Endpoint Protection

Hello all
I have a issue with one of our customers systems that is running Symantec endpoint protection 11.0.6005.562 originally installed with 11.0.5 but was upgraded to see if it would rectify the issue.
The problem is that my clients will communicate with the server and they pick up policies and policy changes (green dot present and correct). but they do not down load any updates. The management server is downloading the updates and I can see from the management console  admin/servers/localsite show live update downloads that it is downloading the latest updates each day .

any ideas

i have used sylink monitor and will post in another post  to keep this one tidy

I have used the sylinkmonitor and the following line from the info it produces i think might be the problem.
6/08 10:20:05 [11820] <LUThreadProc>@@@@@@@@@ LU DEBUG ONLY- Download file failed due to wrong file size.
 FileName:C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\LiveUpdate\LUF{1CD85198-26C6-4bac-8C72-5D34B025DE35}1006070341.TMP Expected file size: 83151692
 
And
 
06/08 10:19:18 [4916] <GetIndexFileRequest:>RECEIVE STAGE COMPLETED
06/08 10:19:18 [4916] <GetIndexFileRequest:>COMPLETED
06/08 10:19:18 [4916] <IndexHeartbeatProc>GetIndexFile handling status: 0
06/08 10:19:18 [4916] <IndexHeartbeatProc>Switch Server flag=0
06/08 10:19:18 [4916] HEARTBEAT: Check Point 5.1
06/08 10:19:18 [4916] <IsInClientIPorOnLink> NextHop is equal to192.168.16.3,return TRUE
06/08 10:19:18 [4916] <mfn_GetOutIP> Out IP is:192.168.16.3
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=0
06/08 10:19:18 [4916] <mfn_LiveUpdate:> Agent returned closest matching seq: 100329018
06/08 10:19:18 [4916] <Add2LUFileList:>Adding LU Info to LU Download File List: {C60DC234-65F9-4674-94AE-62158EFCA433}100607034
06/08 10:19:18 [4916] <Add2LUFileList:>File Info already exists, hence updating: {C60DC234-65F9-4674-94AE-62158EFCA433}100607034
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=1
06/08 10:19:18 [4916] <mfn_LiveUpdate> EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {1CD85198-26C6-4bac-8C72-5D34B025DE35} Seq:100607034
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=1
06/08 10:19:18 [4916] <mfn_LiveUpdate> EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {42B17E5E-4E9D-4157-88CB-966FB4985928} Seq:100513001
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=1
06/08 10:19:18 [4916] <mfn_LiveUpdate> EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {D3769926-05B7-4ad1-9DCF-23051EEE78E3} Seq:100513001
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=1
06/08 10:19:18 [4916] <mfn_LiveUpdate> EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {C25CEA47-63E5-447b-8D95-C79CAE13FF79} Seq:80929016
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=20
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=1
06/08 10:19:18 [4916] <mfn_LiveUpdate> EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {EA960B33-2196-4d53-8AC4-D5043A5B6F9B} Seq:80820001
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=20
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=1
06/08 10:19:18 [4916] <mfn_LiveUpdate> EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {DB206823-FFD2-440a-9B89-CCFD45F3F1CD} Seq:80820001
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=1
06/08 10:19:18 [4916] <mfn_LiveUpdate> EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {C13726A9-8DF7-4583-9B39-105B7EBD55E2} Seq:80820001
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=1
06/08 10:19:18 [4916] <mfn_LiveUpdate> EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {CC40C428-1830-44ef-B8B2-920A0B761793} Seq:100607021
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=1
06/08 10:19:18 [4916] <mfn_LiveUpdate> EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {812CD25E-1049-4086-9DDD-A4FAE649FBDF} Seq:100607021
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=1
06/08 10:19:18 [4916] <mfn_LiveUpdate> EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {E1A6B4FF-6873-4200-B6F6-04C13BF38CF3} Seq:100607021
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_LU_REQUIRE_STATUS
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_LU_REQUIRE_STATUS, return=1
06/08 10:19:18 [4916] <mfn_LiveUpdate> EVENT_LU_REQUIRE_STATUS returned ERROR_SYSTEM_UNKNOWN - Ignore LU content. Moniker: {E5A3EBEE-D580-421e-86DF-54C0B3739522} Seq:100607021
06/08 10:19:18 [4916] <PostEvent>going to post event=EVENT_SERVER_ONLINE
06/08 10:19:18 [4916] <PostEvent>done post event=EVENT_SERVER_ONLINE, return=0
06/08 10:19:18 [4916] <ScheduleNextUpdate>Reset Heartbeat factor index, hearbeat=300 seconds
06/08 10:19:18 [4916] HEARTBEAT: Check Point 6

Check the DCOM settings

To change the Default Impersonation Level using Dcomcnfg.exe
On the Windows taskbar, click Start > Run.
Type the following: dcomcnfg.exe
Click OK.
Perform one of the following:
In Windows 2003/XP, expand Component Services, and then expand Computers. Right-click My Computer, and click Properties. On the Default Properties tab, on the Default Impersonation Level menu, click Identify.
In Windows 2000, on the Default Properties tab, on the Default Impersonation Level menu, click Identify.
Click OK.

Hi thanks for the reply.
I am using server2008 (x86) sp1
I have just checked the decom settings as instructed and it is already set to identify.
 
Enabled distribut4ed com on this computer is ticked
Enable com internet services on this computer is not ticked
Default authentication level is none
Default impersonation level is identify

any ideas

Default authentication level is none

shoud be connect

please try