for "Run an Active Scan when new definitions arrive".

sandra

Symantec, Senior Information Developer
Enterprise Security, Mobility, and Management - Endpoint Protection

Don't forget to mark your thread as 'solved' with the answer that best helps you!