Our SEP client is able to telnet to the GUP over 2967 yet the update fails with HTTP error: 407 on the Sylink monitor log.
07/20 14:03:10 [3744] Request> http://10.X.X.X:2967/content/{C60DC234-65F9-4674-94AE-62158EFCA433}/120719021/xdelta120710035.dax
07/20 14:03:10 [3744] Unable to query return content length for SendRequest, 122
07/20 14:03:10 [3744] </CHttpConnector::SendRequest()>
07/20 14:03:10 [3744] </CHttpFileDownload::Do()>
07/20 14:03:10 [3744] <LUDownloader::GetContentToFile> completed.
07/20 14:03:10 [3744] <CHttpFileDownload::~CHttpFileDownload()>
07/20 14:03:10 [3744] </CHttpFileDownload::~CHttpFileDownload()>
07/20 14:03:10 [3744] <LUThreadProc>LU file download failed due to HTTP error:407
This can also happen on secars test failing which results in not checking in with the SEPM.
This happenes when connection to the GUP needs to have an alter route than the default gateway, or there is not proper route to the GUP or the SEPM. In such cases the SEP will use the settings on the default browser. As far as windows is considered the only way to configure network settings it through the default browser. Moreover SEP uses the 'SYSTEM' account to initiate the communication to the SEPM and the
To verify this we need to use the PsExec.exe from Sysinternal Suite.
http://technet.microsoft.com/en-us/sysinternals/bb897553
PsExec.exe -i -s "C:\Program Files\Internet Explorer\iexplore.exe". This will open the browser with the 'SYSTEM' account
The secars and GUP thread should be tested on this browser.