We have a problem with communication between our Ivanti Core Server and our devices. While I have been troubleshooting this issue I can't seem to make any logic of this issue and it is most likely one for support but any help anyone can give me would be much appreciated. The best thing would be if we can't fix it would be to get as much information for support as possible such as logs.
So the problem is that our Ivanti EPM Core server has 800+ devices. A large portion of these devices display incorrect device status and it will display nothing or display devices as being offline when they aren't. I also have a problem where devices online will not pickup anything in a scheduled task for example a new agent package or software, instead they will sit in pending or failed and give a result like "Policy has been made available" or "Unable to contact the specified machine. The machine may be off or unreachable".
The devices having this issue don't seem to fit any logic and so all logical reasons for this happening seem to have gone out the window at the moment, I can't find a pattern or a trend.
Machines are appearing offline but are still pingable from the core server and from other devices.
Machines are appearing offline but are not pingable from the core server but are from other devices.
Machines are appearing online but won't action any schedule tasks and provide results as previously mentioned.
All machines or at least the ones in the console (being managed that I am aware of) I can see are doing a daily inventory and vulnerability scans so they must be communicating with the core.
I cannot telnet on the LANDesk ports to some machines that are pingable but can to others. (Ports: 9595, 9535, etc). About Ports used by Ivanti Endpoint Manager ( EPM ) / LANDESK Management Suite ( LDMS ) - full list
I have also done tests by pinging a device and tried to browse to "http://ClientIP:9595/allowed/ldping" and "http://ClientName:9595/allowed/ldping" and got inconsistent results where some devices have been successful and others not successful as per Device statuses (offline / online) are not displayed correctly on the core server or are not displayed at all - Basic Troubleshooting guide for the LDMS 9.5 Console
Wondering what to do if I can ping a device from the core and others devices but can't telnet using 9595 and can't browse successfully to "http://ClientName:9595/allowed/ldping" or "http://ClientIP:9595/allowed/ldping".
Also to factor out network issues, some of the machines with the issues are on the same subnet, vlan, IP range and physical site. Some of the devices are on desks next to each other.
The machines having issues are a mixture of Windows 7 and Windows 10 and are in the same OU in AD and get the same Group policy settings.
The only thing I can put this down to is some local settings manually changed and tampered with for example Windows firewall turned on and blocking something like LANDesk inbound services but I don't think this would be the case and will confirm.
Is there any specific log files I should be looking at which might be of some help with this issue. I am aware all the logs I probably need are in C:\Program Files\LANDesk\ManagementSuite\log and C:\ProgramData\LANDesk\Log but am not sure what I am looking for.
I will continue troubleshooting and if I have any new ideas or get any further I will update this discussion.