Endpoint Protection

Just started using SEP 11 and so far I have only rolled it out to a few new 64bit servers as a test (the rest of our network is still on Symantec anti-virus 9).

I am having an issue where the SEPM console is reporting that all my clients are failing their Scans, and definition updates.

However, if I log onto the client machines, they are receiving their def updates fine and are performing their full scans with no problems.

Further to this, if I look at the Clients tab (properties of client) the definitions fields are blank (example screen shot attached).

I have tried searching on this issue; however the closest I have got is a thread saying they are having the same problem and opened a support ticket. No work arounds were given.

I am hoping someone has come across this and has an answer so I don't have to palm it off to one of the sub-ordinates to deal with Symantec support.

If anyone knows how the reporting mechanism works (is it a DCOM call, a call to a webservice etc) if you can explain it, that might help us troubleshoot it further from this end.

I remember an issue that SEP had once which I am not sure is fixed or not.

If the client name or description contains a special character(I think it was "&") then the reporting is broken and incorrect information is reported back.

Or you can try to update the windows script as in the thread

http://www.symantec.com/connect/forums/sep110with-nac-issue-host-integrity-configuration-file-corrupted