Gen-key and import have stopped working, Does not add the new key to the keyring.
encrypt and decrypt work fine.
Shows success on gen-key and import, but the keys are not added to key ring.
timestamp on key ring show 8/10/17 which is the last time it worked.
These files doe exist on our Net App Device, have for many years.
Moved keyrings to local drive and works.
Hi Team,
Currently i have 1 no. of SEPM 12.1 RU4 MP1a server in LAN Zone with 300 client. 1 no. of SEPGUP Server in same zone. I have installed Symantec NAC integrated enforcer for DHCP servers in DHCP Server. My quesiton is that if i upgrade my SEPM server from 12.1 ru4 mp1a to 14 mp2 directly, is there any impact in host integrity checking part in user's client system while getting IPs through DHCP.
To check this, i have restored bare metal backup of existing SEPM 12.1 into one of spare server. Uprgraded to 14MP2 in standalone mode successfully without error and remove the patch chord from live server and connected to this server for testing purpose. After sometime all the laptops got notification like host integrating checking failed and their pc gets quarantine IP and all the services got blocked. So my question is that why this type of error generated in user's client laptop. In Host Integrity checking, there are 3 nos. of parameter checking defined, domain, service pack and windows 7 and the error was generated for service pack and windows 7 only.
Hello everyone!!!
Recently I've detected 3 workstations that are creating multiple files in the directory:
C:\ProgramData\Symantec\Symantec Endpoint Protection\14.0.2332.0100.105\Data\ErrMgmt\Queue\Incoming
The folder is growing rapidly and reached: 700gb.
These cases are isolated, so I would like to know if it is possible to disable the creation of these error logs directly in regedit equal to SEP12.
Symdiag did not return any faults, I already uninstalled with cleanwipe and reinstalled from scratch, but I still have this failure.
Could someone help me in this case?
Thank you
I have a user that keeps running into a Trojan Horse popup every other week and sometimes weekly. The Trojan Horse has the following information:
Filename: dwh18f4.tmp
Location: C:\ProgramData\Symantec\DefWatch.DWH\
Risk: Trojan Horse
Status: Infected
Any help would be greatly appreciated. Thank you.
Within my DLP 14.6.01 environment, I put together a test discover scan to verify if compressed, password protected and encrypted files containing protected data would be detected. All of the subject files were based off two Excel spreadsheets and one Word document containing the fake protected information. The policy was based on Employee Data Protection. All of the Word Processing, Spreadsheet, Encapsulation and Encryption formats were selected. The compression algorithms were rar, zip, 7zip, tar, iso, bz2, maff, mht, gz and tar.gz. Each created with the native application. The Scan Target specified the Policy Group (one policy only) and Always scan all items, Saved Credentials (Domain Admin), Content Root (my network share), no Filters, no Advanced, no Protect.
A fairly basic setup.
As expected, none of the encrypted files caused an incident. Only the csv formatted Paswword Protected file generated an incident, the Excel workbook did not. All of the 'bare' files caused an incident. All of the compressed files generated an incident, with the exception of the 7zip and RAR ones. Which is where my question comes from.
The 7 Zip and RAR formats are explicitly identified in the Message Attachment or File Type Match condition. Yet, it appears they went undetected. I would say it was because DLP was looking for the .7 Zip extension as indicated in the condition and not the extension application assigns, .7z. But that does not float with the RAR ones. They have the .rar extension. Is DLP just looking at the extensions? Does it not recognize the algorithms used? What am I missing?
Djacobs
Setting up a new 14.x deployment and some of our admins are insisting that SQL files / folders must be excluded from scans
Investigating this, the only related articles I can find are several years old. I saw something that mentioned that SEP does not not scan databases by default.
So I am just seeking clarification whether it is still recommended / required to exclude any SQL content from active or scheduled scans
thanks
Hi,
Is it supported to convert DLP 14.6 Oracle database LOBs from basicfile storage to Securefile type?
As I know, DLP is still using basicfile storage, see http://www.symantec.com/docs/TECH221197.
Regards.
Hello everyone. I have a problem.
The essence of the problem: what will happen when the Symantec Endpoint Protection 14.0 Enterprise Edition licenses become over-deployed.
How will this affect the functionality of clients and the server?
What are the critical changes in functioning can happen?
Thank you.
Hello,
We are currently unable to send to many domains that use the Symantec Cloud for spam filtering Up to about 48 hours ago, we had no issues in sending emails these emails. We have a very large
number of receipents that have been affected. Please see error response below.
I have looked at the read me supply by the link below, but there's nothing there that indicates what might be causing not been able to send emails to these receipents. Our SPF/DKIM records are setup correctly.
Our sending IP address is not blacklisted.
The content of the email has not changed. I would be grateful if maybe I could be able to find out the issue and hopefully resolve as quickly as possible.
I can supply any further information that might be required.
Thank you in Advance for any help that can be supplied.
Best Regards
Darren
Your message did not reach some or all of the intended recipients:
<removed>
Error Type: SMTP
Remote server (85.158.137.83) issued an error.
hMailServer sent: .
Remote server replied: 553-Message filtered. Refer to the Troubleshooting page at
553-http://www.symanteccloud.com/troubleshooting for more
553 information. (#5.7.1)
Hi All,
We are just going through our evaluation for SEP14 and we have identified 5 v11 clients running on Windows 2000 server. Obviously we can't bring them up to 12.1 due to compatibility and we can't change the OS at the moment as this would cost a lot of money as they are manufacturing systems. I'm aware that support for v11 has ended and definition updates haven't been available from Liveupdate for quite some time but I was under the impression that updates were still delivered via SEPM. Can anyone tell me if this has also stopped now as I can't find anything definitive searching Google. These clients haven't updated since December last year.
Any help would be appreciated.
Thanks
Is there any process to request a status update for white-listing requests? It has now been over a week, and it usually only takes 2-3 days.
I am specifically interested in:
4122897
4122898
I recently started testing some Fall Creator's Update insider builds for my organization for application compatibility. I have discovered that installing SEP14 MP2 will causes Edge to hang at launch. I attempted to troubleshoot this by disabling various components but nothing outside of completely uninstalling SEP allows Edge to open. Does Symantec have plans to release a new client with full support for the Fall Creator's Update (Releases in October)?
I am trying to test burning files to a CD/DVD and encrypting the files when we do this. I have followed the directions here https://support.symantec.com/en_US/article.TECH234... but each time I try to burn files to a disk I get the following erro from the Removable Media Burner Applicaiton:
Burning Failed because of Failed to encrypt file
I have tried this with just the Removable media features installed, and wiht a computer that has the full disk encryption and Removable media features installed
I am running Endpoint Encryption 11.1.3 (Build 672)
Hi,
We have domain in G-Suite for mail purpose. we are sending mail to few client and get's bounce back to us.
Its Saying Symantec mail filter error. We suspect our domain get's blocklisted by symantec but still we are not doing any spaming activity.
We couldn't get ipaddress because its in Google cloud.
So could you please advise how to send delist request by Domain Address.
-Thanks
Vignesh
The Financial Services Information Sharing & Analysis Center’s (FS-ISAC) Fall Summit is coming up soon on October 1-4 in Baltimore Maryland. It is the fall season go-to event for Cyber Security top professionals in the Financial industry, where they can learn best practices for protecting business-critical systems and assets.
If you are attending the FS-ISAC Fall Summit, please join us at Dan Amiga’s presentation. Proxy 3.0:Block & Allow, Meet Isolate, Tuesday, Oct. 3 at 11:15 am. During this session, Amiga will present the evolution of the proxy and discuss how the next generation of proxies integrate with Web Isolation (aka remote browsing), which augments the traditional block or allow web access proxies. Web Isolation eliminates malware and phishing threats while allowing broad and secure web access to potentially risky sites.
Dan Amiga is the CTO and Co-Founder of Fireglass, the leading web isolation platform that was acquired in July 2017 by Symantec to enhance its Integrated Cyber Defense Platform. Amiga served for years in the Israel Defense Force Intelligence where he focused on inventing and developing new IT security solutions that go far beyond firewalls, proxies, and heuristic-based anti-malware solutions. Upon entering the private sector, Amiga worked at the Microsoft Technology Center as a senior consultant for highly secure organizations, governments, and critical infrastructure companies. He later moved to the energy giant Schneider Electric, where he held the position of Chief Software Architect. In 2014 Amiga co-founded Fireglass together with the Fireglass CEO, Guy Guzner, to develop a groundbreaking web isolation platform.
We invite you to also drop by the Symantec booth #80 in the networking pavilion for a 1:1 Symantec Web Isolation demo and to discuss how Web Isolation can protect your organization from malware and phishing threats often delivered by uncategorized and risky websites.
By Delphine Millot, MPA, VP and Head of International Public Affairs at Grayling
As a member of the UN Global Compact, Symantec was included in a new report by DNV GL highlighting companies pioneering progress towards the Sustainable Development Goals (SDGs). Symantec was praised for its outstanding work towards gender equality (SDG #5) through unique efforts to recruit women to Symantec’s board of directors and women-specific education programs in cyber security.
The clock started ticking 18 months ago to start delivering on the 2030 Global Sustainable Development Agenda. Efforts are based on the so-named SDGs, a list of 17 goals and 169 targets covering the economic, social and environmental dimensions of sustainable development embraced by the 193 member governments of the United Nations.
Governments are calling out businesses directly to play an active role in achieving the SDGs, as their success relies heavily on action and collaboration by all actors. None of the SDGs will be met without increased efforts from all sectors, and the trend on several goals, such as climate change and inequality, is actually going backwards. This is where business can make an impact – as a capable actor with the resources needed to deliver the SDGs alongside governments.
If the global goals need business, the opposite is also true: business needs the global goals. The Business & Sustainable Development Commission found that achieving the SDGs could be worth at least US$12 trillion a year in market value by 2030 and create 380 million jobs in the process. Recognizing and capitalizing on the connections between social, environmental and economic progress has the power to unleash the next wave of global growth and redefine capitalism.
A strategic approach to Corporate responsibility (CR) allows a company like Symantec to be pro-active, develop consistent CR initiatives and build a business model that can be sustained and bring shareholder value over the long term. Such an integrated approach brings credibility and authenticity to a CR program, which in turn enhances transparency and facilitates stakeholders’ engagement.
In this context, companies can use the SDGs as an overarching framework to shape, steer, communicate and report their CR strategies, goals and activities.
Symantec and the Global Goals
Management approach
Symantec looks at the SDGs as an opportunity to align core business activities and innovation efforts with society's needs. From a business perspective, this allows Symantec to reap the early benefits of high-integrity branding with their consumers, investors, employees and the marketplace. The SDGs therefore offer Symantec a pathway to attract talent, unlock new markets and develop new products and services to empower in-need customers on issues such as cyber security.
Symantec is a great example of a company that has integrated sustainable development into every aspect of its business. Symantec’s approach to corporate responsibility is set by the highest levels of management, who receive regular progress briefings on the company’s programs, including quarterly updates on diversity, ethics, environmental performance and community investment.
Symantec also defined specific, measurable and time-bound key performance indicators (KPIs) as the basis for driving, monitoring, and communicating progress on the SDGs. An example is Symantec's commitment to increasing the diversity of its workforce at all levels of the company by 15% by 2020.
Finally, Symantec reports annually on their corporate responsibility, including diversity metrics, goals and efforts. The CR reports are used as a tool to stimulate accountability and trust through integrated performance management.
Progress on the SDGs
SDG #4: Quality Education
SDG #4 is focused on providing inclusive, equitable, and quality education. The talent gap in cyber security is expected to grow to a staggering 1.5 million by 2020 and there is a vibrant community of underrepresented young adults - including people of color, women, and veterans - that could fill at least 60,000 of these positions if properly trained. Symantec has invested more than six million dollars to engage and educate 745,446 students in STEM (Science, Technology, Engineering and Mathematics) education. Through education, mentorship, volunteering and partnering with leading STEM advocates, Symantec hopes to change the status quo, close the gender and diversity gap in STEM and build a robust talent pipeline. The Symantec Cyber Career Connection (Symantec C3) program was designed to do just this, providing a pathway for underrepresented young adults and veterans to receive targeted education, training, and certifications that position them to fill in-demand cyber security jobs and enter long-term careers.
SDG #5: Gender Equality
Around the world, women are underrepresented in the field of technology. As a result, women are missing out on this promising career path, and the field is missing out on their contributions. Symantec is committed to gender equality and the advancement of women in technology. To this end, they have created a goal to increase the percentage of women globally by 2020 and a sub-goal to increase the percentage of women in leadership (Director-level and above) to 30% by 2020.
Symantec is a founding signatory of the Women’s Empowerment Principles (WEP), a partnership initiative of UN Women and UN Global Compact (UNGC) considered globally as the recognized principles and standards for women’s equality. And, through partners like The Anita Borg Institute and TechWomen, Symantec provides stand out females across the world mentorship, professional training and networking to prepare them for a promising future in cyber security.
SDG #13: Climate Action
Planetary warming continued in 2016, setting a new record of about 1.1 degrees Centigrade above the preindustrial period, according to the World Meteorological Organization. Stronger efforts are needed to build resilience and limit climate-related hazards and natural disasters. Symantec integrates environmental stewardship into their operational, product, and supply chain strategies. A sharp focus on environmental performance supports their business objectives and, at the same time, contributes to the urgent action needed to combat global climate change. Symantec took an important step regarding its energy and greenhouse gas (GHG) reductions by establishing a new goal to reduce the company’s GHG emissions by 30 percent by 2025.
Sustaining efforts over the long run
They key to achieving the Sustainable Development Goals will be sustaining efforts over the long run – and corporations, governments, and nonprofits must all work together to achieve real impact. A business survey undertaken in May 2017 shows that business expects the United Nations and governments to incentivize companies to drive positive change. One incentive, publicly recognizing individual companies’ efforts, is important in two different ways. First, this positive recognition rewards companies’ innovative efforts and makes their stakeholders aware of these efforts. Perhaps even more importantly, this public reporting also disseminates best practices across a wide range of stakeholders. This sharing of best practices, and the ways in which corporations, governments and nonprofits are finding ways to lead in there own ways, is critical to making sure we deliver on the Global Goals by the 2030 deadline and beyond.
Currently a Vice President at leading communications agency Grayling, Delphine Millot has twelve years of international experience in corporate reputation and public policy. Based in New York City, she heads Grayling’s International Public Affairs Practice, supporting a wide range of clients on their global communications strategies and advocacy campaigns. Before re-joining Grayling in 2015, Delphine led the business expansion in Africa, Middle East and Europe of a US trading firm, before joining a food start-up working with international hotel groups, restaurant chains and universities to lead the way towards health and environmental stewardship. Delphine completed her Masters of Public Administration (MPA) at Columbia’s University School of International and Public Affairs, with a specialization in sustainability management.
Please Login/register to Connect to signup for this free event
October 10th 12pm – 5pm
Symantec: 88 Wood Street, LONDON, EC2V 7AJ
Join us for our first Endpoint Security user group in London, on October 10th
Join a Symantec researcher for a briefing on the latest attack trends and intelligence on ransomware, Business Email Compromise, file-less attacks and more.
Learn about the latest Endpoint Security product enhancements and integrations from Symantec product management.
Hear how other Symantec customers deploy and secure their endpoints.
Lunch will be served!
Is there a way to remove references from the drop down list in the Manage | Data Profiles | Exact Data | Add Exact Data Profile | Data Source | Reference Data Source on Manager Host option?
Djacobs
Hello,
can anyone give me some explanation why or why not the IPS and AV should be activated on Terminal Server?
Runs the IPS / AV in User Context so that this engine probably would run per User session?
Thanks!
