"Failed to connect to server" message during login and the scm-server-0.log file shows '401 Unauthorized' errors.

Article:TECH95331  |  Created: 2009-01-31  |  Updated: 2012-03-26  |  Article URL http://www.symantec.com/docs/TECH95331
Article Type
Technical Solution


Issue



Why do I receive a "Java -1" error in the event log, a Failed to connect to server error at login, and HTTP 401 errors in the scm-server-0.log?

Symptoms
Windows Event Viewer Application Log:

Event ID: 4096
Source: SemSrv
Description: The Java Virtual Machine has exited with a code of -1, the service is being stopped.

The Symantec Endpoint Protection Manager service crashes with a Java -1 error recorded in Event Viewer.

SCM-Server-0.log:
HTTP 401 Unauthorized, URL: http://localhost:8014/secars/secars.dll?action=34
Unexpected server error. ErrorCode: 0x10010000


Error



- "Unknown Exception in: com.sygate.scm.server.servlet.StartupServlet
java.lang.Exception: HTTP 401 Unauthorized, URL: http://localhost:8014/secars/secars.dll?action=34"

- http://localhost:8014/secars/secars?hello,secars
HTTP Error 401.1 - Unauthorized: Access is denied due to invalid credentials.


Environment



SEP 11.x, IIS 5/6/7 on Microsoft Windows Server


Cause



This issue can occur if there is insufficient permissions on the SEPM folder and in IIS for the Symantec Web Server website. This can also occur when the IIS IUSR account is modified within Windows - especially after SEP has been installed.


Solution



Follow the steps below to resolve the issue:

  1. Go to the Symantec Endpoint Protection Manager install location (By default it is at "C:\Program Files\Symantec\Symantec Endpoint Protection Manager")
  2. Right click on the Symantec Endpoint Protection Manager folder and select Properties, click on the Security Tab, add Authenticated Users and Allow Read and Write Permissions. Click OK.
  3. Above step may prove insufficient (confirmed in IIS 7). In this case Right click on the Symantec Endpoint Protection Manager folder and select Properties, click on the Security Tab, add Everyone and Allow Read/Write or Full Control permissions. Click OK.
  4. Restart the IIS Admin service
    1. Go to Start > Run > Type IISRESET
    2. Click OK.
  5. Start the Symantec Endpoint Protection Manager service
    1. Go to Start > Run > Type Services.msc
    2. Right Click on Symantec Endpoint Protection Manager Service and select Start.


Legacy ID



2009073117184848


Article URL http://www.symantec.com/docs/TECH95331


Terms of use for this information are found in Legal Notices