Video Screencast Help

Proactive Threat Protection Off after install - waiting for updates

Created: 11 Jan 2008 • Updated: 21 May 2010 | 6 comments
We pushed Endpoint 11 installation to two clients. Now the clients show Proactive Threat Protection is OFF with status waiting for updates. "
 
When I click FIX I get a dialog with:
"Endpoint Protection has requested new definitions from the management server. When the management server responds..."
 
We started the Management Server Console and set LiveUpdate policy to allow clients to do their own LiveUpdate but the LiveUpdate button is still disabled on the clients. I suspect the clients aren't seeing the management server but don't know how to diagnose this. I supposed that by using the Migration & Deployment Wizard a connection between the deployed client and the management server would be insured. I did add one of the PC's manually to the console but don't see any indication that made a difference.
 
Can anyone assist with this?
 
Note we have started installing the rest of the Endpoint Clients manually and they can do the live update thing and have full protection.
 
Thanks for any help with this.
 
Michael

Comments 6 CommentsJump to latest comment

Aaron Blosser's picture
The Proactive Threat Protection doesn't work on Windows Servers... If you install that feature on a server, you'll see exactly the symptoms you've described.
 
I found that out the hard way too because I didn't read all the documents before installing to some systems (desktops and servers)... it had me puzzled for a few days before I realized that's not a supported option on servers.
 
Also, the network threat protection, if you selected that option as well, doesn't show up until after a reboot.
lawman 2's picture
Michael,
 
In the SEPM can you find the clients and do they have a green light signifying they are connected to the server.  On the clients you installed manually was the install from an exported install package or from the CD? 
 
Do the clients show up in the management console with out manually creating the entry?  If not make sure you do not have a firewall on the server preventing the clients from connecting.
 
HiR's picture
This issue still could not been slove since last year.
Please ref. below this K.B from Symantec :
 
to symantec employee:
What time we can get this solve ? It's could be hack when this issue not been solve.
Dabbler's picture

On our workstation we got around it by uninstalling Endpoint, then re-installing it manually from the cd instead of pushing it out from the management server. I haven't tried to install Endpoint on our server, we're still running Trend Micro there.



Message Edited by Dabbler on 01-18-2008 05:44 AM

Optimus Prime's picture

We're running a Windows 2003 32 bit server on our 2 ISA server. SEP client has been installed for a month now. yet, we still get the waiting for updates on Proactive threat protection..We tried to repair on the add remove program and run the liveupdate yet still get the same error.

;-)

Optimus Prime's picture

Hi kindly check the link below why the Proactive threat protection status shows "off" in the client interface most especially if it's server. One good reason is that PTP doesn't work for servers.

http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2008052215014748

;-)