Endpoint Protection

 View Only

  • 1.  Symantec 11

    Posted May 07, 2009 02:26 PM
    I have just push out SEPP 11 MR4 to 600 of my users. I am seeing a issue with one of our login scripts that runs when a user 1st logs in to there PC. We have a Inventory Script that runs when a users logs on there PC thats ask them  some general question  name, location etc..........but the issue is when the users hit ok after  putting in the information it locks up on writing to lan card.
    Didn't have this issue before installing SEPP 11. 

    Is there anyway to have Symantec to ignore that process  


  • 2.  RE: Symantec 11

    Posted May 07, 2009 06:22 PM
    You could try adding the script to your policy excemptions. The SEP maybe treating that as a malware.


  • 3.  RE: Symantec 11

    Posted May 07, 2009 07:14 PM
    wouldn't it say if it were treating it as a malware........


  • 4.  RE: Symantec 11

    Posted May 07, 2009 07:28 PM
    Yes it should, still try to add it as an exception though and see if that takes care of the clash between the script and SEP. Thanks.

    Grant-


  • 5.  RE: Symantec 11

    Posted May 07, 2009 07:47 PM
    A lot of forum users here have disabled Network Threat Protection. But I'm not going to suggest that. I'll just wait for Tech Support, Symantec Employee or Trusted Advisor to agree on that.


  • 6.  RE: Symantec 11

    Posted May 07, 2009 07:52 PM
    You could also try what mon_raralio suggest, not as a solution to our problem, but if that takes care of our issue then we can better narrow down what are problem is.

    Grant-


  • 7.  RE: Symantec 11

    Posted May 07, 2009 11:48 PM
    Is this a nina script? if its a batch file script can you pipe / redirect it to a log? So we can capture an error?


  • 8.  RE: Symantec 11

    Posted May 08, 2009 01:41 AM
    Related to Pauls' advise, if vbscript and if it contains "On error resume next", comment out that line to hopefully get a meaningful error message.

    Back in the early days of SEP, I had some issues with a group policy deployed script bombing out due to SEP resource usage.  The fix was to modify my AV policy in SEPM so that SEP loads with windows, not at boot time.  Give this one a try, if it doesn't helps, it's easy enough to change back.


  • 9.  RE: Symantec 11

    Posted May 08, 2009 11:04 AM
    To modify AV policy in SEPP so that SEPP loads with windows and not at boot............ How would I go about doing that


  • 10.  RE: Symantec 11

    Posted May 08, 2009 03:43 PM
    I don't think this is the route you want to take (delaying when SEP starts). Try just adding the script as an exception. I posted the link below on how to do this. Cheers,
    Grant-

    http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2008092302060248