Symantec endpoint definitions not updating on manager
Things you need to be aware of when using Group Update Providers The most important thing to understand is that GUPs only work with Windows clients.Linux and OSX clients will not use the GUP functionality at all. The GUP technology in SEP allows administrators to designate client systems within the environment to distribute client definitions in a peer fashion.In an environment where a GUP is configured, clients designated to use GUPs will reach out on port 2967/TCP to see if there is a definition update available.If you have an environment where you have a separate Live Update in your environment, the GUPs will not request definitions from this system.Depending on how clients are chosen to be GUPs, the antivirus team will need to be aware of any system decommissions.If the GUP does not have a definition it will reach out to its defined SEP Manager and download the correct update.On the next heartbeat interval the client will then download the definition from the GUP.
This document explains how to update Symantec Endpoint Protection definitions by running Live Update.In some environments client communication will go over the WAN while Internet traffic will traverse through a cheaper local ISP.In this scenario one serious discussion should be if it is better engineered to have all clients retrieve their definitions directly through the Internet to Symantec’s public Live Update servers.Depending on the mixture of operating systems within your environment, this is important to know.If you are trying to schedule updates to occur only at certain time periods through the day, this can only be achieved by using a Live Update server. Group Update Providers work by requesting definitions from the SEPM directly.