I am having an issue with SEP v 11.06 not properly cleaning up the Virus Def's. This is causing space issues and filling up the Root of the servers.
I have altered the recommended registry key to 1 on the clients rather than 3 to reduce the amount of space that my servers must have for the DATS. To reduce what they actually hold. But that is not working they are still getting more dated folders than necessary and the original installation files are not being cleaned up? Why is SEP not continously looking in this folder and performing some sort of cleanup?
I do not like the idea of a manual process to go and clean up virus definitions using the Rx4Defs tool all of the time. I need an alternative solution to minimize the amount of space required for Virus Def's.
I am referring to Servers with 2003 installed.
They are on all of the time and my worry for them being 3 days behind and getting a full dat is not there. I do not believe these need more than one definition folder. Due to space restrictions I certainly do not want more than one. I have done the following:
Change the registry key for all definitions held by the client to 1 from 3 on all of the servers.
I was told that you can modify the amount of revisions held by the client by going into the registry for the content and modifying the CacheEntriesEx key.
HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\Content\{C60DC234-65F9-4674-94AE-62158EFCA433}\CacheEntriesEx from 3 to 1 {C60DC234-65F9-4674-94AE-62158EFCA433} being the 32 bit definitions.
Then I restarted the Symantec management client service (smc -stop) (smc -start)
Ran the Rx4Defs tool on the machine
Then Waited for the definitions to update to the current version and then check folders.
C:\Program Files\Common Files\Symantec Shared\VirusDefs
The registry change appeared to leave the current, the original install folder, and also an empty folder. I was told I can manually delete these folders by starting and stopping the service accordingly. I do not want that to be a permanent solution for this.
Has anyone else used the registry change and have it be successful?