Endpoint Protection

  • Private Community
 View Only

  • 1.  Antivirus definition out of date status - which policy?

    Posted Jul 25, 2012 12:55 AM

    Hi

    I have noticed that the SEP shield on one of our machines has a yellow dot. Opened up the gui, and it says "Antivirus and Antispyware protection definitions are out of date". Now the definition date was roughly 2 months old.

    My question is, which SEP policy is enforcing this status? Or is this a default behaviour of the SEP client, without any policy setting?

    I know that there is a notification setting in "Antivirus and Antispyware policy", for poping up a notification if the definition is older than certain date. However, i have not enabled this setting.

    Thanks

    David



  • 2.  RE: Antivirus definition out of date status - which policy?

    Posted Jul 25, 2012 01:08 AM

    We need to configure this setting in SEPM server after we get received POP Up.

    Check this Artical.

    http://www.symantec.com/business/support/index?page=content&id=TECH91311

     

    http://www.symantec.com/business/support/index?page=content&id=TECH150078



  • 3.  RE: Antivirus definition out of date status - which policy?

    Posted Jul 25, 2012 01:26 AM

    Hi Jackie

    Thanks for the reply.

    The first link does not work.

    With the second link, i have not enabled this notification.

    THis article talks about actual pop up message box you get. However, in my case, i am not getting any pop up message box. The SEP shield on the traybar has a yellow dot in it, and in the GUI, it says the AV def is old. I am trying to figure out, what policy is driving this? Or if this is a default feature of the client without any policy settings.

    Thanks, DM.



  • 4.  RE: Antivirus definition out of date status - which policy?

    Broadcom Employee
    Posted Jul 25, 2012 01:33 AM

    infor from 1st link

    How to change the AntiVirus and Antispyware definitions out of date setting
     

    1. Open SEPM
    2. Click Policies
    3. Open Antivirus and Antispyware
    4. Click on the Antivirus and Antispyware policy in use
    5. Select Miscellaneous
    6. Click on the Notifications tab
    7. Select the box "Display a warning when definitions are outdated."
    8. Change the option Warn after: to the desired number of days definitions to be out of date without warning.
    9. Select OK

    has the client taken the policy?

     



  • 5.  RE: Antivirus definition out of date status - which policy?

    Posted Jul 25, 2012 02:43 AM
      |   view attached

    Pete

    This setting is not enabled, and not planning to enable this setting.

    I was just curious as to what is telling us that the definition is out of date, when i have not enabled the setting you have described.

    I have attached a image of the GUI to explain what i am trying to say.

    Thanks again.

    DM



  • 6.  RE: Antivirus definition out of date status - which policy?

    Trusted Advisor
    Posted Jul 25, 2012 03:09 PM

    Hello,

    This is by design.

    In case, you do not want the SEP GUI to show that "Antivirus and Antispyware Protection Definitions are Out of date" then the only way is to update / install the SEP clients with the Latest Virus definitions.

    Hope that helps!!



  • 7.  RE: Antivirus definition out of date status - which policy?

    Posted Jul 25, 2012 07:12 PM

    Thanks for the confirmation Mithun.

    Would you able to tell me how old the definitions have to be, before you get that warning in the GUI?

    Thanks

    David



  • 8.  RE: Antivirus definition out of date status - which policy?

    Trusted Advisor
    Posted Jul 26, 2012 04:16 AM

    Hello,

    As per Security Best Practices, you need to carry the Latest Symantec Endpoint Protection Virus Definitions on your machines to protect your machines against new found Threats.

    You could check the link below to check if the machine is carrying the Latest definitions available from Symantec.

    http://www.symantec.com/security_response/definitions.jsp

    Hope that helps!!