Hi Guys:
Is there anyway where we can force SEPM to download definitions via ssl from liveupdate.symantec.com instead of ftp ?
Cheers!
How are you seeing it coming via ftp?
The connections happen automatically so there really isn't anything you can configure within SEPM.
See this.
I can see this clear text communication in my SIEM.
This just happens automatically.
@ Brain : Is there anyway we could change it to SSL ?
No way It's default Live update URL.
See Symantec live update URL.
https://www-secure.symantec.com/connect/forums/urls-default-symantec-liveupdate-server
No not from the SEPM. This starts on the Symantec end. LU does use 443 as well in addition to 80 and 21 but it may vary.
But can we change it to 80 ?
As per below articles you need to open below firewall port for update defination.
How to determine whether your firewall is blocking LiveUpdate
So if I block 80/8080 in my firewall , the communication happens on 443 only. that's the best way to go with.
You can try may be it will work.