Hi, for a specific site I need to figure out how to configure SEPM to support LU downloads from the SEPM manager, an internal LU server and the Symantec fallback liveupdate servers. I am trying to do this by setting up an entry for each in SEPM/clients/policy/"location-specific lifeupdate policy"/windows settings/server settings
"use a Live Update server"
"use a specified internal LU server"
and then adding 3 entries,
one for the "default" (for the SEPM manager)
one for our Int. LU server
one for a Symantec fallback server.
The problem is that if I use the default mgmt server then the clients cannot run LU manually. Everything runs according to the schedule that I set up in SEPM. If the SEPM server isn't accessible then they can't run LU for new virus definitions. If I select "use a LU server" and then "use the default Symantec server" then we can't cache the updates at all. If I use "use a specified internal LU server" then I need functional links to access at least 2 (if not all 3) types. Really I would like to get SEPM to update direct from Symantec and then cache the updates wtihout running a seperate LU server but that's a topic for another day.
Supposedly all 3 modes will work but I can only get this to work if I use either:
Symantec fallback LU server > Int. LU server > SEPM > SEM clients (meaning no local LU control at the clients)
or
Symantec fallback LU server > SEM clients. (meaning no local caching of the LU data)
The main problem is that I have yet to see a way to set up a Int. LU server for the SEPM svr or the LU server,
that will actually work.
any advice appreciated.
the logs I see so far seem to show that whatever host string I put in that field is prepended to
/secars/secars.dll?h=
e.g.
http://mySEPMhost:8081/secars/secars.dll?h=(some long hex string)
that's what I'm looking for.
Maybe I should use FTP or UDP links for the LU server?
but SEPM is pulling live updates just fine from the LU server just by pointing it to LU using the usual html:
and it will distribute them to the clients. But on its terms, not on the clients' terms.
I am trying to figure out what string SEPM is sending to IntLA to get updates, and then use that same string, if it will work at the clients.
In the meantime I will try UDP
thanks