Un/reinstalling a Symantec Endpoint Protection client does not change its group membership in Manager

Article:TECH162320  |  Created: 2011-06-14  |  Updated: 2011-06-29  |  Article URL http://www.symantec.com/docs/TECH162320
Article Type
Technical Solution


You have uninstalled a managed Symantec Endpoint Protection client, and reinstalled it using an exported package that specifies membership in a different client group. The reinstalled client does not appear in its new group in the Manager console.


The reinstalled client retains the old group membership, rather than appearing in the new group.

Sylink.xml settings on client do not change.


This is because the Endpoint Protection client uninstallation leaves behind a Hardware ID file. If this file is present, a new client installation uses this ID rather that generating a new unique identifier. The Hardware ID and group membership is also retained in the Manager database even after a client is uninstalled. When the reinstalled client checks in with the Manager, any matching Hardware ID and group membership association takes precedence over the group in the install package settings.


To force a reinstalled client to join the group specified in the install package, do one or both of the following after uninstalling the client, and before reinstalling:

  • Delete the Hardware ID file from the Symantec Endpoint Protection client:
    C:\Program Files\Common Files\Symantec Shared\HWID\sephwid.xml
  • Delete the client entry from the Symantec Endpoint Protection manager. This is also done automatically if a client has not checked in for a configurable period of time.

Supplemental Materials

Value2374278, 2375955

Sylink.xml settings on client, do not match expected settings, when examining configuration from SEPM side

Article URL http://www.symantec.com/docs/TECH162320

Terms of use for this information are found in Legal Notices