Good Morning,
I recently got set up with PGP on Encryption Desktop and am getting set up with a government account. They requested a text file of the key, which I sent over. The only problem is that the person who I sent it to said that they key was too long for them to use and has to be under 4000 characters.How would I go about "shortening" the key or "compressing" it. Any help would be much appreciated. Thank you
Hi there,
I need know how can I configure a smartphone as read only.
I got the Device ID and I have configured in hardware device, but the rules are not working.
The smartphone is recognized as Portable Device.
Is it possible to configure with Application control?
Ps: There is a rule to make all Device Storage as read only and block to write, and I tried to do same procedure, but it is not working.
Thanks for all.
Regards,
Lopes
How do I create the "drive encryption" and "management agent" files for both 32bit and 64bit systems?
We had an issue with Mac clients initially (at startup) ending up in a location that should only be valid for Windows systems; the only criteria for this location was a registry check.
Macs don't have a registry so one would expect the check to fail and the location considered invalid, but that's not the case. According to Symantec, Mac clients just ignore criteria they can't process (like a registry check), treating the location like it has no criteria at all. Since the Mac ignores the criteria, but not the location, the location is still considered valid for the selection process.
Our fix was to create a catch-all location with no criteria and place it at the top of the list; this was also later recommended by Symantec and alluded to here:
https://support.symantec.com/en_US/article.TECH97097.html
On a side note, the Macs eventually ended up in the correct location after some heartbeat/location check interval.
With the above in mind, I would like to suggest the following changes to the Location Awareness logic:
Hello,
I need to enable privilege de-escalation for Windows and Linux servers with DCS 6.5.
I have tried to find this settings for privilege de-escalation in the documentation but there is no setting called "privilege de-escalation".
Where in the prevention policy can you enable this feature? Do you know which document these settings can be found in?
Cheers,
Cameron
Hi ,
i am new to PGP encryption using command line.
i have requirement to encrypt a text file . i have a user_id of the public key to whom i need to send the encrypted data .
I wanted to know what else if need to sign the document .
please advise.
regards,
roma
I'm going to be putting a Host Integrity policy in place but the wanted me to test it first. Therefore I moved my machine to a group by itself, assigned it a liveupdate policy whose server would not resolve. I then went to remove my definition but after running smc -stop I could not completely delete the definition folder. Then when i went to the registryand when down to hklm/software/symantec/shared defs none of the keys that needed to have their value removed were present.
So I went and restarted smc. I got the warning that the host failed the HI check and when I went into the client management security logs saw that it did download the file from our internal liveupdate server but result was fail. I'm just digging around trying to figure out why it failed. Is it because the definitions are damaged instead of missing? Is there another command that needs to process first? Any direction would be appreciated.
Just noticed at the end of the below error it says user delayed remediation but I didn't so I'm not sure.
Actual error:
Requirement name: "Week Old Antivirus Definitions".
--- Start checking requirement conditions ---.
Rule type: Antivirus enforcement.
Condition: Antivirus is running.
Result is pass.
Condition was checking "Symantec Endpoint Protection".
Condition: Antivirus signature file is up to date.
Result is fail.
Condition was checking "Symantec Endpoint Protection".
Error: file not found.
[Details: Invalid signature date. Probably software is not installed or is running an update]
Processing remediation actions.
Condition: File download complete.
Condition was checking "http://SSEPLUPP014001.msnyuhealth.org:7070/clu-test".
Result is fail.
Error: user postponed remediation.
[Details: 10/15/2015 10:50:21]
Requirement name: "Week Old Antivirus Definitions".
Result is fail.
Hello Symantec community!
I can't get a straightforward answer anywhere and hope someone here might have the answer.
I have several Thunderbolt external hard drives, all formatted Mac OS Journaled. The machine I'm on is a Mac Pro 6,1 running Yosemite. I installed the trialware of Encryption Desktop, but the only drives listed were the internal drives.
Did I do/configure something wrong? Am I using the wrong software?
Has anyone successfully encrypted an external Mac OS hard drive? I would go the FileVault route but the loss in disk speed (as minimal as it is) hinders video editing.
Best,
Jerome
Every 30 days, the Symantec.cloud client on workstations runs a full scan. This is hard-coded into the client settings upon installation and there is now way to cancel. This full scan slows down the computer and cannot be stoped. Can run for several hours depending on the size of hard disk. i think there should be an option to stop or postpone that scan.
Whre is the SDK for integration with the Symantec Endpoint Protection Manager? I am using 12.1.6. I want to write code that moves computers to/from different computer groups and that exports installation packages for different groups that i create in my internal website. Thanks.
Hello DLP Users,
I wanted to share some information on how to get DLP to be installed with Oracle RAC.
Either with version Oracle 11g RAC or Oracle 12c RAC.
**** First of all Oracle RAC is NOT supported by Symantec and has NOT been certified or tested at all. So please make sure that you have a strong DBA with Oracle knowledge if you move forward with this at your own risk. ****
Keep in mind that if you have Oracle RAC, I assume you have a team of DBA's to help with the installation and configuration.
Also keep in mind that some of these steps will require you to circumvent the installation process in order for it to install correctly.
There are a couple different approaches that I have done when installing on Oracle RAC, and will outline them as to how this was done.
Oracle 11g RAC - Tried this DLP V11.x
***** THIS WILL NOT WORK IN A MULTI-TENANCY ORACLE 12C SYSTEM (I tried this and it will just not work during the installation process) ********
Oracle 12c RAC - Tried this with DLP v14 (NOT VERIFIED)
This process requires you to copy a file and edit the contents, and then replace the file before the installer starts. This may even work for Oracle 11g
Install Oracle as outlined in the installation manual, make adjustments as necessary for Oracle RAC if needed. (Use the DBT File and user creation scripts)
Good Luck!!
Ronak
Hello!
I'm currently testing the Symantec Endpoint Protection product but we hit a roadblock that would prevent us from using the software.
On the Windows client, when I change the exceptions on SEPM admin console, the user-defined exceptions stays in place. On OS X, the whole list get overrided by the server, which I don't want to happen. Is it normal behaviour? The OS X version I have of SEP on OS X is 12.1.6168.6000.
Thanks!
Hi everybody,
I´m seeking help to find out the paths to important logs that can be analyzed in case of malfunction or audit on the sepm and clients.
I´ve tried my best to find, for example, the liveupdate.log on a client that doesn´t update definitions but had no luck.
Also would need to know the name and place to find the log that shows all transactions made on the sepm.
Finally if someone can make a list of the most important logs and their location, will be very appreciated.
I understand that a lot of the information can be found straight from the sepm console but I think that being able to read straight from the log is much better.
Thank you very much!!
Bonjour tout le monde.
J'ai besoin d'aide sur la partie installation de security Virtual Appliance.
lors de l'exécution de la commande java -jar Symantec_SVA_Install.jar -s pathname/SVA_InstallSettings.xml,
L'outil me demande:
Enter the vCenter password for [root]:*******
aprés l'introduction du mot de passe voici ci-dessous le message d'erreur:
Unable to install SVA: Unable to connect to vCenter.
Merci d'avance pour votre aide.
Gentlemens,
I need a solution to perform the SAV on our manufacturing product - Oscilloscope. The Oscilloscope is using ATX Motherboard & HDD by running GUI on a Windows XP OS. We need to create a SAV check point for Oscilloscope. Can you provide a suggestion on how to do that?
Following from the discussion https://www-secure.symantec.com/connect/forums/wha... in Sept 2012, the secure viewer (TEMPEST) functionality of up to V10.1 is essential for me. It allows viewing of encrypted files *without* generating a plain-text version that is stored on my disk and which I must then remember to find and shred. The Symantec guy 3 years go said he was going to put this to Management, but even in V10.3 the functionality has not been restored.
I have used this functionality for 20 years and don't want to live without it, so haven't upgraded from V10.1. But Windows 10 is now forcing an upgrade to V10.3, which allows only the reading of files encrypted in that way by an older PGP, but not the creation of such files. I could keep a separate Windows 7 just to be able to encrypt in this way, but it would be a major nuisance. Is there any other way to do this?
