Endpoint Protection

Hi,

I have near 2000 clients.

about 100 of these clients cannot be updated suddenly from today.

secars test is ok and clients can see the server

can you help me please to resolve this issue?

thanks

may be sylink log from one of the machine should help.

Can you please get the sylink. log from the Client

Also please check if the SEPM is updated or not?

Hi

thanks for quick reply!

SEPM is updating all clients except these 100 clients

here is sylink.log

thanks

Attachment(s)

is-01003361.txt   64 KB 1 version

Hi

thanks for quick reply.

here is the sylink.log

Thnaks

Attachment(s)

is-01003361_0.txt   64 KB 1 version

EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content

http://www.symantec.com/business/support/index?page=content&id=TECH148419

It seems that the client is getting the defs, but they are not getting installed

Are the machine connected to the ineternet

if yes run luall.exe and see if the defs get updated

Hi,

Do you have any GUP configuration?

Hi,

clients are not connected to internet and must downl;oad updated from SEPM

what sh ould i as you said that client doen't install updates?

""It seems that the client is getting the defs, but they are not getting installed""

I have seen this issue before and I updated the sylink checkin from 1 (once) to 0 (unlimited):

1. smc -stop
2. copy sylink from SEPM (export communications file (change verifysignatures from 1 to 0)
3. Upload sylink to SERVER
4. Replace sylink.xml with file uploaded.
5. smc -start

You can also use the sylinkdrop tool.

Now updating to 0 does cause some performance worries. I would recommend updating to like 3 maybe.

Hope this helps!