Endpoint Protection

 View Only

  • 1.  Database Corrupted

    Posted Dec 08, 2011 12:54 PM

    Hi

    I am facing the problem in sepm after perfoming disaster recovery.

    Database is corrupted on old server. So we installed the new SEPM in new server (new system) on old server hostname & IP

    After the installation added the Domain ID & updated the manage server certificate.

    Restarted the server, but clients are coming online with few seconds gone offline.



  • 2.  RE: Database Corrupted

    Broadcom Employee
    Posted Dec 08, 2011 01:01 PM

    dont you have the DB from the date when SEPM was working fine? pass on sylik log from one client.



  • 3.  RE: Database Corrupted

    Posted Dec 08, 2011 01:33 PM

    Hi

    • Did you ran management server configuration after updating the server certs and domain id ?
    • if not please do it and then reboot few machines to check if they go online .
    • Secondly make sure port 8014 is open on new server and clients windows and any other firewall its a tcp port .
    • Run sylinkreplacer and the clients will come online .
    • Try replacing sylink on 1 machine first check if it goes online


  • 4.  RE: Database Corrupted

    Posted Dec 08, 2011 01:43 PM

    If I had to guess, given that the SEP client goes online then goes offline, that it can't verify the signature to authenticate communication.

    Verify this by enabling Sylink debug logging:

    How to enable Sylink Debugging for Symantec Endpoint Protection in the registry
    http://www.symantec.com/docs/TECH104758

    If you see "Signature verification FAILED for Index File Content" there, I'd have a look at this:

    Signature verification FAILED for Index File Content - Clients are green in the SEPM, but show offline.
    http://www.symantec.com/docs/TECH93740

    What version of the software are you using?

    sandra