Live Update Virus definition update failed.

10.8, 10.9

Issues with malware definitions updating are usually related to network related circumstances. To better understand what is happening, first please confirm what scanners are having the issue:

1. Click on Status.
2. Click on Hosts in the left pane.
3. Click on the Software and Services tab.
4. Review the Virus Definitions column to determine which scanners are out of date.

Once you know what scanners are affected, gather a diagnostics from one or more of those scanners to review logs.

Logs from the diagnostic to review:

• /diagnostics.*/logs/scanner/bmserver_log
• /diagnostics.*/logs/stargate_bmengine/lux.log

To check communication between SMG and our server please login appliance via ssh as admin and enter ' curl https://liveupdate.symantec.com ' command to see if it connected and proper certificate present:

* Connected to liveupdate.symantec.com port 443 (#0)
* Initializing NSS with certpath: sql:/etc/pki/nssdb
* skipping SSL peer certificate verification
* SSL connection using TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
* Server certificate:
*       subject: CN=liveupdate.symantec.com,O=Broadcom Inc.,L=Palo Alto,ST=California,C=US

If everything is fine with the communication and smg can connect to our server successfully this issue can be caused by the broken virus definitions package and to solve it, delete all antivirus rules and replace them with the factory default rules with the ' delete avrules ' command.