If you’re like me and have ever had a problem where your Symantec Corporate Edition clients have either ceased speaking to the server or you’ve had to migrate servers, have no fear – I have a solution to your woes.<\/p>\n
The Symantec website has almost all of this information, but they don’t give you an easy example of how this can be done, they merely hint at it. The cure is to copy the Grc.dat file and the xxx.x.servergroupca.cer file to the client, in two different locations. The next time the client goes to check in, it will redirect itself and you’re home free. Simple, but damned annoying if you have say, 30-some-odd clients that need these files. The trick is to use a login script (assuming you have a domain running these clients.) Here’s how I did it.<\/p>\n
<\/p>\n
First, full path of origin and –> destination:<\/p>\n
<\/os> Second, I copied the relevant files to a new folder on my server: “\\\\avserver\\transfer\\savfix” so I could get them easily.<\/p>\n Third, I created a text file “done.txt” to act as a marker for if the job had been done and put that in the same folder as the others.<\/p>\n Fourth, I placed the script below into c:\\windows\\sysvol\\sysvol\\scripts. (No, I have no idea why they nested two identically-named folders.)<\/p>\n Last, I assigned the script (logon.bat) to each affected user. There is probably a better way to do it than the clickety-clickety-paste-clickety-clickety method I used, but I only had a dozen users to deal with. On with the code:<\/p>\n ============================== ECHO This is a little logon script to update your Antivirus settings. It should only run once.<\/p>\n IF EXIST \"C:\\done.txt\" GOTO done net use L: \\\\avserver\\transfer\\savfix copy \"L:\\Grc.dat\" \"C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\Symantec AntiVirus Corporate Edition\\7.5\\\" copy \"L:\\*.cer\" \"C:\\Program Files\\Symantec Antivirus\\pki\\roots\\\" copy \"L:\\done.txt\" \"C:\\\" GOTO end<\/p>\n :done<\/p>\n ECHO Script has run before. :end<\/p>\n net use L: \/delete ECHO Operation is complete. We now return you to your normally scheduled logon.<\/p>\n PAUSE There is a small caveat here that the user logging in must have admin rights locally to copy the files. By placing the “done.txt” marker, you can now leave the script in place for a couple of weeks to make sure all the clients get the needed changes, should someone be on vacation or something. When you have all the clients talking again, simply remove the script from the user profiles.<\/os><\/p>","protected":false},"excerpt":{"rendered":" If you’re like me and have ever had a problem where your Symantec Corporate Edition clients have either ceased speaking to the server or you’ve had to migrate servers, have Continue Reading →<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[],"class_list":["post-504","post","type-post","status-publish","format-standard","hentry","category-geekery"],"_links":{"self":[{"href":"http:\/\/thecyberwolfe.com\/blog\/wp-json\/wp\/v2\/posts\/504","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/thecyberwolfe.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/thecyberwolfe.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/thecyberwolfe.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/thecyberwolfe.com\/blog\/wp-json\/wp\/v2\/comments?post=504"}],"version-history":[{"count":0,"href":"http:\/\/thecyberwolfe.com\/blog\/wp-json\/wp\/v2\/posts\/504\/revisions"}],"wp:attachment":[{"href":"http:\/\/thecyberwolfe.com\/blog\/wp-json\/wp\/v2\/media?parent=504"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/thecyberwolfe.com\/blog\/wp-json\/wp\/v2\/categories?post=504"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/thecyberwolfe.com\/blog\/wp-json\/wp\/v2\/tags?post=504"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\n
\n@echo off<\/p>\n
\nREM Checks for the presence of the file done.txt in the root of c:<\/p>\n
\nREM Mounts this folder as a drive temporarily. This cuts down on failures.<\/p>\n
\nREM The quotes are necessary for using folder names with spaces.
\nREM Make sure you turn off word wrap so the above is all one line.<\/p>\n
\nREM Lookee - I write portable code! That wildcard means you don't have to
\nREM edit the script the next time you do this for a stupid-long filename.<\/p>\n
\nREM Places the marker file so the next time this runs, it skips the copy process.<\/p>\n
\nREM This is the other end of the IF EXIST statement above<\/p>\n
\nREM Drive is no longer needed, deleted for housekeeping<\/p>\n
\nREM This will hold for a keypress, I used it to make sure things worked.
\nREM Comment out the pause after the test run.
\n<\/code>
\n==================================<\/p>\n