keep SEP just monitor and stop clean or delete files

I need a solution

hi 

I have a big problem with SEP when I install it on any client either windows domain server or some other application server it stops everything and also quarantines some application files, kindly I need your help as soon as possible to deal with this issue I need to make a client package with just log only and not take action like quarantine or clean or delete just to monitor and log.

0

Related:

  • No Related Posts

Local User Account Information Report

I need a solution

This report is built into CMS, but I’m trying to get it to report in GB.  Every time I try to modify the SQL, I click apply and it just stalls out on me with the “please wait” bar.

Am I doing something wrong? Or is there some other way in SQL to do this?

I tried simply replacing 1048576 (1024×1024) to 1073741824 (1024 x 1024 x 1024) and couldn’t get that to save.

I’m just looking for a way to run a report on a computer that shows me GB per user profile on the machine.

Attaching sql as attachment since forums doesn’t like it.  Appreciate any suggestions.  Thanks as always!

0

Related:

  • No Related Posts

SEP is blocking websites from working on W2k3 servers.

I need a solution

We are seeing issues with SEP 12.6 on Win2k3 webservers where the websites become unavailable. If we disable Network Threat Protection, the sites become available once again. We can re-enable it and the websites will contrinue to work for some period of time until it happens again. How do we acertain what is causing this and how do we prevent it from causing the website unavailabilty?

Thanks,

DeShark

0

Related:

  • No Related Posts

Symantec Endpoint Protection Blocking functionality of Outlook, IE and Skype for Business

I need a solution

Hello Everyone.  I’ve been dealing with a problem with SEP since the start of the year.  I’ve called Symantec support several times about this issue and have not been able to get a resolution.  My issue is that Symantec is clearly blocking certain functionality of Outlook, IE and Skype for Business.  It allows each one to open, but Outlook will not connect to Exchange Server, IE will not load any web pages and Skype for Business will not display any contacts.  Disabling Symantec and restarting these applications immediately resolves the problems with all.  SEP can then be re-enabled and will work fine, for a period of time until this happens again. 

This is an intermittent problem affecting only a small amount of our computers at any given time. I’ve uninstalled SEP and installed the latest version 14.2.758.0000 and for awhile this version ran without causing this problem.  But within the last week or 2, even this version seems to be blocking.  This problem has existed for me since earlier this year when the Spectre and Meltdown vulnerabilities became a concern.  It affects both Windows 10 Pro and Windows 7 Pro systems.  I’ve been unable to find any similarities between affected machines to draw any conclusions.  I only know that all 3 of those programs are affected and not always at the same time. And only on a small number of computers at any given time. 

The affected users are getting frustrated disabling Symantec Endpoint Protection, closing and reopening the apps and then re-enabling SEP to continue protection.  But every time I’ve called Symantec on this they have not been able to adequately find a cause of the problem.  And often when they do help, after an uninstallation/reinstallation, the problem goes away for a long period of time which implies it has been fixed.  But it keeps coming back. 

Most of my computers are running either 12.2.758.0000 or 14.0.3929.1200.  I’ve looked through the client logs and cannot see any indication these applications are being blocked, I only know it is Symantec because when I disable or uninstall, the problem goes away.  All clients update daily from either my servers or the internet.  This affects 3 different offices each with their own SEPM, all running the same 12.2.758.0000 version.  I have created an Exception policy and included outlook.exe, iexplore.exe and lync.exe on it as log only.  Yet this problem still happens on those computers so I don’t think Symantec is blocking it intentionally.  I think this is a result of some bug. 

Has anyone else experienced this problem?  Any ideas I can try?  I will probably have to call Symantec again, but I don’t think they will be able to identify the problem and fix it.  And any reinstall will surely fix it without addressing it so the problem will continue to pop up.  Any help would be appreciated. 

0

Related:

  • No Related Posts

Console policy Audit

I need a solution

HiAll,

I need some detailed information about policy change events. I can see these events through enforce console, however the log detail shows only that the policy is changed. I cannot see what is the change in detail (like keyword added/removed, rule added /schedule changes/ remediation time change, etc.) . Actually I am looking a detailed log what changes where in the policy and time

Thanks
SS

0

Related:

  • No Related Posts

I need solution for search filter as policy substitution realm

I need a solution

Hi everyone,

I have ploblem when the user was login via Wi-Fi.

I set the controler send the wireless accounting to proxy and set the proxy receive to session-monitor success.

But I see the field User-Name on PCAP have 3 form Username “DomainUsername.lastname” , “Username.lastname” and “Username.lastname@Domain”.

I need group three form upper to using by one search filter algorithm. But, I failed for test that and don’t have ideal for search filter.

Pls. help me for create the search filter for three upper form in one result form “Username.lastname”.

Thanks

Sakkarin Pichetskul

0

Related:

  • No Related Posts