Endpoint Protection

​I am having an issue with the SEP Client reporting that the "URL Reputation Protection is disabled". I confirmed the feature is enabled in the IPS policy on the SEP Manager and when checking the SEP Client settings locally the box is checked for "Enable URL Reputation" under the Intrusion Prevention tab in the Network and Host Exploit Mitigation Settings area. The SEP client GUI shows a Big Red Error and the SEP client tray icon shows a Red Shield instead of a Green Dot. The only way to suppress the error is to uncheck "Enable URL Reputation" in the IPS policy on the SEP Manager AND click the Lock Icon beside "Enable URL Reputation". This issue first appeared when I upgraded to 14.3 RU1 (14.3.3384.1000) and I assumed it was a bug so I waited for the next release. When 14.3 RU1 Refresh was released I hoped it would be fixed but the issue still exists in 14.3 RU1 Refresh (14.3.3385.1000). This appears to be a bug that Broadcom needs to fix ASAP. I have opened a case for this issue and am waiting feedback. I also opened a case when the initial 14.3 RU1 was released and the resolution was to Repair the SEP Client. That did resolve the issue but I had to repair approximately 10 out of 15 SEP Clients and that is not an acceptable solution for large environments where there may be hundreds or thousands of SEP clients with the issue.

Broadcom got back to me on this case and it was indicated that backend engineering confirmed that other customers are having this issue. It was indicated that clicking the "Fix" button resolved the issue for most customers but it wasn't working in my environment. The only workaround at this time is in my original post above - uncheck "Enable URL Reputation" in the IPS policy on the SEP Manager AND click the Lock Icon beside "Enable URL Reputation". This makes the Big Red Error go away and turns the icon in the system tray to a Green Dot. Broadcom indicated that they hope to fix this issue in a future release.
Original Message:
Sent: 02-05-2021 09:05 AM
From: Broadcom Customer
Subject: SEP Client 14.3.3385.1000 displaying Red Error "URL Reputation Protection is disabled"

​I am having an issue with the SEP Client reporting that the "URL Reputation Protection is disabled". I confirmed the feature is enabled in the IPS policy on the SEP Manager and when checking the SEP Client settings locally the box is checked for "Enable URL Reputation" under the Intrusion Prevention tab in the Network and Host Exploit Mitigation Settings area. The SEP client GUI shows a Big Red Error and the SEP client tray icon shows a Red Shield instead of a Green Dot. The only way to suppress the error is to uncheck "Enable URL Reputation" in the IPS policy on the SEP Manager AND click the Lock Icon beside "Enable URL Reputation". This issue first appeared when I upgraded to 14.3 RU1 (14.3.3384.1000) and I assumed it was a bug so I waited for the next release. When 14.3 RU1 Refresh was released I hoped it would be fixed but the issue still exists in 14.3 RU1 Refresh (14.3.3385.1000). This appears to be a bug that Broadcom needs to fix ASAP. I have opened a case for this issue and am waiting feedback. I also opened a case when the initial 14.3 RU1 was released and the resolution was to Repair the SEP Client. That did resolve the issue but I had to repair approximately 10 out of 15 SEP Clients and that is not an acceptable solution for large environments where there may be hundreds or thousands of SEP clients with the issue.