Press "Enter" to skip to content

Posts published in “Symantec”

Symantec Endpoint Encryption 11.3.x Issues, Tips and Tricks


 This post is to record some issues, tips and tricks I met during working on Symantec Endpoint Encryption project. ESXi VM Hard Drive Recognized As RemovableMedia The Removable Media Encryption feature additionally supports VMware vSphere. VMware considers boot disk as removable disk. For Symantec Endpoint Encryption Drive Encryption to work correctly, disable the HotPlug capability in VMware. Refer to the following VMware article to disable this capability: Disabling the HotAdd/HotPlug capability in ESXi 6.x, 5.x…

Check Symantec SEPM Health Status


Here are some notes I kept for checking SEPM server’s health status. Symantec Reporting Symantec Reporting : https://xxxx:8445/Reporting/login/login.php Symantec Report Server Health notification Scheduling a Server Health notification or running a Server Health Report on the SEPM can be useful in identifying underlying issues. This Site Status Report can swiftly identify if the server is affected by persistent or intermittent underlying resource issues. (For example, insufficient hard drive space or RAM.)The SEPM can be configured to raise an alert when…

LogRhythm Remote Windows Log Collection Integration with Symantec SEPM MS SQL DB


This post describes how to configure LogRhythm Agnet to collect the Symantec SEPM logs through MS SQL DB. Method 1 – Syslog Forwarding 1  This is traditional way to forward logs from SEPM to Syslog servers, such as ArcSight, Splunk, Qradar, LogRhythm, etc.  Note: SEPM does not support multiple syslog servers. Only one host can be configured and supported. Procedure Log in to your Symantec Endpoint Protection Manager system. In the left pane, click the Admin icon.…

Windows 10 Security Center Shows Red x Icon On Firewall & Network Protection with SEP Installed Machine


Encountered this issue recently while testing policy. This post is to record the solution for my reference.

The notification and description on this issue in Windows Security is quite confusion. It mentions actions needed in Symantec Endpoint Protection.

But if you open SEP, it will just show you Your Computer is protected and no problems detected.

Symantec SEPM Configuration and Client Deployment Notes


Here are some of my notes for configuring SEPM (Symantec Endpoint Protection Manager) and SEP (Symantec Endpoint Protection) Client. It only records some of my working experience which I met during Symantec Project.  M ost of notes is just for reminding me how to complete this task. It might not fit into all situations since it is only specific for my environment.  The version I am using is 14.2.1 (14.2 RU1). One SEPM installed at main site, and another SEPM installed at DR site. They are replicated to each other through configuration. We are using MS SQL Express since the environment is not that big size , less than 1000 users.