Hi

I need some guidance. Our company has some clients that are out of domain and I can't force them to connect to sepm server. Can You explain me is it possible to see non domain clients inside SEPM manager? If yes ( I suppose) where can be a problem? So far now I ve checked connection from clients to server - port 8014 is opened and server answers for http://xxx:8014/secars/secars.dll?hello,secars. On client side I see connection 503 http error.

My suspicion make sylink.hml file

1) If inside is defined DomianID is there a chance for non domain clients to connect?

2) Is there maybe some sort of certificate problem?

3) Is standalone install any solution for problem?

Please be patient I wasn't present when SEPM was introduced for my company.

Did you just replace sylink file? Should connect regardless of domain or not. Try replacing sylink. Can do from the SEPM

Restoring client-server communications with Communication Update Package Deployment

Replace the sylink.xml for the communication. Clients are not in domain. If local admin user id/password are similar on all system then you can push it with deployment wizard either replcae it manually.

Restoring client-server communications with Communication Update Package Deployment

Artcile for deploy it manually

How to change the sylink.xml file in Symantec Endpoint Protection (SEP) 12.1

Hi

Thank You for answers but my problem can be more complex. I list things that I tried below:

1. I have copied Sylink.xml from working client in domain and I made import those settings to non domain client and still have connection error 503.

2. Situation is a bit more complcated because machines with problem are inside our LAN but they are not our property so I don't have adminstrator privilages and I can't push clients from SEPM.

3. I ve tried to turn on acess log for apache server on SEPM server to see what is going on but theres no httpd.conf inside C:\Program Files\Symantec\Symantec Endpoint Protection Manager\apache\conf\httpd.conf. so I don't know if I can create own httpd.conf with only single line  #CustomLog "logs/access.log" . Probably that's not good idea if somewhere else the file exist?

Have you Open firewall Port 8014 ?

Firewall is by default disabled on those machines port is opende I am sure.

Try to telnet port 8014 SEP client to SEPM.

Which communication ports does Symantec Endpoint Protection use?

Telnet port 8014 going ok.

have you replace sylink.xml manually ?

I decided to import sylink.xml  by import option from client interface.

Ok, so importing a new sylink corrected it?

Unfortunately not. The problem remains and I don't have idea what to do? The access log from Apache maybe can help but I don't know how to make it work.
 

Enable sylink debugging on an affected client

How to enable Sylink debugging for the Symantec Endpoint Protection 11.x and 12.1 client in the Windows Registry

This shows the client/server communication

You can post the log here for review after letting it run thru a few heartbeats

I ve got some logs from clients. One is from normally operating client, second is client with error 503.

Attachment(s)

debug error.txt   164 KB 1 version

debug ok client.txt   244 KB 1 version

Have you replaced the sylink file on that system?

Aplly this article

http://www.symantec.com/business/support/index?page=content&id=TECH137402

Yes Sylink was replaced. But this solution

http://www.symantec.com/business/support/index?page=content&id=TECH137402

is quite hard. I would rather omit solution with registry changes on servers.

Hi

I followed http://www.symantec.com/business/support/index?page=content&id=TECH137402

and problem still exists. I attached new log from affected test machine.

Attachment(s)

debug bad new_0.txt   174 KB 1 version

Hi

I don't want to create next thread. I made some new investigation on problem.

1) Problem can be wider I see that  new computers also can't connect to SEPM. I can push client to the new station but the client doesn't want to communicate.

2) I used SymHelp tool to test situation I attached file. The status is ok.

I don't know how It is possible to pass test ok and I can't see clients on manager.

Maybe someone have any idea?

Attachment(s)

connection.txt   1 KB 1 version

debug_21.txt   235 KB 1 version

Hi

I don't want to create next thread. I made some new investigation on problem.

1) Problem can be wider I see that  new computers also can't connect to SEPM. I can push client to the new station but the client doesn't want to communicate.

2) I used SymHelp tool to test situation I attached file. The status is ok.

I don't know how It is possible to pass test ok and I can't see clients on manager.

Maybe someone has any idea?

Attachment(s)

debug_22.txt   235 KB 1 version

connection_0.txt   1 KB 1 version