Solved Check virus definition update from SCOM

Question

Solved Check virus definition update from SCOM

0

pesala sampath 48 Rep. 05 Oct, 2016

Hi Guys,

I do not know any one came across with this problem but I have a environment with several antivirus in place. Is there any way to alert when the definition times out ?

antivirus scom

pesala sampath selected answer 22 Nov, 2016

Vyper - 05 Oct, 2016

Could you be more specific about the AV systems you are using?
BlakeTheITGuy - 05 Oct, 2016

You should check this thread out; Integrating SEP with Microsoft SCOM. Once you can pull data in, the world is your oyster! http://www.symantec.com/connect/forums/integrating-sep-microsoft-scom

Best answer

1

Vyper 728 Rep. 05 Oct, 2016

I don’t think there is currently a vendor or community MP available for SEP. If you are only looking to monitor a specific facet of SEP (such as the definition being stale) if you know of a windows event that’s written when this is the case, you could create a rule to capture and alert on that fairly easily using the SCOM console’s Authoring tab. Likewise if you know of a cmdline or API you can query to test this, you could write a VBScript/PowerShell monitor in the SCOM console to test this.

Your first port of call though is going to be to locate a Symantec subject matter expert (if you aren’t one yourself) to figure out how you can tell programatically that the definitions are out of date – after that the SCOM piece is the easy part! 🙂

pesala sampath selected as best answer 22 Nov, 2016