ProActive Threat Protection is Disabled
Hi all, I'm going to open a support ticket for this as well, but I've found in the past that sometime I can get a faster answer here, with so many minds at work.
I'm running into a problem with a small number of workstations, where suddenly PTP is showing as disabled. In the SEPM, it lists the status as "Malfunctioning". In the Client Console, I get the red alert bar, with the message Proactive Threat Protection is disabled. There is no "Fix" button on these clients.
Uninstalling / reinstalling doesn't fix the problem, even when Cleanwipe is run in between the removal and reinstall. Affected machines include both the 12.1.3001.165, and the 12.1.2015.2015 clients. As I said, this is a fairly small percentage of our client base (about 30 out of 1400), however what concerns me is suddenly out of nowhere I had about 15 machines with this issue. Machines that had been in production for quite some time without issues. A week later I had 21 workstations, a week after that 29 workstations....it's a trend I'd like to stop early if I can.
Has anyone seen behavior like this recently? Any ideas for things I can check?