SkyByte Consulting has recommended Symantec Endpoint Protection and its managing capabilities to it's clients for a variety of reasons. From the ease of deploying clients to end users and the ability to manage them all from one console makes Symantec Endpoint Protection a great Antivirus and Antimalware solution. The Symantec Endpoint Protection Manager (SEPM) downloads definition updates from Live Update on a regular basis and then deploys the updates to each endpoint client connected to your network infrastructure. Symantec releases several revisions throughout the day, so by only having to download one copy of the definitions to the SEPM rather than each individual client, you save bandwidth for other needs.
Recently I discovered a SEPM that had stopped receiving updates. Rebooting the server had not helped and manually running LiveUpdate inside the SEPM would reply with "Error: LiveUpdate encountered one or more errors. Return code = 4". According to Symantec, this could be a variety of reasons from network firewall security, IE's Enhanced Security, or a proxy. I knew this was not the case and I was able to resolve this by following these steps:
1. Stop the SEPM and SEP Embedded Database in Services.
2. Uninstall Live Update from Programs and Features or Add/Remove programs
3. Install Live Update from the SEP setup CD
4. Open a command window, then browse to:
C:\Program Files\Symantec\Symantec Endpoint Protection Manager\bin
Type lucatalog -update and press Enter.
5. Start the SEP Embedded Database service and then the SEPM service
6. Login into the SEPM and retry downloading updates from Live Update.
Powered by Compendium
Comments for Symantec Endpoint Protection Manager not receiving definition updates - Network Security