LiveUpdate fails when Endpoint Protection for Linux installed together with Data Center Security

book

Article ID: 169827

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

LiveUpdate fails when Symantec Endpoint Protection (SEP) for Linux installed together with Symantec Data Center Security (DCS)

SEP LiveUpdate fails, or appears to run OK but new definitions are not applied to SEP

Sample Lux.log entries:

14:00:51.449983 	[Component Result - START]
14:00:51.450118 		Component ID: {9F634534-BAF4-444B-B823-F14C1C80A8FD}
14:00:51.450249 		Display Name: Virus and Spyware Definitions for Linux
14:00:51.450379 		PVL: SEPC Virus Definitions Linux 14.0_MicroDefsB.CurDefs_SymAllLanguages
14:00:51.450538 		Result Code: 0x8001FFFF
14:00:51.450661 		Result Message: UNKNOWN
14:00:51.450796 	[Component Result - END]
14:00:51.450919 [Session Results - END]
14:00:51.451052 [Session Summary - START]
14:00:51.451179 	Components: 1
14:00:51.451301 	Packages:   0
14:00:51.451421 	Success:    0
14:00:51.451542 	Fail:       0
14:00:51.451663 [Session Summary - END]

Cause

Symantec DCS agent for Linux installs /etc/symantec/defutils.conf which interferes with SEP file /etc/Symantec.conf

 

Environment

Symantec Endpoint Protection for Linux

Symantec Data Center Security for Linux

Resolution

This issue is fixed in Symantec Endpoint Protection 14.2. For information on how to obtain the latest build of Symantec Endpoint Protection, see Download the latest version of Symantec Endpoint Protection.

As a work-around, backing up /etc/symantec/defutils.conf and replacing it with contents of /etc/Symantec.conf should restore functionality to SEP LiveUpdate. This should have no effect on DCS's ability to get updates. SEP may also be updated using the downloadable Intelligent Updater: How to update a Linux-based computer with Intelligent Updater definitions