Endpoint Protection

We install Symantec Endpoint Protection 11.0.7000.975_RU7 on Windows Server 2008 SP2.

For now we have 6 clients all running Windows Server 2008 R2 SP1.

I can see all clients when I try to ''Find Unmanaged Computers'' and I can deploy client install package on them. SEP software gets installed, but the clients do not appear in the management console. Clients can't get any virus def. update or policy update.

I have rebooted the client machines after install.

Does anyone have any recommendations as how to resolve this?

Disable windows firewall on both client and also on the server

Hi qubick,

Check links

https://www-secure.symantec.com/connect/forums/symantec-clients-not-showing-end-point-console#comment-3586971

https://www-secure.symantec.com/connect/downloads/sylinkreplacer-tool-connecting-sep-clients-sepm

Is the Windows firewall enabled on the SEPM enabled, or is anything blocking the SEPM's default port of 8014 in anyway?

Are you able to perform the secars test from the client to the server as described in the below article?

http://www.symantec.com/docs/HOWTO55019

Hi hidayetaltun,

I can't replace sylink.xml because I don't have working/communicating client.

I check sylink.xml on one client and on server and they are different.

its the SYLINK FILE WHich is causing the issue.

ideally the sylink file will have info about server and port number used for communication

used this document and replace sylink from the managment server, if it works then use the tool

http://www.symantec.com/business/support/index?page=content&id=TECH90761

I stop the windows firewall services for the test but the problem is still the same.

I can't perform secars test.

Can you let us know what the results of the secars test were, as well as the results for the following...

Ping SEPM by name and by IP address from a client

Telnet to the SEPM on port 8014 (or whatever port you're using on your SEPM) from your client

Are your clients and your SEPM on the same LAN segment, or are they separated by routers&firewalls, and do these network firewalls allow the SEPM port?

Hello,

Server 2008 uses a profile based approach to the firewall settings. Again, use the netsh command but you will need to specify profile you want to configure (or disable in this case):

netsh advfirewall set <profile><profile> state off</profile> 

Values for <profile> <profile>are as follows:

allprofiles - change the settings for all the profiles.
currentprofile - change the setting for just the current profile.
domainprofile - change the settings for the domain profile.
privateprofile - change the settings for the private profile.
publicprofile - change the settings for the public profile.

If SEPM and it's associated processes (Tomcat, IIS, etc..) are the only applications on this server, we recommend using the "allprofiles" profile for the command line; otherwise choose the appropriate profile.</profile>

Incase, that does not help, please work on the Article provided below:

http://www.symantec.com/docs/TECH105894

Hope that helps!!!

Try what SMLatCST has suggested... try ping or telnet your server... and from there you can narrow down the issue..

Also as others explained, check your sylink file... see its details

gl !

1) Turn off UAC on server

2) check the event logs for errors. it may say a reboot is pending for the server

3) Through SEPM/admin/instaleld packages.select the installed package you want to install on the servers, right click and select export. choose what you want and this will create an executable . then go to the server in question and install the executable

Item 3 is the easiest way to find out what the issue is.

Problem was/is with firewall on SEPM server, it is turn off for now but these servers need to be PCI DSS Compliance and I will have to turn it on again.

Thank you all for your help.

that was the first I told u to check :) 

u just need to create an exception for the port used by sepm in the firewall.

You dont have to turn it off completely...