Endpoint Protection

We have Endpoint Protection setup on all the systems at a school I have begun working at. I have noticed virus defenitions are becoming out of date, and clients need to be manually updated. I figured I could log onto the manager console and set a new policy to automatically force an update as PC's login.

Firstly, is this correct?

Secondly, I am unable to login to the console (Installed on Server 2003). I was never given the existing username and password, so did not have the login credentials.
Have not tried web access, as never used this system before and don't know how.

I ran resetpass.bat and tried to login with admin/admin localhost:8443 but got the error 'Failed to Connect to Server'

I ran repair from add/remove software, successfully. Tried to login, same error.

Noticed 'Symantec Endpoint Protection Manager' service is stopped. Turn on, but it quickly switches off again.

Tried a few things suggested in various threads with no success. Still unable to login, still unsure what username/password was, service still automatically shuts off.

Posting logs

scm-server-0

2013-09-06 13:08:18.235 SEVERE: ================== Server Environment ===================
2013-09-06 13:08:18.250 SEVERE: os.name = Windows 2003
2013-09-06 13:08:18.250 SEVERE: os.version = 5.2
2013-09-06 13:08:18.250 SEVERE: os.arch = x86
2013-09-06 13:08:18.250 SEVERE: java.version = 1.6.0_14
2013-09-06 13:08:18.250 SEVERE: java.vendor = Sun Microsystems Inc.
2013-09-06 13:08:18.250 SEVERE: java.vm.name = Java HotSpot(TM) Server VM
2013-09-06 13:08:18.250 SEVERE: java.vm.version = 14.0-b16
2013-09-06 13:08:18.250 SEVERE: java.home = C:\Program Files\Symantec\Symantec Endpoint Protection Manager\jdk\jre
2013-09-06 13:08:18.250 SEVERE: catalina.home = C:\Program Files\Symantec\Symantec Endpoint Protection Manager\tomcat
2013-09-06 13:08:18.250 SEVERE: java.user = null
2013-09-06 13:08:18.250 SEVERE: user.language = en
2013-09-06 13:08:18.250 SEVERE: user.country = AU
2013-09-06 13:08:18.250 SEVERE: scm.server.version = 11.0.6005.562
2013-09-06 13:08:18.297 INFO: Server startup
2013-09-06 13:08:18.375 INFO: Server side cache PERCETAGE_OF_TOTAL_MEMORY=0.3  PERCETAGE_OF_MEMORY_TO_REMOVE=0.2
2013-09-06 13:08:19.688 FINE: updProcessState: checking...
2013-09-06 13:08:19.688 FINE: updProcessState: The process status has been checked.
2013-09-06 13:08:19.688 FINE: updProcessState: checking...
2013-09-06 13:08:19.703 FINE: updProcessState: The process status has been checked.
2013-09-06 13:08:20.735 INFO: use transport url:http://localhost:8014/secars/secars.dll
2013-09-06 13:08:20.735 SEVERE: ================== StartClientTransport ===================
2013-09-06 13:08:21.219 FINE: Task scheduled
2013-09-06 13:08:21.219 SEVERE: Schedule is started!
2013-09-06 13:08:22.672 WARNING: Log property file does not exist.
2013-09-06 13:08:23.172 FINE: Test db connection successfully.
2013-09-06 13:08:24.250 INFO: Writing Proxy Password: command = "C:\Program Files\Symantec\Symantec Endpoint Protection Manager\tomcat\..\bin\sesmcontinst.exe" -luhttppassword

Am curious about the final line. Could this be related to a HTTP Proxy blocking access? I cant seem to locate this file "sesmcontinst.exe"
If it were to be proxy related, how might I remedy this?

How do I test web access?

Thanks for any help!
 

Yes, you need to check the policy from the SEPM.

Have you tried restarting the SEPM?

enable the logging to finest, try login and pass on the scm-server-0 log.

Hi

Please repair and run Management Server Wizard Console

Regards

You wont be able to login in to webconsole if sepm service is not running.Enable the logging and post the logs please

http://www.symantec.com/business/support/index?page=content&id=TECH102413

The logs are already set to finest. The scm-server-0 log didnt update just from a login attempt. It did update when I restarted the service though, and I attempted login again, but unsure if this updated anything to the log

This is all I got

2013-09-10 12:22:16.811 SEVERE: ================== Server Environment ===================
2013-09-10 12:22:16.811 SEVERE: os.name = Windows 2003
2013-09-10 12:22:16.811 SEVERE: os.version = 5.2
2013-09-10 12:22:16.811 SEVERE: os.arch = x86
2013-09-10 12:22:16.811 SEVERE: java.version = 1.6.0_14
2013-09-10 12:22:16.811 SEVERE: java.vendor = Sun Microsystems Inc.
2013-09-10 12:22:16.811 SEVERE: java.vm.name = Java HotSpot(TM) Server VM
2013-09-10 12:22:16.811 SEVERE: java.vm.version = 14.0-b16
2013-09-10 12:22:16.811 SEVERE: java.home = C:\Program Files\Symantec\Symantec Endpoint Protection Manager\jdk\jre
2013-09-10 12:22:16.811 SEVERE: catalina.home = C:\Program Files\Symantec\Symantec Endpoint Protection Manager\tomcat
2013-09-10 12:22:16.811 SEVERE: java.user = null
2013-09-10 12:22:16.811 SEVERE: user.language = en
2013-09-10 12:22:16.811 SEVERE: user.country = AU
2013-09-10 12:22:16.811 SEVERE: scm.server.version = 11.0.6005.562
2013-09-10 12:22:16.857 INFO: Server startup
2013-09-10 12:22:16.951 INFO: Server side cache PERCETAGE_OF_TOTAL_MEMORY=0.3  PERCETAGE_OF_MEMORY_TO_REMOVE=0.2
2013-09-10 12:22:18.311 FINE: updProcessState: checking...
2013-09-10 12:22:18.311 FINE: updProcessState: The process status has been checked.
2013-09-10 12:22:18.311 FINE: updProcessState: checking...
2013-09-10 12:22:18.326 FINE: updProcessState: The process status has been checked.
2013-09-10 12:22:19.295 INFO: use transport url:http://localhost:8014/secars/secars.dll
2013-09-10 12:22:19.295 SEVERE: ================== StartClientTransport ===================
2013-09-10 12:22:19.779 FINE: Task scheduled
2013-09-10 12:22:19.779 SEVERE: Schedule is started!
2013-09-10 12:22:21.529 WARNING: Log property file does not exist.
2013-09-10 12:22:22.107 FINE: Test db connection successfully.
2013-09-10 12:22:22.873 INFO: Writing Proxy Password: command = "C:\Program Files\Symantec\Symantec Endpoint Protection Manager\tomcat\..\bin\sesmcontinst.exe" -luhttppassword
 

This is in the command prompt that loads with the console when I run console.bat

English
Check for AjaxSwing running
Performing interactive login.
LoginPanel->getLoginAttr:  file: C:\DOCUME~1\ADMINI~1.CUR\LOCALS~1\Temp\1\sesm.x
ml      file exists: true
LoginPanel->getLoginAttr: attr: locationCounting value: true
LoginPanel->getLoginAttr:  file: C:\DOCUME~1\ADMINI~1.CUR\LOCALS~1\Temp\1\sesm.x
ml      file exists: true
LoginPanel->getLoginAttr: attr: getAllGroupLocations value: true
LoginPanel->getLoginAttr:  file: C:\DOCUME~1\ADMINI~1.CUR\LOCALS~1\Temp\1\sesm.x
ml      file exists: true
LoginPanel->getLoginAttr: attr: option value: more
LoginPanel->getOptionButton option = more
LoginPanel->getLoginAttr:  file: C:\DOCUME~1\ADMINI~1.CUR\LOCALS~1\Temp\1\sesm.x
ml      file exists: true
LoginPanel->getLoginAttr: attr: locationCounting value: true
LoginPanel->getLoginAttr:  file: C:\DOCUME~1\ADMINI~1.CUR\LOCALS~1\Temp\1\sesm.x
ml      file exists: true
LoginPanel->getLoginAttr: attr: getAllGroupLocations value: true


############# Begin Login ###############
GUIManager>> login: After session got cleaned up!
java.lang.ClassNotFoundException: com.sygate.scm.util.i18n.ErrorMsg_en_AU
        at java.net.URLClassLoader$1.run(URLClassLoader.java:200)
        at java.security.AccessController.doPrivileged(Native Method)
        at java.net.URLClassLoader.findClass(URLClassLoader.java:188)
        at java.lang.ClassLoader.loadClass(ClassLoader.java:307)
        at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:301)
        at java.lang.ClassLoader.loadClass(ClassLoader.java:252)
        at java.lang.ClassLoader.loadClassInternal(ClassLoader.java:320)
        at java.lang.Class.forName0(Native Method)
        at java.lang.Class.forName(Class.java:169)
        at com.sygate.scm.util.ErrorMsg.setLocale(ErrorMsg.java:229)
        at com.sygate.scm.util.ErrorMsg.<clinit>(ErrorMsg.java:222)
        at com.sygate.scm.console.util.ConsoleException.getMessage(ConsoleExcept
ion.java:55)
        at java.lang.Throwable.getLocalizedMessage(Throwable.java:267)
        at java.lang.Throwable.toString(Throwable.java:343)
        at java.lang.String.valueOf(String.java:2826)
        at java.io.PrintStream.println(PrintStream.java:771)
        at java.lang.Throwable.printStackTrace(Throwable.java:461)
        at java.lang.Throwable.printStackTrace(Throwable.java:451)
        at com.sygate.scm.console.util.ConsoleLogger.log(ConsoleLogger.java:24)
        at com.sygate.scm.console.ui.LoginPanel.login(LoginPanel.java:657)
        at com.sygate.scm.console.ui.LoginPanel.access$900(LoginPanel.java:84)
        at com.sygate.scm.console.ui.LoginPanel$3$1.construct(LoginPanel.java:36
3)
        at com.sygate.scm.console.ui.util.SwingWorker$2.run(SwingWorker.java:138
)
        at java.lang.Thread.run(Thread.java:619)
com.sygate.scm.console.util.ConsoleException: Failed to connect to the server.

Make sure that the server is running and your session has not timed out.
If you can reach the server but cannot log on, make sure that you provided the c
orrect parameters.
If you are experiencing network issues, contact your system administrator. [0x80
020000]
        at com.sygate.scm.console.util.GUIManager.login(GUIManager.java:186)
        at com.sygate.scm.console.handler.Manager.doLogin(Manager.java:60)
        at com.sygate.scm.console.handler.Manager.doLogin(Manager.java:52)
        at com.sygate.scm.console.ui.LoginPanel.login(LoginPanel.java:522)
        at com.sygate.scm.console.ui.LoginPanel.access$900(LoginPanel.java:84)
        at com.sygate.scm.console.ui.LoginPanel$3$1.construct(LoginPanel.java:36
3)
        at com.sygate.scm.console.ui.util.SwingWorker$2.run(SwingWorker.java:138
)
        at java.lang.Thread.run(Thread.java:619)
Stopping all background threads in console...
Tue Sep 10 12:27:33 EST 2013: Not Tracking User Interaction Any Longer
Tue Sep 10 12:27:33 EST 2013: Not Monitoring Server System Log Any More
Stopping all background threads in console...
Tue Sep 10 12:27:35 EST 2013: Not Tracking User Interaction Any Longer
Tue Sep 10 12:27:35 EST 2013: Not Monitoring Server System Log Any More
Tue Sep 10 12:27:35 EST 2013Not refreshing Data Cache any longer
LoginPanel->getLoginAttr:  file: C:\DOCUME~1\ADMINI~1.CUR\LOCALS~1\Temp\1\sesm.x
ml      file exists: true
LoginPanel->getLoginAttr: attr: option value: more
LoginPanel->getOptionButton option = more
 

If I can't figure this out right now its not a big deal, we are replacing the server with a new one in a few weeks, so if we don't get anywhere soon, Ill just mark this thread off

Follow this document

http://support.microsoft.com/kb/894435

Delete the previous scm-server0.log

restart sepm service ( referesh the services.msc, does it stay started or it gets stopped?)

login to sepm. (this would give us clean log)

Is your default app pool started in IIS or is it disabled?

and also check if iis is binded to any specific address

http://service1.symantec.com/SUPPORT/ent-security.nsf/2326c6a13572aeb788257363002b62aa/86368136366e1ad78025734e004734d9

11.0.6 is an old version. the new version is 12.1.3 since you are moving to the new server I would suggest to install 12.1.3 , then use the client communication deployment tool It will bring all the existing clients to new server without reinstalling

http://www.symantec.com/business/support/index?page=content&id=TECH199124