Two weeks ago, since I upgraded SEPM (version 14.3 MP1) to version ru4, my SEPM was unable to update the virus definition code. Whether it is LiveUpdate update or manual download JDB file update failed.
I opened a case and the after-sales service provided two solutions. At present, my problem has been solved. However, the root cause of my problem is that the security settings of the SEP client affect SEPM's processing of updates. From the content of your log, the problem should come from the LiveUpdate aspect. It is recommended that you try scheme 2 again according to the steps
(the above words are translated by translation software, which may inevitably lead to mistakes and omissions. Please forgive me!)
======================================
Noted. Please try the following workaround below.
Workaround 1: Disable the Protection Symantec security software from being tampered
1. Open the SEP client UI from the SEPM server.
2. Click Change Settings > Client Management > Tamper Protection Tab > Uncheck "Protection Symantec security software from being tampered"
3. Click Ok to save and close the SEP client UI.
Now, Login to SEPM console and manually run Download LiveUpdate again. Monitor the status and let me know the result.
If workaround 1 does not resolve the issue, please try workaround 2 below.
Workaround 2: Manually purge the corrupted definition/content from Symantec Endpoint Protection Manager (SEPM)
Please follow the details steps below to replace the old content and definitions.
https://knowledge.broadcom.com/external/article/184206/how-to-manually-purge-definitions-for-th.html
Original Message:
Sent: Jun 03, 2022 03:43 AM
From: Alex Alex
Subject: LiveUpdate Cannot update virus definitions
Hello.
Does anyone opened problem ticket in Symantec support?
Original Message:
Sent: Jun 01, 2022 07:09 PM
From: Dan Miller
Subject: LiveUpdate Cannot update virus definitions
I also am having this issue
Specifically symantec SES which I manage through the cloud, and not an onsite Server installation.
I have 25 or so systems, and some of them claim to not be fully updated and others do,
Which ones "complain" varies from week to week so it is not an individual PC configuration.
If I push updates from the web - I see no changes. If I go them manually and open Symantec Shield icon - click [Live Update...] link - eventually they end up showing "up to date".
I compared the web console's "Belief about what defnitions" are on a "failing" PC and a "good" PC. Of the 21 updates that Live Update checks, some apparently are not listed...however "Malware Protection" version on "failing" PC showed 2022-04-07 and "good" showed 2022-05-28.
I compared the two reports side by side, for this pair, that was the only difference. Other pairings might be different elsewhere.
Original Message:
Sent: May 31, 2022 03:11 AM
From: Alex Alex
Subject: LiveUpdate Cannot update virus definitions
Hello.
Has anyone solved this problem?
Original Message:
Sent: May 27, 2022 04:07 AM
From: Alex Alex
Subject: LiveUpdate Cannot update virus definitions
Hello.
In my configuration client (SEP) does not installed on server (SEPM).
Original Message:
Sent: May 27, 2022 12:23 AM
From: Aaron Law
Subject: LiveUpdate Cannot update virus definitions
Hi
Could you try open the SEP (on the server where you have installed SEPM) - change settings - client management settings - uncheck protect symantec security - then re- run live update.
Original Message:
Sent: May 17, 2022 03:43 PM
From: Alex Alex
Subject: LiveUpdate Cannot update virus definitions
Hello!
Symantec Endpoint Protection 14.3 RU4 cannot update virus definitions.
Last virus definitions is in attachment
LiveUpdate log show
_________________________________________________________________
17 may 2022 22:14:44 : LiveUpdate succeeded. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : LiveUpdate finished running. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : LiveUpdate successfully updated the content. Return code = 0. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Intrusion Prevention Signatures 14.2 RU1. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Common Network Transport Library and Configuration 14.3 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Foundation Win64 14.3 RU1. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Intrusion Prevention Signatures 14.3 RU1. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for SEPM LiveUpdate Database 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Common Network Transport Library and Configuration 14.2 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Endpoint Detection and Response 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Foundation Win32 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Endpoint Detection and Response 14.2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Common Network Transport Library and Configuration 14.2 RU1. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Protection Win64 14.3 RU4 (English). [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Common Network Transport Library and Configuration 14.3 RU1. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Protection Manager Content Catalog 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Revocation Data 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Intrusion Prevention Signatures 14.3 RU3. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Foundation Win32 14.3 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Foundation Win32 14.3. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Attack Surface Reduction 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Foundation Win64 14.3. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Browser Extension Win32 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Browser Extension Win64 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Virus and Spyware definitions SDS Win32 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for SONAR Heuristics engine 14.3 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Advanced Machine Learning (Static) content Win32 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Endpoint Threat Defense for AD Data 14.2 RU1. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Common Network Transport Library and Configuration 14.3 RU3. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Intrusion Prevention Signatures 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Foundation Win32 14.3 RU3. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Endpoint Threat Defense for AD Data 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Endpoint Detection and Response 14.3 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for AP Portal List 14.3 RU1. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Intrusion Prevention Signatures 14.2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Foundation Win64 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Virus and Spyware definitions SDS Win64 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for AP Portal List 12.1 RU5. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Advanced Machine Learning (Static) content Win64 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Power Eraser Definitions 14.0. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Foundation Win32 14.3 RU1. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Protection Manager API 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for AP Portal List 14.3 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Application Control Data 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Virus and Spyware definitions SDS Win64 (reduced) 14.2 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Allow List 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for SONAR Heuristics engine 14.3 RU3. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for SONAR Heuristics engine 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Intrusion Prevention Signatures 14.3 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for SEPM Data 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Protection Win32 14.3 RU4 (English). [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Foundation Win64 14.3 RU3. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Power Eraser Definitions 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Protection Manager Metadata 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Endpoint Detection and Response 14.2 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Common Network Transport Library and Configuration 14.3. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for AP Portal List 14.2 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Policy Command Handler 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Application Control Data 14.2 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Common Network Transport Library and Configuration 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Protection LINUXRPM 12.1.7454.7000 (English) [90.2]. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Virus and Spyware definitions SDS Win32 (reduced) 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Endpoint Detection and Response 14.0. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for AP Portal List 12.1 RU6 MP8. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for SONAR Heuristics engine 14.3 RU1. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for AP Portal List 14.3 RU3. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Web and Cloud Access Protection 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Policy Command Handler. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Centralized Reputation Settings 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Virus and Spyware definitions SDS Win64 14.2 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Symantec Endpoint Foundation Win64 14.3 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Submission Control signatures 14.3 RU1. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Extended File Attributes and Signatures 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Advanced Machine Learning (Static) content Win64 14.2 RU2. [Site: My Site] [Server: W12]
17 may 2022 22:14:44 : No updates found for Intrusion Prevention Signatures 14.0. [Site: My Site] [Server: W12]
17 may 2022 22:14:43 : No updates found for Virus and Spyware definitions SDS Win64 (reduced) 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:43 : No updates found for Windows Host Integrity Content 14.3 RU4. [Site: My Site] [Server: W12]
17 may 2022 22:14:43 : No updates found for Symantec Endpoint Protection Client Patch Win64 14.3 RU4 (English). [Site: My Site] [Server: W12]
17 may 2022 22:14:43 : No updates found for Symantec Endpoint Protection Client Patch Win64 14.3 RU3 (English). [Site: My Site] [Server: W12]
17 may 2022 22:14:43 : No updates found for Symantec Endpoint Protection Client Patch Win64 14.3 RU2 (English). [Site: My Site] [Server: W12]
17 may 2022 22:14:43 : No updates found for Symantec Endpoint Protection Client Patch Win32 14.3 RU4 (English). [Site: My Site] [Server: W12]
17 may 2022 22:14:43 : No updates found for Symantec Endpoint Protection Client Patch Win32 14.3 RU3 (English). [Site: My Site] [Server: W12]
17 may 2022 22:14:43 : No updates found for Symantec Endpoint Protection Client Patch Win32 14.3 RU2 (English). [Site: My Site] [Server: W12]
17 may 2022 22:12:46 : LiveUpdate has been launched. [Site: My Site] [Server: W12]
17 may 2022 22:12:46 : Download started. [Site: My Site] [Server: W12]
___________________________________________________________________________
I try
"C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\LuCatalog.exe" -update
"C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\LuCatalog.exe" -cleanup
but no result.
Can you help me to solve this problem.
Thank you in advance.