Yes, SADR is "SuperAgent Distributed Repository". And yes, the McAfee Agent policy is configured with the local SADR first on the list, our E-SADR second on the list, and the ePO server 3rd on the list. No proxy is used.

This is the message you get from the ePO server on your second step.

<SiteStatus CatalogVersion="20120916210010" Status="Enabled"/>

Ok that means that the repository is avaliable, which is odd that the agent is producing that error message.

Two things i would try at this point.

1. Create a group in the system tree with a new (fake) repository policy attached to it. Move the problematic machine into that group, preform a wake-up with policy refresh, move the machine back to it's correct group and wake-up again. Basically i'm trying to get the client to redownload it's correct repository policy again in the hope that it's simply a corrupt policy. Just attempting to force a update of the same one might not do the trick but pushing a new one and then the correct one sometimes gives it the kick it needs to rewrite it.

2. Re-install the agent.

We get that "Unable to find a valid repository" frequently enough on systems that aren't having any issues updating and communicating with the ePO that we almost ignore it now.

I tried pointing a representative system at a different SADR server, doing a wakeup, and moving it back, and doing another wakeup, but it doesn't seem to resolve the issue.

Btw, re-installing the agent will be a very last resort fix; we're talking hundreds of different machines experiencing this issue. Re-installing the agent on that many machines won't be a trivial task.

Just a thought what's the IP allocation method of your SADRs? Are they fixed or DHCP?

Is it that DNS records are not updated fast enough when a SADR is given a new IP via DHCP.

Static IPs. It would be silly to have critical servers on DHCP!  🙂

If anyone is still following this thread, we noticed our infrasture servers (ePO, SQL, agent handlers, SADR servers) had all stopped updating their DATs on August 19, so I removed and reinstalled VSE on all of these servers. The removal/reinstall of VSE included a reboot on all servers.

After doing that the problem seemed to resolve itself. I suspect the rebooting probably had more to do with the resolution than the reinstallation of VSE, but don't know for sure.

We're you not aware of the bad DAT issue with 6807 that was released on the 18th/19th?

http://service.mcafee.com/FAQDocument.aspx?lc=1033&id=TS101446 .

Uninstalling and reinstalling VSE was one fix you could also apply the hotfix the correct the issue.