Video Screencast Help
Endpoint Management Community Blog
Showing posts tagged with 7.x
Showing posts in English
Ludovic Ferre | 07 Dec 2012 | 0 comments

A customer of mine called in yesterday with a package replication issue.

After re-installing CMS afresh on a server they had they package server estate out of synch and not getting packages replicated, with varying numbers but on average 75~90% of the packages retrying download.

We started the troubleshooting following the usual avenues - from the Package Server logs to the SMP itself.

But the error came back at us on a couple of occasions - during a direct (from IE) hit to GetPackageInfo.aspx (using the download url from the PS verbose logging) and during profiling.

The error stack trace was pointing to a root cause outside of the Altiris realm:

Exception...
 at System.Net.Dns.GetAddrInfo(String name)
 at System.Net.Dns.InternalGetHostByName(String hostName, Boolean includeIPv6)
 at System.Net.Dns.GetHostEntry(String hostNameOrAddress)
 at Altiris.NS.Server...

This pointed to an environment issue and I dived straight into the code (...

Michael Grueber | 03 Dec 2012 | 0 comments

For a recording of an excellent webcast on "Effective Patch Management for Clients and Servers", please see:  https://www.brighttalk.com/webcast/5691/60201

The presentation was given by Joseph Carson and Santana Villa from Symantec.  Joseph is a Senior Manager of Product Management.  Santana is a Regional Product Manager.

The webcast covers the following topics:

  • Challenges, Potential threats and risks
  • Symantec's approach to patching
  • The Symantec advantage
  • Coming soon from Symantec

 

 

 

Ludovic Ferre | 21 Nov 2012 | 1 comment

I just wrote an article in French regarding recommanded application pool configuration for the SMP and IIS.

It's available [1] but I won't tease you too much. Here is the most interesting part from it, a batch script to automate the pool creation, "straight off the bat" as a British friend of mine would put it. Please note that some web-applications work nicely in their own pools, but other need to remain in the /Altiris application domain. So if you feel like trying to craft your own, keep this in mind and be ready to revert.

 

@echo off
set appcmd=%comspec%\..\inetsrv\appcmd

%appcmd% add apppool -name:Altiris-NS-Agent
%appcmd% set apppool Altiris-NS-Agent -managedPipelineMode:Classic
%appcmd% set app "Default Web Site/Altiris/NS/Agent" -applicationPool:Altiris-NS-Agent

%appcmd% add apppool -name:TaskManagement
%appcmd% set apppool TaskManagement -managedPipelineMode:Classic
%appcmd% set app "Default Web Site/Altiris/...
Ludovic Ferre | 21 Nov 2012 | 0 comments

This evening I was asked whether I would recommand disabling IIS log file to make sure the SMP console runs as fast as possible.

My answer was (and remains) a big NO. Do _not_ disable IIS logging. It contains a lot of good information on it (that I am a big consumer of, but the value is there to anyone).

So, first lets dispell this nonsense about improving performances.

IIS logging is done on the http.sys driver, so it run in the Windows Kernel. You can verify this using procexp as per the image below. This means logging requests once they are completed (as this is when it) does not cost any context switching (as it would if it was in living user space). Besides, each entry is normal less than 1024 bytes, which means the "cost" of logging entries is fractional: push the information already held in memory to disk.

If you compare the cost of doing this tiny little task with what happens in user mode in the w3wp.exe (handling the request in ISAPI...

Ludovic Ferre | 13 Nov 2012 | 5 comments

This blog post has moved to a proer download :D.

For the full documentation and latest news please go to: https://www-secure.symantec.com/connect/downloads/cwoc-patch-automation-full-test-life-cycle. Note that the historical files will remain avalable here.

stebro | 12 Nov 2012 | 0 comments

One of the challenges related to critical applications on Windows desktops is end user’s or malware’s ability to kill critical services and processes. Critical applications in an enterprise desktop can include antivirus and endpoint security products as well as systems management tools for software delivery, patching, and\or inventory. Protection of the services and processes related to these applications is key to ongoing operational security and availability.

Critical Windows applications typically run as a service that often can be stopped by a user running with administrator credentials. Any user who runs as a standard user is limited from stopping services, but as most users in enterprises run with administrator accounts they can stop those services and often do. Reasons for stopping critical services vary, but the most common reasons include complaints about performance impact of such applications or not wanting to be controlled by corporate IT. Whatever...

Ludovic Ferre | 12 Nov 2012 | 0 comments

In case you have missed the new download here on Symantec connect [1] I'm doubling up the announcement here on my blog:

It's been a very long while since I posted a download on Connect but tonight I've got something worth sharing.

This week I needed to work on implementing automated patching for one of my customer with Workflow and this lead me to consider writing something similar to the 6.2 [2] tool we had, but for 7.1.

And it turned out to be rather trivial, compared to the code we previously had to write.

This is because the Patch Workflow API contains everything needed to handle the staging of bulletins and creation of software update policies.

So, I'm attaching a single executable file (_warning_ this is still beta code) to this download.

And here's a brief description of the tool command line options:

File name: ZeroDayPatch.exe

File path: "<...

tgrandpre | 12 Oct 2012 | 0 comments

As a current Endpoint Management customer, you are likely already entitled to upgrade to the latest version as part of your maintenance. Since the 6.x release, Symantec has released a number of very powerful enhancements and improvements that will likely benefit your organization. 

In this *recorded webcast, you'll learn about the latest features of Symantec Endpoint Management, as well as understand how to locate the resources and assistance for a successful migration from previous versions. There are numerous tools and tips to help you make the upgrade easy.

This webcast includes technical details that are sure to help you plan your move and reap the benefits of Symantec’s Endpoint Management solutions.

View Webcast HERE

*Live...

stebro | 11 Oct 2012 | 0 comments

The Ponemon Institute’s 2012 Cost of Cyber Crime Study sponsored by HP has just been released with some very interesting data. The increasing costs found in this study would argue for additional protections beyond what most organizations are using.

Here are some summary points from the study:

  • 6% increase of costs over 2011
  • 42% increase in the number of cyberattacks with organizations experiencing an average of 102 successful attacks per week
  • Information theft accounts for 44 percent of external costs up 4 percent from 2011
  • 78% of costs come from malicious code, denial of service, stolen or hijacked devices, and malicious insiders
  • Disruption to business or lost productivity accounted for 30 percent of external costs
  • Average time to resolve a cyberattack is 24 days with the average cost incurred at $591,780
  • Recovery and...
hugo_parra | 09 Oct 2012 | 3 comments

Continuing our commitment to help you, our users, get the most value out of the Endpoint Management solutions, the product team is sponsoring twelve groups on Connect. In these groups, you will find the best how to videos, articles, and product extensions available. By participating in one or more of these groups (depending on your needs and interests) you will gain access to best practices and content that has been reviewed by our subject matter experts. You will also find access to insightful advice from other users and a trusted conduit for submitting ideas for new content and improvements to our product team.

All these groups are live now! We encourage you to join these sponsored groups and start collaborating with our product team to make our solutions as valuable to you as they can be.

For more information on what a sponsored group is and for instructions on how to join and contribute, see the following article:
...