Hello all,
we run Symantec Encryption Server (PGP) version 3.4.0 (Build 1100) with around 38.000 clients. We face strange issue for MP12/MP13 (10.3.2.21495 & 10.3.2.2436) clients, for some of them the WDRT provided by GUI isn`t working. Reason for this, within DB we see that two WDRT where shown / updated within a few seconds, and the most current one is not flagged with "is current=true". So GUI is providing an "old" WDRT and for sure this WDRT is not working on client level.
We raised a ticket to Symantec about 7 weeks ago, we provided all information requested; since that time we don`t get any usable feedback, beside it`s not reproducible.
We have generated a script to get affected machines listed (script attached); we don`t talk about a static list of clients, it`s somehow randomized, clients will repair by themself during next sync with Mgmt Server but in case a client need a WDRT in between it will fail. We don`t see the same clients it`s always different (only few exceptions we saw 2-3 times meanwhile).
device_id | recovery_token | synchronized_date | is_current
--------------------------------------+-----------------------------------+------------------------+------------
ff5156cd-29e9-496a-be2c-086ddc7499dc | PZD76-WY2LH-5JQ69-96MH6-PW5XV-WYE | 2016-08-17 10:49:37+00 | t
ff5156cd-29e9-496a-be2c-086ddc7499dc | 3YN59-ZQJ5Q-50HBT-U1C7K-EL0LG-06D | 2016-08-17 10:49:43+00 | f
As you see the sync date for the "current" token isn`t not the most current one known by the cluster; we don`t face any cluster sync issues (we do have LB in front of our 2 cluster machines); affected clients talk to a single cluster member only; we checked all logs on all cluster members.
My question, did anyone else face such a problem?
Thanks for your feedback.
Regards, Stefan