I have a server that just suddenly as of last week stopped taking updates from the SEP server...how can I troubleshoot to see why?
Are there any logs I can review?
Firstly, run the SymDIag tool on it for further error checking:
Download SymDiag to detect Symantec product issues
You can also enable sylink debugging to see the communication between the two:
How to enable Sylink debugging for Endpoint Protection clients
Supportmib, was SymDiag able to point to the issue?
RJ
I see this error:
Which I think is leading me here: https://support.symantec.com/en_US/article.HOWTO59193.html
Deleted the contents in c:\programdata\symantec\symantec endpoint protection\currentversion\data\definitions\virusdefs and deleted the keys on hklm:\symantec\symantec endpoint protection\currentversion\sharedefs (not any of the sub-key or sub-key contents).
Just waiting now to see if it pulls defs down.
Resolved the issue.
You should just need to follow the article for fixing the corrupt defs.