Hey All,
Thanks for all the quick responses and questions. Here are the answers in no particular order.
1) These SEPM servers were upgrades from SEP 11 MR4-MP1 to MR4-MP2. When they were MR4-MP1 they worked fine, but once we upgraded to MR4-MP2 the issue showed up on two out of three servers.
2) Symantec Endpoint Protection is installed in the default location on the C:\ drive (which is the system drive of these machines). We have over 50GB of free space on these servers. So running out of disk space definitely isn't causing the issue.
3) On all three SEPM servers we have enabled the option to Upload SAV Version 10.x log Files. This was enabled when they were MR4-MP1 and is still enabled now.
4) As for memory and the database used on each server:
SEPM A: 2GB RAM, running Symantec embedded database (SAV 10.x logs don't upload)
SEPM B: 2GB RAM, running Symantec embedded database (SAV 10.x logs don't upload)
SEPM C: 4 GB RAM, running MS SQL 2000 (SAV 10.x logs upload fine)
5) SEP clients can check into these servers just fine, the issue is only with the SAV 10.x logs being uploaded.
One thing I want to reitereate is these servers ran fine as MR4-MP1. The issue only arose after the upgrade to MP2. One thing I am trying to determine is if the logs are not making it to the SEPM at all, or if the SEPM is just not able to process them once they do arrive. I checked the reporting agent LogSender logs on my SAV 10 server and they don't indicate any issue with connecting to the SEPMs.
Is there a method to check if the SAV logs are making it to the SEPM server?
Keep the questions coming!
Jeff