Endpoint Protection

 View Only
Back to discussions
Expand all | Collapse all

Computers with not the latest policy serial number

  • 1.  Computers with not the latest policy serial number

    Posted Jan 16, 2014 03:03 AM

    Hi, do anyone know if there is a good/easy way to check if the clients in SEPM have the latest assigned policy serial number applied, according to the group it belongs to?

     

    Cheers, Daniel



  • 2.  RE: Computers with not the latest policy serial number

    Posted Jan 16, 2014 03:26 AM

    that information is not available via report.

    check this

    Understanding the Policy Serial Number of the Symantec Endpoint Protection Manager

    The policy serial number is made of two elements. See the example below:

    A3AF-01/30/2012 23:50:54 284

    "A3AF" are the first four digits of the Group ID. All Groups ID can be found in%SEPM%\data\outbox\agents. Each Group ID maps to a subfolder in the agents folder which contains all policies for that specific group.

    "01/30/2012 23:50:54 284" is the last modification date and time in GMT of the policies for that particular group.

     



  • 3.  RE: Computers with not the latest policy serial number

    Trusted Advisor
    Posted Jan 16, 2014 03:37 AM

    If you go to the group and click on detail just take a note of the first four letters/numbers of policy and last three numbers

    Then click on Clients and select Client status view if you click on the policy serial number column at the top it should order them by policy and you can scroll and just look for ones that don't have the matching numbers taken from the policy on detail screen.



  • 4.  RE: Computers with not the latest policy serial number

    Posted Jan 16, 2014 03:50 AM

    Thanks, we have about 1000 groups and 85000 clients in one of the environemtns. After a policy change, I want to follow up how many of the computers actually got the change. It will take to long time. :(

    I think ill make an enhancement request for this. I would really like this option in reports or in the client info. 



  • 5.  RE: Computers with not the latest policy serial number

    Posted Jan 16, 2014 04:03 AM

    Need to check manually per group.

    I would also suggest to go with new enhancement request.



  • 6.  RE: Computers with not the latest policy serial number

    Trusted Advisor
    Posted Jan 16, 2014 04:04 AM

    Yeah will be a hard one as every group will have it's own policy if number so hard to confirm machines are up to date without going into the individual groups sad

    Would be worth throwing it out there as a possible enhancement. 



  • 7.  RE: Computers with not the latest policy serial number

    Posted Jan 16, 2014 04:17 AM

    If you want to thumb up!! the link to the enhancement request.

    https://www-secure.symantec.com/connect/ideas/include-group-serial-policy-number-computer-status-log

     

     



  • 8.  RE: Computers with not the latest policy serial number

    Posted Jan 16, 2014 04:49 AM

    I just voted for it :) 



  • 9.  RE: Computers with not the latest policy serial number

    Posted Jan 16, 2014 08:34 AM

    The Computer Status report will show what the latest policy is on the client but there is no way to compare to what's on the SEPM

    Gets my vote



  • 10.  RE: Computers with not the latest policy serial number

    Posted Jan 16, 2014 09:07 AM
      |   view attached

    You can check from Monitors -> Logs -> Computer status log, export it and you can check by machine names what policy they have.

    OR

    From Reports as per the attached screenshot



  • 11.  RE: Computers with not the latest policy serial number

    Posted Jan 16, 2014 09:29 AM

    Good thought, but when you have 1000+ groups it will take a while. :)

    I guess the best solution right now is to ask the DB directly.

     

     

    Capture.JPG