Endpoint Protection

 View Only

  • 1.  Symantec EndPoint Protection - Definition Update

    Posted Dec 11, 2015 07:07 AM

    Dear Experts,

     

    We are looking to fetch the information using WMI CMDlet's. Using PowerShell Command, Identifid that it requires to use the WMI Name Space & Class.

    WMI Name Space : Root\SecurityCenter2

    WMI Class : AntiVirusProduct.

     

    If this WMI Cmdlet's are not available in any of the Machine. Do we have any other WMI Commands to find the date and result about the Updated Version details (Definition Updates).

    Please share your suggestion and advice us.

     

    Thank you,

    Veera



  • 2.  RE: Symantec EndPoint Protection - Definition Update

    Posted Dec 11, 2015 07:40 AM

    SEP/SEPM does not have any powershell integration. You're best of querying the registry or SEP's AV content directory.



  • 3.  RE: Symantec EndPoint Protection - Definition Update

    Posted Dec 13, 2015 01:09 AM

    Thank you.

    It would be helpful, If we come to know  

     

    1. What could be the reason the WMI Name Space "SecurityCenter2" is not visible in the Windows Management Instrumentation (WMI), which we are suppouse to have & visible in the End Points (Client Operating System - Windows 7, 8/8.1, 10)

     

    2. Since this is kind of check which going to execute on each & every machine (By End User as On Demand - i.e., User can check about the status of the definition updates on their own machine which connected in the coroporate environment)

    Our Secuirty Team - Does not allow to capture the information about the settings.

    Hence we preferred to identify the Status of the Definition Updates (For SEP from Client OS).

    Please check & advice us..

     

    Regards,

    Veera



  • 4.  RE: Symantec EndPoint Protection - Definition Update

    Posted Dec 13, 2015 04:59 AM

    I remember one of my customer complaining about something thing like this when SEP 12.1 RU1 MP1 was around. Can you please let me know the version of your SEP and the O/S ?



  • 5.  RE: Symantec EndPoint Protection - Definition Update

    Posted Dec 14, 2015 03:40 AM

    Dear Praveen,

     

    Thank you for your time. The Current Version of Symantec in my Environment is "Version 12.1.6" (RU6 MP1) Build 6318 (12.1.6318.6100). I am trying to use any of the WMI Commands to find the Status of the definition updates on each & every machine (On-Demand Basis : User can do by using the WMI Script). Please provide any suggestion on this

     

    Regards,

    Veera



  • 6.  RE: Symantec EndPoint Protection - Definition Update

    Posted Dec 15, 2015 01:37 AM
    Hi Veera Ragavan, There isn't any such script readily available and from what I understood through your post, SEP is still not fully supporting the WMI. So I would suggest you to raise a ticket with Symantec support and bring it to their notice so that they can provide you a solution or a work around.