Video Screencast Help
Search Video Help Close Back
to help
New in the Rewards Catalog: Vouchers for "Symantec Technical Specialist" and "Symantec Certified Specialist" exams.

Console reporting out of date intrusion prevention signatures

Updated: 22 May 2010 | 9 comments
B_Carlin's picture
B_Carlin
0 0 Votes
Login to vote
This issue has been solved. See solution.

SEPM is reporting out of date intrusion prevention signatures for a few of my servers.  I am not running NTP on them but cannot clear these errors from my dashboard.  I have the same policy and install of 48 other servers and only these two show as problems.  Everything else is up to date and functioning as expected.  How do I clear these two from the dashboard?
Thanks

discussion Filed Under:
, ,
Group Ownership:
Phoenix Endpoint Management User Group

Comments

Mike OBrien HP's picture
17
Apr
2009
0 Votes 0
Login to vote
Mike OBrien HP

Hi B_Carlin, Would you be

Hi B_Carlin,

Would you be able to give me any more details on this ? Is this specifically within the Monitor are of the dash ?

Michael
Though I am an HP Employee, ALL of my posts express MY opinion and not that of HP.

Farzad's picture
18
Apr
2009
0 Votes 0
Login to vote
Farzad
Certified

Withdraw the firewall policy

Withdraw the firewall policy form the group.

Since you do not install the NTP on the servers, you will not have App/Dev Cont and IPS. Hence you only need the Av/As, AutoUpdate and centralized exception policies on the servers group and withdraw the other policies.

Symantec Certified Specialist  \  MCSE +Security  \  CCNSP

B_Carlin's picture
21
Apr
2009
0 Votes 0
Login to vote
B_Carlin

Thanks for the response.  The

Thanks for the response.  The deployment package pushes only AV/AS.  No firewall at all.  Yes, the dashboard is what displays as the issue.  When you look at the client, they are green and communicating with proper defs.  Under the security status details summary these 2 show signature failures for IPS.  Computer Name, IP are populated but IPS box does not.  However, I am only running AV/AS and just would like this cleared.
Thanks for the time
Bill

Cheers-
Bill

Sandeep Cheema's picture
21
Apr
2009
1 Vote +1
Login to vote
Sandeep Cheema

What is the version that you

What is the version that you are at?

De facto when AV does something, it starts jumping up and down, waving its arms, and shouting "Hey!  I found a virus!  Look at me!  I'm soooo goooood!"

M Samir0n's picture
23
Apr
2009
1 Vote +1
Login to vote
M Samir0n

You should update your server

You should update your server to the latest version

Ajit Jha's picture
23
Apr
2009
0 Votes 0
Login to vote
Ajit Jha
Accredited

Check the Liveupdate content

Check the Liveupdate content policy settings. I think it has some configuration missing.

Regards'

Ajit Jha

Technical Consultant

STS

B_Carlin's picture
08
May
2009
0 Votes 0
Login to vote
B_Carlin

Thank you for the advice.  I

Thank you for the advice.  I bailed on that version and went to MP1a.  Everything is working smooth now.

Cheers-
Bill

SOLUTION
RickJDS's picture
08
May
2009
0 Votes 0
Login to vote
RickJDS
Trusted Advisor

Bill, Out of curiousity, what

Bill,

Out of curiousity, what version did you upgrade from?

B_Carlin's picture
08
May
2009
0 Votes 0
Login to vote
B_Carlin

We went from SAV 10.X to

We went from SAV 10.X to 11.0.2 to 1a.  I never did much logging with it as I knew we would be upgrading.  After running the comparisons on the policies and double checking clients, I just determined that enough time had been spent on it and it was just better to move ahead with the upgrade.
Thanks

Cheers-
Bill

Technical Support

Symantec.com

Store

Community Stats

Total Content Items
Members
258,921