Thank you for the response. I have already followed all you point out above as part of my ongoing troubleshooting and investigation. The client can connect in a browser using this format: http://management_server_address:8014/secars/secars.dll?hello,secars . As an earlier response from another person on this forum, I have already followed all steps in the tech article TECH160964. I have setup Sylink logging on more than one problem client, and submitted sylink logs more than once to Symantec support. I do have an open case. They are unable to find a solution as to this date. It has been about two months since the case was opened with Symantec support.
I have posted my issue here hoping the Symantec community may have seen this issue and may offer a resolution.
Considering that all proper procedures were followed when I upgraded my SEPM and clients from SEP11.0.6 to SEP 12.1; and there are no server issues; that the only clients affected are Windows XP Service Pack 3 ( at this time about 15% of all my XP SP 3 clients); and the clients that cannot communicate with the SEPM have no other issues of any kind; I am starting to come to the conclusion the problem here is most likely one that can only be prevented in the future by Symantec developers making some changes in SEP 12.1 as to how it handles files needed for the upgrade that should exist on the client computers, as to file state and version, and how remediation is handled concerning those files when necessary paramaters are not present. I know this is a broad generalization, but I speak at this point on a conceptual basis, not a precise techincality of the subject.
Please realise that my problem clients have problems communicating with the SEPM, ONLY, and I repeat "ONLY", if they have SEP 12.1 installed that was installed as an upgrade. "Fresh" installs of SEP 12.1 on "fresh" installs of Win XP SP3, have not been a problem at all. If SEP 12.1 is uninstalled from these problem clients and replaced with SEP 11.0.6.x, communication works just fine between these clients and the SEPM. This last statement in the context of what I have related here, should speak volumes to developers..... or so it appears to me.
If this case can remain on this forum long enough, others may well come forward with this same problem with communication issues after an upgrade from SEP 11.xx Only an attentive Symantec admin can even notice this client to SEPM communication issue as it is not an obvious one. It is not observed on the client end by users. It is not obvious in my environment in the SEPM or via SEPM reporting. In my enviroment I have about 75% laptop users who travel, so seeing an "offline" status in the SEPM is not unusual. Receiving a report that the SEPM has not communicated with a particular client for "X" number of days or weeks in not unusual in my environment. So, the communication issue I have reported here was only discovered by an exhaustive audit of my environment in August of this year.
Please keep the feedback coming.
Thanks again for your response.