Symantec endpoint protection antivirus not updating
Once patches are available and this temporary problem has been corrected by Symantec, details will be posted to this KB article.
Please also note that once the SEPM servers have been patched, the clients should remain configured to download content Live Update for at least 3 days to ensure that they will get delta definitions from the SEPM server .
Security Response will continue to provide definitions in this manner as a work around until a permanent solution can be provided.
Symantec is aware of this issue and is currently investigating it.
To ensure we retain the quality of the definitions during this period the SEP definitions are only being built once a day.
Definition builds for all other products remain the same.
This document will be updated as soon as more information becomes available.
Once a solution is available it will be posted to Live Update, and SEPM/SPC will download and apply the update automatically.
This is due to the SEPM server having ‘Virus and Spyware Protection’ definitions with a date of December 2009.From following these two posts, both sides clearly weren't ready for the update to be released:https://Below is an excerpt from the Symantec Antivirus knowledgebase, Symantec antivirus, although it updates the same as before, doesn't recognize a date newer than 2009.Managed Clients: An issue has been identified in the Symantec Endpoint Protection Manager (SEPM) which causes Security Content newer than 12/31/2009 PM to be considered older than content previous to that date/time.Any content with a date of 1/1/ AM or newer will be purged from the SEPM if the maximum number of definitions revisions has been reached.Relative definition age can be determined by the revision number.While this issue is being resolved SEP definitions are being built outside of the normal build process.Security Response will continue to publish Symantec Endpoint Protection security content with the date 12/31/2009, and will only increase the revision number of the content.More specifically the last certified definitions that was published on December 31, 2009 was “12/31/2009 rev. The next certified definitions to be published will have a revision number greater than 041.For those that have SEP working with the Windows 10 1703 update, what steps are you taking to disable the Windows Defender Security Center and Windows Defender?The update appears to install correctly without blocking due to an incompatible SEP product.