Endpoint Protection Platform doesn't work after migrating from existing products on Windows Server 2016/2019
Last Modified: 2023-06-21 04:08:35 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Endpoint Protection Platform doesn't work after migrating from existing products on Windows Server 2016/2019
Technical Articles ID:
KB92637
Last Modified: 2023-06-21 04:08:35 Etc/GMT Environment
Endpoint Protection Platform 20xx, 19xx Endpoint Security (ENS) 10.x VirusScan Enterprise (VSE) 8.x Microsoft Windows Server 2019, 2016 Problem
Endpoint Protection Platform might not work properly when migrating from the existing product ENS or VSE on Windows Server 2016 or 2019. This problem isn't always reproducible, but when the problem occurs, you might see the following symptoms:
Cause
ENS and VSE leave Windows Defender in an inconsistent state after they're uninstalled on Windows Server 2016 or 2019. Currently, Endpoint Protection Platform can't recover Windows Defender under these circumstances.
Solution
It's hard to provide a hotfix or update for this issue as a regular bug fix, because it might require the redesign and implementation of some new features for Endpoint Protection Platform. A Feature Modification Request has been submitted for a future release of Endpoint Protection Platform to implement some kind of checks to fix this issue. To receive email notification when this article is updated, click Subscribe on the right side of the page. You must be logged on to subscribe.
Workaround
Perform the following steps. Make sure to complete each step before going to the next step. Also, make sure that Windows Defender is installed and running in between each step. This procedure requires a reboot of the endpoint after removing ENS or VSE. This procedure might require a second reboot before you install Endpoint Protection Platform to make sure that Windows Defender is up and running correctly after a reboot.
Affected ProductsLanguages:This article is available in the following languages: |
|