Quantcast
Channel: Symantec Connect - Products - Discussions
Viewing all 19880 articles
Browse latest View live

Auto upgrade prioritization

August 3, 2015, 10:35 am
$
0
0
I need a solution

We're beginning to apply the autoupgrade from version 12.1.4 to 12.1.6 MP1 this week for both our server and workstation clients.  As we do not force the reboot of servers we were looking to coordinate with our server team to do the reboots.  We have 23k clients in all and my manager wants to to set the autoupgrade for 1 day and to provide our server team with batches of servers to be rebooted prior to moving forward.  As the checkins are set for every hour should I expect that by the following  night they should have all downloaded the files or given the number of clients should I consider that there may be some delay?  And if so is there a particular method that the SEPM uses to prioritize distribution?

Search

Licensing an unmanaged client

August 3, 2015, 7:04 pm
$
0
0
I need a solution

I'm trying to manually activate the license of an unmanaged SEP Mac Client by using my .slf license file.

I know how to do it on windows OS, but I don't know how to do it on Mac OSX. I also can't seem to find articles that may help me.

Invalid PGP Virtual Disk

August 3, 2015, 7:12 pm
$
0
0
I need a solution

I created a virtual encrypted disk a few months ago. I mounted and used the disk a couple of weeks ago.  Today, I unsuccessfully mounted the disk.  I received the following error message.

Invalid PGP Virtual Disk: The specified disk doesn't appear to be a valid legacy PGP Virtual Disk. 

Is there any way to recover this disk?  I have important data stored and at a lost right now.

Thanks.

virtual Disk1.png

virtual disk.png

PC was broken with encryption by PGP Whole Disk Encryption

August 3, 2015, 7:35 pm
$
0
0
I need a solution

PC was broken with encryption by PGP Whole Disk Encryption,

Maybe the mother board was broken.

So, I connected the disk to other PC via USB.

But, other PC recognized the disk as not initialized.

I couldn't decrypt the disk.

How to recover the data?

SEE Manager 11 The domain user credentials did not pass verification

August 3, 2015, 10:52 pm
$
0
0
I need a solution

Hey guys. I am trying to deploy the Symantec Endpoint Encryption 11 Manager onto a server.

I run into the a problem when I have to specify the Windows domain account to use for database access.

I enter the service account which has full admin rights to the SQL INSTANCE and I get the following error:

The domain user credentials did not pass verification. Re-enter the user name, password, and or domain and try again.

Weird thing is that when I enter my username and password it continues. It only seems to proceed with my username and password. I was following the HOW TO HERE in which they also used a service account. The username and password are correct. This is the same account that is used to run the services. Does it require a domain admin username and password?

see.PNG

Does the Application and Device Control still working?

August 4, 2015, 3:16 am
$
0
0
I need a solution

Hey guys,

I've been following this KB : https://support.symantec.com/en_US/article.TECH97618.html for application and device control, we're running RU6 is it still working? Because I can't make it work, I checked the filefingerprint that I'm using and I'm sure it's correct yet it's not working.

Thank you,

.dax file nomenclature & size

August 4, 2015, 4:33 am
$
0
0
I need a solution

Hi,

At our organization we have configured GUP servers. From SEPM repository is getting build up at shared folder under installation directory. I want to know following things :

1. What the parameters that control dax file generation?

2. What is typical nomenclature maintained for dax file i.e say for folowing dax file

#content#TempCache#{55DE35DC-862A-44c9-8A2B-3EF451665D0A}#150724011#xdelta150724011_To_150731011!dax

what does it indicate? (Like from which date to which date this signature is building up? what does the nomenclature mean?)

3. What is typical size of dax file for clients having signature older than 1,2,3 .... 30 days?

Consumer Group "Everyone" members

August 4, 2015, 5:02 am
$
0
0
I need a solution

Hi,

I wanted to check regarding the Everyone Consumer group in Symantec PGP server.

Is there a way to disable this group?

Is there a way to have no users join this group?

Also, if we remove the consumer policy assigned to this group, will the users stop populating in it?

Thanks.

Search

Symantec Endpoint server weak cipher suites

August 4, 2015, 7:21 am
$
0
0
I need a solution

Our security scans are reporting the a service on our SEPM server is using weak cipher suites. We've already disabled any weak ciphers and protocols from the Windows registry but it appears that these alerts are coming from the Apache/Tomcat install that comes with SEPM. I know very little about Apache/Tomcat but was able to locate the configuration files. I believe these files contain connection information that is using weak protocols/cipher suites.

Anyone had to fix these before?

PGP Desktop 10.3.2 + Outlook 2010: doesn't decrypt message and sends them without PGP encryption

August 4, 2015, 8:47 am
$
0
0
I need a solution

I don't use my PGP setup on a regular basis, so this might be an ongoing issue for some time I only noticed now:

  • My Outlook 2010 doesn't automatically decrypt PGP messages automatically as it used to (but drag/dropping it into PGP Viewer works)
  • Sending emails which should be PGP encrypted or/and signed seems to work (no blocking or warning), but the message gets sent without any protection despite the verbose logs (see below)
I already attempted solutions, including
  • Ensuring the keys of my counterparties are imported and adequately signed
  • Rebooting the computer (several times...)
  • Disabling EMET for Outlook to see if there is any issue due to this
  • Verifiing my anti-virus has no email hook active
  • Enabling debug logging of PGP (instead of just plain verbose mode)

As you can see in the debug error logs, PGP claims to be sending emails encrypted but neither the passphrase is asked nor the email is encrypted (but email is sent!).

16:59:39            ----- Encryption Desktop started -----
16:59:39            Encryption Desktop 10.3.2 (Build 15495) (15495)
16:59:39            Today's date is XXXXX
16:59:39 PGP     Info    Setting logging level to: 0x3FFFF
16:59:39 Email     Debug    >> PGPocTrayLoadAccountData
16:59:39 Email     Debug    << PGPocTrayLoadAccountData
16:59:39 Email     Debug    << PGPocTrayLoadPrefsData
16:59:39 Email     Debug    << PGPocInitApplication
16:59:39 Email     Info    Email proxying is enabled and active
16:59:39 Email     Debug    >> PGPocInitThreads
16:59:39 Email     Verbose    Listening on port XXXX
16:59:39 Email     Debug    >> PGPocInitializeWorkerThreads
16:59:39 Email     Debug    << PGPocInitializeWorkerThreads
16:59:39 PGP     Verbose    Worker threads started
16:59:39 Email     Verbose    Connection accepted
16:59:39 Email     Debug    Queueing socket 0x684 for worker
16:59:39 Email     Debug    Socket 0x684 dequeued by worker
16:59:39 Email     Debug    Received OIPCINIT
16:59:39 Email     Debug    >> PGPocInitIndirectSession
16:59:39 Email     Debug    Session-type: LSP
16:59:39 Email     Debug    Don't proxy ourselves
16:59:39 Email     Debug    Not redirecting LSP session
16:59:39 Email     Debug    << PGPocInitIndirectSession
16:59:39 Email     Debug    PGPocInitIndirectSession succeeded
16:59:39 Email     Debug    Sending OIPCINITRESP
16:59:39 Email     Debug    Closed client socket: 0x684
16:59:40 Email     Debug    << PGPocInitThreads
16:59:40 Email     Debug    Token thread successfully loaded PKCS11 driver ''
16:59:40 Email     Debug    Starting initialization procedure
16:59:40 Email     Debug    >> PGPocTrayLoadPrefsData
16:59:40 Email     Debug    << PGPocTrayLoadPrefsData
16:59:40 Email     Debug    >> PGPocTrayLoadPrefsData
16:59:40 Email     Debug    << PGPocTrayLoadPrefsData
16:59:40 Email     Debug    >> PGPocTrayLoadPrefsData
16:59:40 Email     Debug    << PGPocTrayLoadPrefsData
16:59:42 Email     Debug    >> PGPocTrayCacheAccountPassphrases
16:59:42 Email     Debug    << PGPocTrayCacheAccountPassphrases
16:59:42 Email     Verbose    Connection accepted
16:59:42 Email     Debug    Queueing socket 0x894 for worker
16:59:42 Email     Debug    Socket 0x894 dequeued by worker
16:59:42 Email     Debug    Received OIPCINIT
16:59:42 Email     Debug    >> PGPocInitIndirectSession
16:59:43 Email     Debug    Session-type: LSP
16:59:43 Email     Debug    Email port redirection enabled
16:59:43 Email     Debug    << PGPocInitIndirectSession
16:59:43 Email     Debug    PGPocInitIndirectSession succeeded
16:59:43 Email     Debug    Sending OIPCINITRESP
16:59:43 Email     Debug    Closed client socket: 0x894
16:59:43 Email     Verbose    Connection accepted
16:59:43 Email     Debug    Queueing socket 0x894 for worker
16:59:43 Email     Debug    Socket 0x894 dequeued by worker
16:59:43 Email     Debug    Received OIPCINIT
16:59:43 Email     Debug    >> PGPocInitIndirectSession
16:59:43 Email     Debug    Session-type: MAPI
16:59:43 Email     Debug    << PGPocInitIndirectSession
16:59:43 Email     Debug    PGPocInitIndirectSession succeeded
16:59:43 Email     Debug    Sending OIPCINITRESP
16:59:43 Email     Debug    Received OIPCCONNECT
16:59:43 Email     Debug    >> PGPocInitIndirectConnection
16:59:43 Email     Debug    << PGPocInitIndirectConnection
16:59:43 Email     Debug    PGPocInitIndirectConnection succeeded
16:59:43 Email     Debug    >> PGPocProxyConnection
16:59:43 Email     Verbose    Processing plugin requests
16:59:43 Email     Debug    >> sPluginIPC
16:59:43 Email     Debug    >> PGPocTrayCopyLocalKeyCachesToWorker
16:59:43 Email     Debug    << PGPocTrayCopyLocalKeyCachesToWorker
16:59:43 Email     Debug    PlugIn: first event
16:59:43 Email     Verbose    Outlook Plugin: Loaded successfully.
16:59:43 Email     Debug    Received testconnection request
16:59:43 Email     Debug    Outlook Plugin: Version 14.0.0.7153
16:59:43 Email     Debug    >> PGPocAccountMaintenance1
16:59:43 Email     Debug    << PGPocAccountMaintenance1
16:59:43 Email     Debug    >> PGPocTrayKeyringMaintenance
16:59:43 Email     Debug    << PGPocTrayKeyringMaintenance
16:59:43 Email     Debug    >> PGPocAccountMaintenance2
16:59:43 Email     Debug    << PGPocAccountMaintenance2
17:00:24 Email     Debug    Received testconnection request
17:00:24 Email     Verbose    Outlook Plugin: User signed and encrypted a message with subject RE: [PGP] test
17:03:54 Email     Debug    >> PTOCHandlePolicyChange
17:03:54 Email     Debug    >> PGPocTrayLoadPrefsData
17:03:54 Email     Debug    >> PGPocTrayLoadAccountData

I'm thankful for any help!

alex

Difference between Symantec 12.1.6 MP1 and Symantec 12.1.6 MP1a?

August 4, 2015, 11:08 am
$
0
0
I do not need a solution (just sharing information)

Does anyone know what fixes are in Symantec 12.1.6 MP1a? I know that it was released last night/this morning. I'm trying to find out some information as to what's new in Symantec 12.1.6 MP1a and the system requirements.

We are running 12.1.5 on SEPM, but most of our workstations are using 12.1.4.

Thanks.

Does Encryption Desktop support Windows 10 ?

August 5, 2015, 2:15 am
$
0
0
I need a solution

10.3.2 MP9 + Win 10

Trying to create and work with virtual PGP disk.

If i chose "Fixed Capacity" 64 GB - it's failed to format disk.

If i chose "Dynamic up to 64 GB" - formatted successfully (with DOS box appeared).

But finally Windows can't access the disk. I can't see it in disk management, it is shown in File Explorer with 0 bytes size and "H:\ is not accessible. Incorrect function" error.

Any ideas how to make it work ?

RU6MP1a released now- what are the supported upgrade paths

August 5, 2015, 2:46 am
$
0
0
I need a solution

Hi,

Just saw that RU6Mp1a got released. We were in the process of about to upgrade our clients to RU6. Can someone from Symantec please confirm whether
the upgrade paths from 12.x are the same to upgrade clients to RU6MP1a directly and not upgrade to RU6 first???
 

1438771836

Applying Hardening Policies in DCS 6.5 targeting Win2k3 servers

August 5, 2015, 2:49 am
$
0
0
I need a solution

Hi everyone, I'm currently using DCS Advanced 6.5 edition and would like to apply policies to harden Windows 2003 servers since Microsoft support has ceased without any security patches availability.

- Do you run some 3rd party scanning tool, targeting the Windows 2003 servers to determine the vulnerability before/after hardening using DCS?

- How do you determine the specific policy required to patch up any detected vulnerability?

- Will it be sufficient to implement the "Hardended" or "Protected Whitelisting" Protection Strategy on the Windows 2003 servers?

Look forward to your replies and recommendations. Thanks for your help.

Where to get trial software for Symantec ATP:Network

August 5, 2015, 3:52 am
$
0
0
I need a solution

Anyone know if there is a trialware for the Symantec ATP:Network out yet? I would like to show customer value from virtual appliance...

Search

SEPM Remote Site Removal

August 5, 2015, 6:42 am
$
0
0
I need a solution

I recently added a new server to replicate with an existing 12.x. and then removed the first server.  No plans to replicate again.  During the process somehow a Remote Site appears under the admin console with the same name as the existing site.  Can it be safely removed?  Only the one server left.

SEPMRemote.JPG

Servers
- Local Site (name)
   - Server (name)
   - local host
- Remote Sites
   - Site (same name as above)
   - Server (same name as above)
   - Localhost

Network and browser IPS - SEP 12

August 5, 2015, 7:04 am
$
0
0
I need a solution

Hey Guys,

I have recently enabled network IPS and browser IPS on a slow basis across our estate. Does anyone know how I can view any logs associated with either? I can't find anything on the SEPM.

J

1438785615

After DLP 14 installation Single Tier, unable to login using Administrator Account

August 5, 2015, 7:21 am
$
0
0
I need a solution

After installation of DLP 14 Single Tier in a test lab, we are unable to login getting below error

"Invalid Username /Password or Account Disabled" However account is active and not disable. This is the first time we are attempting login.

Username is Administrator and password is what we chose after installation. Also we did reset password successfuly still new password doesnt work.

Here is the logs from Tomcat. Logs doesnt specify if there is any password error as password is correct.

Local Host Log

05 Aug 2015 05:37:23,379- Thread: 93 INFO [com.vontu.login.valve.IpCatcherValve] Unsuccessful login attempt for user Administrator at IP address: 0:0:0:0:0:0:0:1
05 Aug 2015 06:44:17,017- Thread: 90 INFO [com.vontu.login.valve.IpCatcherValve] Unsuccessful login attempt for user Administrator at IP address: 0:0:0:0:0:0:0:1

Any suggestions or possible resolutions?

Java error during Symantec Scan Engine 5.2.13 inslallation

August 5, 2015, 7:23 am
$
0
0
I need a solution

Symantec Scan Engine 5.2.13

 
 
 

SymantecScan Engineinstallationerror,displays the messagebelow, howeverhasjre-6u25installed

Java Live Update requires a minimum of JRE (Java RunTime) 1.4 and above. Please install that and then continue with the installation. This setup will abort now.

Critical Network Load Alert: Too many requests for full definitions

August 5, 2015, 8:13 am
$
0
0
I need a solution

Less than one month ago, I began the migration from SEP 12.1 RU6 and my servers to SEPM 12.1 RU6.  The servers were upgraded first then I began the upgrade of the clients.

Total clients: 1078     About 98% migrated

Servers Upgraded June 25th

Began the migration July 13th and was a phased in approach utilizing an upgrade Group.

This morning after the server downloaded content (LUALL.EXE) I began to received the error message listed in my title line.

The only error was received from Definition Name: SEPC SRTSP Settings.  Source Rev: 150302005   Target Rev: 150801006    Reason Code: 5

Reason Description: Source revision sent by client did not exist on server

Has anyone else seen this?

Viewing all 19880 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>