SEPM - LiveUpdate - Return code = 4
I’m having trouble getting definition updates via the Symentec Endpoint Protection Manager. When I go to the “Admin” tab,
click local site and do the “Download LiveUpdate Content” task, I get the “LiveUpdate encountered one or more errors.
Return code = 4; [Site: XXX] [Server: YYY]. It worked OK a few times right after I installed it then, started to the
“…Return code = 4…” error.
I tried the download task while watching my proxy and firewall logs. The firewall is allowing all connections to *.symantec.com
and *.symantecliveupdate.com OK. The proxy shows me a lot of “304 Not Modified” and “404 Not Found” status codes. I also
get a couple of “200 OK” codes. But, about half way through the update I start getting sporadic “500 Internal Server Error”,
“503 Service Unavailable”and “504 Gateway Timeout” codes. Right before I get the “…Return code = 4…” I get a series of 404’s
for url requests that look like “GET http://liveupdate.symantecliveupdate.com/F0%5E$d3$11$1e7$a2$28$b1$ea$22$ad$7dQ$b1$e8$b3f_
I’ve tried running LUALL.EXE (version 188.8.131.52) manually. It returns errors indicating I need a new version of LiveUpdate. I can download
virus definitions via the web but, I would prefer the scheduled update on SEPM would do it.
Any light anyone could shed on this situation would be greatly appreciated.