My SEPM Server is a Windows Server 2008 SP2, 64bit - SEPM is 12.1.2015.2015. I am having issues with some of the policy that are setup correctly on the SEPM by is not correct ion the registry on the client....
Example:
Check Content:
Server check: From the Symantec Endpoint Protection Management Server, Symantec Endpoint Protection Management Console: Select Policies -> Double-click the applied policy -> Under Windows Settings, Scheduled Scans -> Select Administrator-Defined Scans -> Double-click the Weekly Scan -> under the Notifications tab, Notifications -> Ensure "Display a notification message on the infected computer" is selected.
Criteria: If "Display a notification message on the infected computer" is not selected, this is a finding.
On the client machine, use the Windows Registry Editor to navigate to the following key:
32 bit:
HKLM\SOFTWARE\Symantec\Symantec Endpoint Protection\AV\Scheduler\{SID}\Custom Tasks\{scan ID}
64 bit:
HKLM\SOFTWARE\Wow6432Node\Symantec\Symantec Endpoint Protection\AV\Scheduler\{SID}\Custom Tasks\{scan ID}
Criteria: If the value MessageBox is not 1, this is a finding.
Fix Text:
From the Symantec Endpoint Protection Management Server, Symantec Endpoint Protection Management Console: Select Policies -> Double-click the applied policy -> Under Windows Settings, Scheduled Scans -> Select Administrator-Defined Scans -> Double-click the Weekly Scan -> Under the Notifications tab, Notifications -> Select "Display a notification message on the infected computer".
Setting on SEPM is selected, but client shows MessageBox as 0
I have about 23 settings like this... any insight ?