The Computer Status log on the Monitors > Logs page does not report that a Symantec Endpoint Protection (SEP) client for Linux is still infected after a failed remediation attempt.
This behavior also occurs when Symantec AntiVirus for Linux (SAVFL) clients with the optional SAVFL Reporter component forward their logs to a Symantec Endpoint Protection Manager (SEPM) earlier than version 12.1.5.
This behavior occurs due to the way reporting is currently handled for Linux clients.
You can still see the security details for the Linux client in the Risk log or Scan log. These logs include information about the detected threats.
Imported Document ID: TECH172361
Subscribing will provide email updates when this Article is updated. Login is required.