A detection check does return a true (for "Is installed") value, but it is not reflected in the Symantec_CMDB. Tried capturing the NSE but was not successful.
There are no requirements outside the base Symantec Management Agent (which includes the Inventory Rule Agent and the Software Management Framework Agent) and the Inventory plug-in.
The data is stored in the SoftwareCache.xml file. We do not send an event (NSE) if we’ve previously sent that value, or think we have; we only send an NSE if the status changes after initially sending the status of the Targeted Software Inventory (TSI).
The data is stored in the SoftwareCache.xml file. This change was made to greatly improve performance. We had customers where the same status was being sent up daily for every single managed policy, so by stopping the sending of duplicate data, this cut way down on the traffic and processing. There are occasional issues where this happens, but the trade-off is worth it.
To test, delete the file on the suspect computer and re-run the Targeted Software Inventory. It recreates the XML file and reports the data back to the Symantec_CMDB as expected. We do not send an event (NSE) if we’ve previously sent that value, or think we have; we only send an NSE if the status changes after initially sending the status. In short, the detection checks do not hit the EventQueue via NSE unless the value has changed since the last run.
Subscribing will provide email updates when this Article is updated. Login is required.