Solved Check virus definition update from SCOM
Hi Guys,
I do not know any one came across with this problem but I have a environment with several antivirus in place. Is there any way to alert when the definition times out ?
Best answer
I don’t think there is currently a vendor or community MP available for SEP. If you are only looking to monitor a specific facet of SEP (such as the definition being stale) if you know of a windows event that’s written when this is the case, you could create a rule to capture and alert on that fairly easily using the SCOM console’s Authoring tab. Likewise if you know of a cmdline or API you can query to test this, you could write a VBScript/PowerShell monitor in the SCOM console to test this.
Your first port of call though is going to be to locate a Symantec subject matter expert (if you aren’t one yourself) to figure out how you can tell programatically that the definitions are out of date – after that the SCOM piece is the easy part! 🙂
Answer this question
To reply or comment, use the 'Comment' link on the relevant answer or question.