The status_check command in the command line interface (CLI) of Symantec Endpoint Detection and Response (SEDR) returns the message "Could not access Cynic license server" for the Cynic licensing server or the URL api.us.dmas.symantec.com.
11/19 - Incident reported
11/19 - Support reproduced symptom in test lab.
12/5 - Engineering investigation clarified after testing SEDR in lab environment
1st Issue: status_check command returns Could not access Cynic license server Impact: Prevents accurate status_check for licensing.dmas.symantec.com, which may confuse troubleshooting of Cynic related issues. No change in ability for SEDR to submit files to Cynic. Status: FIX PENDING in next build of SEDR appliance software
2nd Issue : _status_check_all_in_one Impact: Status_check script doesn’t return the status for “Accessed Cynic API server" because the Issuer name of the non-UK Cynic is changed to "api.global.dmas.symantec.com" whereas in the script it expect “api.us.dmas.symantec.com”. If SEDR installed prior to the name change, this error will not occur. Despite this error, actual Cynic ability to submit files for detonation on physical hardware appears to work in test lab. Status: FIX PENDING in next build of SEDR appliance software. The Cynic server “api.us.dmas.symantec.com” is still functional. Engineering continues to investigate planned lifespan for this URL.
When the next build of SEDR appliance software becomes available, upgrade.
This issue is resolved in SEDR 4.3. Since the hostname was changed, this error will continue on ATP and SEDR versions prior to 4.3.
Subscribing will provide email updates when this Article is updated. Login is required.