Sep intrusion prevention signatures not updating
More specifically the last certified definitions that was published on December 31, 2009 was “12/31/2009 rev. The next certified definitions to be published will have a revision number greater than 041.As of Thursday January 7, 2010; the Symantec Endpoint Protection Antivirus definition version "12/31/2009 rev. Rev 119 includes all of the latest definition updates through January 7, 2010.If the settings for functionality such as alerts or notifications have been altered from the default values, it is possible that your experiences may vary from those below.Managed Clients: An issue has been identified in the Symantec Endpoint Protection Manager (SEPM) which causes Security Content newer than 12/31/2009 PM to be considered older than content previous to that date/time.Why are the Security Content dates for Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Manager (SEPM) not progressing beyond 12/31/09?SNAC Behavior – If Host Integrity (HI) is being used to check for Anti Virus (A/V) definitions compliance on the agent, it will fail.
Once a client has downloaded January 2010 definitions from Live Update, the client should remain configured to download content from Live Update until your servers have been patched with a fix for this issue.This is due to the SEPM server having ‘Virus and Spyware Protection’ definitions with a date of December 2009.